G NRF Traffic IP Flow

This section describes the Internet Protocol (IP) flow between the IP services.

Table G-1 NRF Traffic IP Flow

S.No NF Service Name Pod Name Container Name Accesses the DB Tier Service Account or Role or RoleBinding (RBAC) Nature of port Nature of IP Service Port Container Port User Traffic type Notes (PROTOCOL, SECURE) Egress Paths Ingress Paths
1 Ingress Gateway <helm release name>-ingressgateway-<xxxxxxxxxx>-<yyyyy> #ingressgateway$ No Yes External LoadBalancer 80 8081 5G Peer Signaling Messages HTTP2/0 Port (unsecured)
  • Subscription
  • Discovery
  • Registration
  • Access Token
  • Cache Data Service
  • K8s API Server
  • NRF Configuration
  • Any Outside Peer
  • Perf-info
  • Egress Gateway
443 8443 5G Peer HTTPS2/0 Port (secured)
30080 8081 5G Peer Static Node Port on demand. Configurable. HTTP2/0 Port (unsecured)
30443 8443 5G Peer Static Node Port on demand, Configurable. HTTPS2/0 Port (secured)
Internal Cluster IP - 9090

Prometheus

Liveliness/Readiness

  

Metrics Data

Deployment details

 -
  • Prometheus
  • Liveliness/Readiness
- - - 8000 - Coherence Used internally for coherence Coherence Coherence
- - - 8095 - Coherence Coherence Messaging Port1 Coherence Coherence
- - - 8096 - Coherence Coherence Messaging Port2 Coherence Coherence
Internal - - - - - Jaeger Agent port 6831 Jaeger Agent -
- Internal Cluster IP - 8008 - intraNfService

Internal Service.

ingress-gateway-intra-nf Service for NRF Backend Service to IGW comminication over internal port.

 Internal Service -
#init-service$ - - - - - Towards K8s API Server To get NRF Private Key/ Certificate and CA Root Certificate for TLS during start up K8s API Server -
2 Egress Gateway <helm release name>-egressgateway-<xxxxxxxxxx>-<yyyyy> #egressgateway$ No Yes Internal Cluster IP 8080 8080 5G Peer Signaling Messages Both for HTTP2/0 Port (unsecured) and HTTPS2/0 Port (secured)
  • Any Outside Peer
  • NRF Configuration
  • Alternate Route Service
  • Ingress Gateway
  • K8s API Server
  • Subscription
  • Discovery
  • Registration
  • Access Token
  • Cache Data Service
Cluster IP - 9090
  • Prometheus
  • Liveliness/Readiness
 -

Metrics Data

Deployment details

 -
  • Prometheus
  • Liveliness/Readiness
- - 8000 - Coherence Used internally for coherence Coherence Coherence
- - 8095 - Coherence Coherence Messaging Port1 Coherence Coherence
- - 8096 - Coherence Coherence Messaging Port2 Coherence Coherence
Internal - - - - Jaeger Agent port 6831 Jaeger Agent port -
#init-service$ - - - - Towards K8s API Server To get NRF Private Key/ Certificate and CA Root Certificate for TLS during start up K8s API Server -
3 NF Registration <helm release name>-nfregistration-<xxxxxxxxxx>-<yyyyy> #nfregistration$ Yes Yes Internal Cluster IP 8080 8081 Inter micro-service communication Signaling Messages 5G Signaling messages
  • cnDBTier for DB Query
  • App-Info
  • Subscription
  • Cache Data Service
  • Egress Gateway
  • Artisan
  • K8s API Server
  • Ingress Gateway
  • Subscription
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Liveliness/Readiness - Deployment details - Liveliness/Readiness
4 NF Subscription <helm release name>-nfsubscription-<xxxxxxxxxx>-<yyyyy> #nfsubscription$ Yes Yes Internal Cluster IP 8080 8081 Inter micro-service communication Signaling Messages 5G Signaling messages
  • cnDBTier for DB Query
  • App-info
  • Cache Data Service
  • Egress Gateway
  • K8s API Server
  • Ingress Gateway
  • Auditor
  • Registration
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Liveliness/Readiness - Deployment details - Liveliness/Readiness
5 NF Discover <helm release name>-nfdiscovery-<xxxxxxxxxx>-<yyyyy> #nfdiscovery$ Yes Yes Internal Cluster IP 8080 8081 Inter micro-service communication Signaling Messages -
  • cnDBTier for DB Query
  • App-Info
  • Cache Data Service
  • Egress Gateway
  • K8s API Server
  • Ingress Gateway
  • Artisan
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Liveliness/Readiness - - - Liveliness/Readiness
6 NF Access token <helm release name>-nfaccesstoken-<xxxxxxxxxx>-<yyyyy> #nfaccesstoken$ Yes Yes Internal Cluster IP 8080 8081 Inter micro-service communication - -
  • cnDBTier for DB Query
  • App-Info
  • Cache Data Service
  • Egress Gateway
  • K8s API Server
  • Ingress Gateway
  • Discovery
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Liveliness/Readiness - - - Liveliness/Readiness
7 NRF Configuration <helm release name>-nrfconfiguration-<xxxxxxxxxx>-<yyyyy> #nrfconfiguration$ Yes Yes External LoadBalancer 8080 8081 Operator Configuration When CNC OAM is not in use
  • cnDBTier for DB Query
  • App-Info
  • Cache Data Service
  • K8s API Server
  • Egress Gateway
  • Ingress Gateway
  • Perf-info
  • App-info
  • Alternate Route Service
  • Artisan
30076 8081 Operator When CNC OAM is not in use. Static Node Port on demand. Configurable.
Internal ClusterIP 8080 8081 CNCOAM When CNC OAM is in use
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Liveliness/Readiness - - - Liveliness/Readiness
8 NRF Auditor <helm release name>-nrfauditor-<xxxxxxxxxx>-<yyyyy> #nrfauditor$ Yes Yes Internal Cluster IP 8080 8081 Internal Audit processing NA This is internal to NRF and doing some internal work like Audit of records.
  • cnDBTier for DB Query
  • Subscription
  • Artisan
  • App-info
  • Cache Data Service
  • K8s API Server
-
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Readiness - Liveliness is script based. - Liveliness/Readiness
9 NRF Artisan <helm release name>-nrfartisan-<xxxxxxxxxx>-<yyyyy> #nrfartisan$ Yes Yes Internal Cluster IP 8080 8081 Internal Audit processing NA This is internal to OCNRF and doing some internal scheduled work.
  • cnDBTier for DB query
  • Cache Data Service
  • K8s API Server
  • Alternate Route Service
  • Registration
  • Configuration
  • Auditor
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Readiness - Liveliness is script based. - Liveliness/Readiness
10 NRF Cache Data Service <helm release name>-nrfcachedata-<xxxxxxxxxx>-<yyyyy> #nrfcachedata$ Yes Yes Internal Cluster IP 8080 8081 Inter micro-service communication NA This is internal to NRF and doing some caching work.
  • cnDBTier for DB Query
  • K8s API Server
  • Egress Gateway
  • Registration
  • Subscription
  • Discovery
  • AccessToken
  • Configuration
  • Auditor
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Readiness - Liveliness is script based. - Liveliness/Readiness
11 App-Info <helm release name>-appinfo-<xxxxxxxxxx>-<yyyyy> #appinfo$ Yes Yes Internal Cluster IP 5906 5906 Internal Microservice uses exposes REST endpoint to fetch Microservice Status -
  • Db-Monitoring-Svc
  • K8s API Server
  • Registration
  • Subscription
  • Auditor
Cluster IP - 9090 Prometheus - Metrics Data - Prometheus
- 9090 Liveliness/Readiness - - - Liveliness/Readiness
12 Perf-Info <helm release name>-performance-<xxxxxxxxxx>-<yyyyy> #perfinfo$ Yes Yes Internal Cluster IP 5905 5905 Internal Microservice uses exposes REST endpoint to fetch Microservice Load Status -
  • Ingress Gateway
  • Egress Gateway
  • Prometheus
  • cnDBTier for DB Query
  • K8s API Server
  • Configuration
  • Ingress Gateway
Cluster IP - 9090 Prometheus - - - Prometheus
- - 9090 Liveliness/Readiness - - - Liveliness/Readiness
13 Alternate Route Service <helm release name>-alternate-route-<xxxxxxxxxx>-<yyyyy> #alternate-route$ Yes Yes Internal Cluster IP 80 8004 Internal Microservice uses - -
  • DNS External Port
  • DNS
  • External DNS
  • Egress Gateway
  • Artisan
Cluster IP - 9090 Prometheus - - - Prometheus
- - - 9090 Readiness - - Liveliness/Readiness