Library
...
Precondition
- Server flavor : 8 vCPU / 30GB RAM / 100GB HDD
- Server OS : Ubuntu 16.04
...
- Verify that all docker containers are up :
| No Format |
|---|
root@hv-ves-sim:~# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
5a4c5011bfeb nexus3.onap.org:10003/onap/ves-hv-collector-xnf-simulator "./run-java.sh run..." 27 seconds ago Up 27 seconds 0.0.0.0:6062->6062/tcp hv-ves_sim_xnf-simulator_1
ad910797eb72 nexus3.onap.org:10003/onap/ves-hv-collector:latest "./run-java.sh run..." 28 seconds ago Up 27 seconds (healthy) 0.0.0.0:6060-6061->6060-6061/tcp hv-ves_sim_ves-hv-collector_1
db196f77fd8e wurstmeister/kafka "start-kafka.sh" 28 seconds ago Up 28 seconds 0.0.0.0:9092->9092/tcp hv-ves_sim_kafka_1
e8713cceb027 progrium/consul "/bin/start -serve..." 30 seconds ago Up 28 seconds 53/tcp, 53/udp, 8300-8302/tcp, 8400/tcp, 8301-8302/udp, 0.0.0.0:8500->8500/tcp hv-ves_sim_consul_1
5440e045d0a3 wurstmeister/zookeeper "/bin/sh -c '/usr/..." 30 seconds ago Up 30 seconds 22/tcp, 2888/tcp, 3888/tcp, 0.0.0.0:2181->2181/tcp hv-ves_sim_zookeeper_1
root@hv-ves-sim:~#
|
- Verify HV-VES configuration from HV-VES docker container :
| No Format |
|---|
root@hv-ves-sim:~# docker exec -ti ad910797eb72 bash
root@ad910797eb72:/opt/ves-hv-collector# curl http://consul:8500/v1/kv/veshv-config
[{"CreateIndex":5,"ModifyIndex":5,"LockIndex":0,"Key":"veshv-config","Flags":0,"Value":"eyJrYWZrYUJvb3RzdHJhcFNlcnZlcnMiOiAia2Fma2E6OTA5MiIsInJvdXRpbmciOlt7ImZyb21Eb21haW4iOjExLCJ0b1RvcGljIjoidmVzX2h2UmFuTWVhcyJ9XX0="}] |
...
- Start HV-VES container log :
| No Format |
|---|
root@hv-ves-sim:~# docker logs --tail 0 -f ad910797eb7 |
- Start Kafka consumer log :
| No Format |
|---|
root@hv-ves-sim:~# docker exec -ti db196f77fd8e sh
/ # kafka-console-consumer.sh --bootstrap-server localhost:9092 --topic ves_hvRanMeas |
- Send message using simulator.sh script :
| No Format |
|---|
root@hvhv-ves-sim:~# hv-ves_sim/simulator.sh send hv-ves_sim/samples/xnf-valid-messages-request.json
{"response":"Request accepted"} |
...
- Check Kafka consumer log :
| No Format |
|---|
root@hv-ves-sim:~# docker exec -ti db196f77fd8e sh
/ # kafka-console-consumer.sh --bootstrap-server localhost:9092 --topic ves_hvRanMeas
?
sample-version
*sample-version2sample-version:sample-version@???9H???9Rsample-nf-naming-codeZsample-nfc-naming-codebsample-reporting-entity-idjsample-reporting-entity-namersample-source-idzsample-source-namec
a
sample/uri8873???
? ??????????????????????? ?????/???????a??????? |
HV-VES xNF simulator integration to ONAP
| No Format |
|---|
root@rancher:~# kubectl -n onap get pods | grep hv-ves
dep-dcae-hv-ves-collector-6ddbb546c8-v5gv4 2/2 Running 0 1d
root@rancher:~# |
- Check if xNF simulator is up :
| No Format |
|---|
root@hv-ves-sim:~/hv-ves_sim# docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
eb946d45cc01 nexus3.onap.org:10001/onap/org.onap.dcaegen2.collectors.hv-ves.hv-collector-xnf-simulator:latest "./run-java.sh run..." 24 hours ago Up 24 hours 0.0.0.0:6062->6062/tcp brave_bartik
root@hv-ves-sim:~/hv-ves_sim# |
- Forward Kafka pod port to node one :
| No Format |
|---|
root@rancher:~# kubectl -n onap port-forward dev-message-router-kafka-7d75bf94bc-77jbf 9092:9092
Forwarding from 127.0.0.1:9092 -> 9092 |
- Forward HV-VES simulator 9092 port to the node from previous step :
| No Format |
|---|
root@hv-ves-sim:~# ssh -L 9092:localhost:9092 10.183.34.151 |
- Send event from xNF simulator :
| No Format |
|---|
root@hv-ves-sim:~/cd hv-ves_sim#sim ; ./simulator.sh send ./samples/single_xnf-simulator-smaller-valid-request.json
6447df9c-b044-47bb-a1c2-77b6d21b9c9d
root@hv-ves-sim:~/hv-ves_sim# |
| No Format |
|---|
root@rancher:~# kubectl -n onap logs dep-dcae-hv-ves-collector-6ddbb546c8-v5gv4 dcae-hv-ves-collector -f --tail=4
p.dcae.collectors.veshv.impl.socket.NettyTcpServer | 2018-09-27T10:00:39.020Z | INFO | Handling connection from /10.42.0.1:56454 | | reactor-tcp-server-epoll-14
p.dcae.collectors.veshv.impl.socket.NettyTcpServer | 2018-09-27T10:01:39.028Z | INFO | Idle timeout of 60 s reached. Closing connection from /10.42.0.1:56454... | | reactor-tcp-server-epoll-14
p.dcae.collectors.veshv.impl.socket.NettyTcpServer | 2018-09-27T10:01:39.029Z | INFO | Connection from /10.42.0.1:56454 has been closed | | reactor-tcp-server-epoll-14
p.dcae.collectors.veshv.impl.socket.NettyTcpServer | 2018-09-27T10:01:39.029Z | DEBUG | Channel (/10.42.0.1:56454) closed successfully. | | reactor-tcp-server-epoll-14 |
- Check Kafka topic content :
Casablanca
| No Format |
|---|
root@hv-ves-sim:~/hv-ves_sim# kafkacat kafkacat -C -b localhost:9092 -t HV_VES_MEASUREMENTSPERF3GPP -D "" -o -1 -c 1
?
sample-versionHVMEASversionperf3gpp *sample-event-id2sample-
perf3GPP222sample-event-name:sample-event-type@???9H?H????9RsampleRsample-nf-naming-codeZsample-nfc-naming-codej??????z?+?)???????rsample-codebsample-nf-vendor-namejsample-reporting-entity-idrsample-reporting-entity-namez-namezsample-source-id?sample-xnf-name? UTC+02:00?7.0.2test test test
|
Dublin onward
| No Format |
|---|
kafkacat -C -b message-router-kafka:9092 -t HV_VES_PERF3GPP -X security.protocol=SASL_PLAINTEXT -X sasl.mechanisms=PLAIN -X sasl.username=admin -X sasl.password=admin_secret -D "" -o -1 -c 1
?
sample-versionperf3gpp ???????{?sample-source-name?another-versiond
root@hv-ves-sim:~/hv-ves_sim# |
- Decode message from Kafka topic :
| No Format |
|---|
root@hv-ves-sim:~/hv-ves_sim# kafkacat -C -b localhost:9092 -t HV_VES_MEASUREMENTS -D "" -o -1 -c 1 | protoc --decode_raw --proto_path=/root/hv-ves_sim/proto/
1 {
1: "sample-version"
2: "HVMEAS"
3: 1
4: 1
5: "sample-event-id"
*
perf3GPP222sample-event-name:sample-event-type@????H????Rsample-nf-naming-codeZsample-nfc-naming-codebsample-nf-vendor-namejsample-reporting-entity-idrsample-reporting-entity-namezsample-source-id?sample-xnf-name? UTC+02:00?7.0.2test test test |
- Decode message from Kafka topic :
Casablanca
| No Format |
|---|
kafkacat -C -b localhost:9092 -t HV_VES_PERF3GPP -D "" -o -1 -c 1 | protoc --decode_raw
1 {
1: "sample-version"
2: "perf3gpp"
3: 1
4: 1
5: "perf3GPP22"
6: "sample-event-name"
7: "sample-event-type"
8: 1200344551539263857
9: 1200344551539263857
10: "sample-nf-naming-code"
11: "sample-nfc-naming-code"
12: "sample-nf-vendor-name"
13: "\261\251\251\225\357\253z\232+\266)\340\371\351\355\212\334\276\211sample-reporting-entity-id"
14: "sample-reporting-entity-name"
15: "\261\251\251\225\357\254\242\352\334{\350\235sample-source-id"
16: "sample-sourcexnf-name"
1817: "another-versionUTC+02:00"
}
2: "\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000\000"
root@hv-ves-sim:~/hv-ves_sim# |
HV-VES message simulation from shell
- Prepare HV-VES VesEvent message in hex dump format :
| No Format |
|---|
root@hv-ves-sim:~/hv-ves_sim/proto# cat hvves_event
commonEventHeader: {
version: "sample-version"
domain: "HVMEAS"
sequence: 1
priority: 1
eventId: "sample-event-id"
eventName: "sample-event-name"
eventType: "sample-event-type"
startEpochMicrosec: 120034455
lastEpochMicrosec: 120034455
nfNamingCode: "sample-nf-naming-code" 18: "7.0.2"
}
2: "test test test"
|
Dublin onward
| No Format |
|---|
kafkacat -C -b message-router-kafka:9092 -t HV_VES_PERF3GPP -X security.protocol=SASL_PLAINTEXT -X sasl.mechanisms=PLAIN -X sasl.username=admin -X sasl.password=admin_secret -D "" -o -1 -c 1 | protoc --decode_raw
1 {
1: "sample-version"
2: "perf3gpp"
3: 1
4: 1
5: "perf3GPP22"
6: "sample-event-name"
7: "sample-event-type"
8: 1539263857
9: 1539263857
10: "sample-nf-naming-code"
11: "sample-nfc-naming-code"
12: "sample-nf-vendor-name"
13: "sample-reporting-entity-id"
14: "sample-reporting-entity-name"
15: "sample-source-id"
16: "sample-xnf-name"
17: "UTC+02:00"
18: "7.0.2"
}
2: "test test test" |
HV-VES xNF message simulation from shell
- Prepare HV-VES VesEvent message in hex dump format :
| No Format |
|---|
cd ~/hv-ves_sim/proto ; cat hvves_event
commonEventHeader: {
nfcNamingCodeversion: "sample-nfc-naming-codeversion"
reportingEntityIdeventName: "sample-reportingevent-entity-idname"
reportingEntityNamedomain: "sample-reporting-entity-nameperf3gpp"
sourceIdeventId: "sample-source-idperf3GPP22"
sourceNameeventType: "sample-sourceevent-nametype"
vesEventListenerVersionnfcNamingCode: "another-versionsample-nfc-naming-code"
} eventFields: "test testnfNamingCode: test"
root@hvsample-ves-sim:~/hv-ves_sim/proto# echo -n "\x`cat hvves_event | protoc -I=/root/hv-ves_sim/proto/ VesEvent.proto --encode=VesEvent | xxd -p -c 1000 | grep -o .. | xargs echo -n | sed 's/ /\\\x/g'`"
\x0a\xff\x01\x0a\x0e\x73\x61\x6d\x70\x6c\x65\x2d\x76\x65\x72\x73\x69\x6f\x6e\x12\x06\x48\x56\x4d\x45\x41\x53\x18\x01\x20\x01\x2a\x0f\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x69\x64\x32\x11nf-naming-code"
nfVendorName: "sample-nf-vendor-name"
sourceId: "sample-source-id"
sourceName: "sample-xnf-name"
reportingEntityId: "sample-reporting-entity-id"
reportingEntityName: "sample-reporting-entity-name"
priority: 1
startEpochMicrosec: 1539263857
lastEpochMicrosec: 1539263857
timeZoneOffset: "UTC+02:00"
sequence: 1
vesEventListenerVersion: "7.0.2"
}
eventFields: "test test test"
|
| No Format |
|---|
cd ~/hv-ves_sim/proto ; echo -n "\x`cat hvves_event | protoc -I=/root/hv-ves_sim/proto VesEvent.proto --encode=VesEvent | xxd -p -c 1000 | grep -o .. | xargs echo -n | sed 's/ /\\\x/g'`"
\x0a\x94\x02\x0a\x0e\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x72\x6ex73\x74x69\x2dx6f\x6e\x12\x61x08\x6dx70\x65\x3ax72\x11x66\x73x33\x61x67\x6dx70\x70\x6cx18\x65x01\x2dx20\x65x01\x76x2a\x65\x6e\x74\x2d\x74\x79\x0a\x70\x65\x40x72\x97x66\xa9x33\x9ex47\x39x50\x48x50\x97x32\xa9x32\x9ex32\x39\x52x11\x15\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x66x74\x2d\x6e\x61\x6d\x69\x6e\x67\x2d\x63\x6f\x64\x65\x5ax3a\x16x11\x73\x61\x6d\x70\x6c\x65\x2d\x6ex65\x66x76\x63\x2dx65\x6e\x61x74\x6dx2d\x69x74\x6e\x67\x2d\x63\x6f\x64\x65\x6a\x1ax79\x70\x65\x40\xf1\x9a\xfd\xdd\x05\x48\xf1\x9a\xfd\xdd\x05\x52\x15\x73\x61\x6d\x70\x6c\x65\x2d\x72x6e\x65x66\x70x2d\x6fx6e\x72x61\x74x6d\x69\x6e\x67\x2d\x65x63\x6ex6f\x74x64\x69x65\x74x5a\x79\x2d\x69\x64\x72\x1c\x16\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x72x66\x65x63\x70x2d\x6fx6e\x72x61\x74x6d\x69\x6e\x67\x2d\x65x63\x6ex6f\x74x64\x69x65\x74x62\x79x15\x2d\x6ex73\x61\x6d\x65x70\x7ax6c\x10x65\x73x2d\x61x6e\x6dx66\x70x2d\x6cx76\x65\x2dx6e\x73x64\x6f\x75\x72\x63x2d\x65x6e\x2dx61\x69x6d\x64x65\x82x6a\x01\x12x1a\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x73x70\x6f\x75\x72\x63x74\x65\x2dx69\x6e\x61x67\x6dx2d\x65\x92\x01\x0f\x61\x6e\x6f\x74\x68x69\x65x74\x72x79\x2d\x76x69\x65x64\x72\x1c\x73\x61\x69x6d\x6fx70\x6ex6c\x12x65\x0ex2d\x74x72\x65\x73x70\x74x6f\x20x72\x74\x65\x73x69\x6e\x67\x2d\x65\x6e\x74\x20x69\x74\x79\x2d\x6e\x61\x6d\x65\x7a\x10\x73\x74 |
| No Format |
|---|
\xff\x01\x00\x00\x00\x00\x01\x00\x00\x01\x12\x0a\xff\x01\x0a\x0e\x73\x61\x6d\x70\x6c\x65\x2d\x76\x65\x72\x73\x69\x6f\x6e\x12\x06\x48\x56\x4d\x45\x41\x53\x18\x01\x20\x01\x2a\x0f\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x69\x64\x32\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x6e\x61\x6d\x65\x3a\x11\x73\\x61\x6d\x70\x6c\x65\x2d\x73\x6f\x75\x72\x63\x65\x2d\x69\x64\x82\x01\x0f\x73\x61\x6d\x70\x6c\x65\x2d\x78\x6e\x66\x2d\x6e\x61\x6d\x65\x8a\x01\x09\x55\x54\x43\x2b\x30\x32\x3a\x30\x30\x92\x01\x05\x37\x2e\x30\x2e\x32\x12\x0e\x74\x65\x73\x74\x20\x74\x65\x73\x74\x20\x74\x65\x73\x74 |
| No Format |
|---|
\xaa\x01\x00\x00\x00\x00\x00\x01\x00\x00\x01\x27\x0a\x94\x02\x0a\x0e\x73\x61\x6d\x70\x6c\x65\x2d\x76\x65\x76\x72\x73\x69\x6f\x6e\x12\x08\x70\x65\x6ex72\x74x66\x2dx33\x74x67\x79x70\x70\x65\x40\x97\xa9\x9e\x39\x48\x97\xa9\x9e\x39\x52\x15x18\x01\x20\x01\x2a\x0a\x70\x65\x72\x66\x33\x47\x50\x50\x32\x32\x32\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x66x74\x2d\x6e\x61\x6d\x69x65\x3a\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x67x74\x2d\x63x74\x6fx79\x64x70\x65\x5a\x16\x40\xf1\x9a\xfd\xdd\x05\x48\xf1\x9a\xfd\xdd\x05\x52\x15\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x63\x2d\x6e\x61\x6d\x69\x6e\x67\x2d\x63\x6f\x64\x65\x6ax5a\x1ax16\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x72x66\x65x63\x70x2d\x6fx6e\x72x61\x74x6d\x69\x6e\x67\x2d\x65x63\x6ex6f\x74x64\x69x65\x74x62\x79x15\x2dx73\x69\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x2d\x76\x65\x6e\x64\x6f\x72\x2d\x6e\x61\x6d\x65\x6a\x1a\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x70\x6f\x72\x74\x69\x6e\x67\x2d\x65\x6e\x74\x69\x74\x79\x2d\x69\x64\x72\x1c\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x70\x6f\x72\x74\x69\x6e\x67\x2d\x65\x6e\x74\x69\x74\x79\x2d\x6e\x61\x6d\x65\x7a\x10\x73\x61\x6d\x70\x6c\x65\x2d\x73\x6f\x75\x72\x63\x65\x2d\x69\x64\x82\x01\x12x0f\x73\x61\x6d\x70\x6c\x65\x2d\x73x78\x6fx6e\x75\x72\x63\x65\x66\x2d\x6e\x61\x6d\x65\x92x8a\x01\x09\x0fx55\x54\x61x43\x6ex2b\x6fx30\x74x32\x68x3a\x65x30\x72x30\x2dx92\x76x01\x65x05\x72x37\x73x2e\x69x30\x6fx2e\x6ex32\x12\x0e\x74\x65\x73\x74\x20\x74\x65\x73\x74\x20\x74\x65\x73\x74 |
- Send WFP message to HV-VES :
| No Format |
|---|
root@hv-ves-sim:~/hv-ves_sim/proto# echo -ne "\xffxaa\x01\x00\x00\x00\x00\x00\x01\x00\x00\x01\x12x27\x0a\xffx94\x01x02\x0a\x0e\x73\x61\x6d\x70\x6c\x65\x2d\x76\x65\x72\x73\x69\x6f\x6e\x12\x08\x06x70\x65\x48x72\x56x66\x4dx33\x45x67\x41x70\x53x70\x18\x01\x20\x01\x2a\x0fx0a\x73x70\x61x65\x6dx72\x70x66\x6cx33\x65x47\x2dx50\x65x50\x76x32\x65\x6e\x74\x2d\x69\x64\x32\x32\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x6e\x61\x6d\x65\x3a\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x74\x79\x70\x65\x40\x97xf1\x9a\xa9xfd\x9exdd\x39x05\x48\xf1\x97x9a\xa9xfd\x9exdd\x39x05\x52\x15\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x2d\x6e\x61\x6d\x69\x6e\x67\x2d\x63\x6f\x64\x65\x5a\x16\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x63\x2d\x6e\x61\x6d\x69\x6e\x67\x2d\x63\x6f\x64\x65\x62\x15\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x2d\x76\x65\x6e\x64\x6f\x72\x2d\x6e\x61\x6d\x65\x6a\x1a\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x70\x6f\x72\x74\x69\x6e\x67\x2d\x65\x6e\x74\x69\x74\x79\x2d\x69\x64\x72\x1c\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x70\x6f\x72\x74\x69\x6e\x67\x2d\x65\x6e\x74\x69\x74\x79\x2d\x6e\x61\x6d\x65\x7a\x10\x73\x61\x6d\x70\x6c\x65\x2d\x73\x6f\x75\x72\x63\x65\x2d\x69\x64\x82\x01\x12x0f\x73\x61\x6d\x70\x6c\x65\x2d\x73x78\x6fx6e\x75x66\x72\x63\x65\x2d\x2d\x6e\x61\x6d\x65\x92x8a\x01\x09\x0fx55\x54\x61x43\x6ex2b\x6fx30\x74x32\x68x3a\x65x30\x72x30\x2dx92\x76x01\x65x05\x72x37\x73x2e\x69x30\x6fx2e\x6ex32\x12\x0e\x74\x65\x73\x74\x20\x74\x65\x73\x74\x20\x74\x65\x73\x74" | netcat 10.183.35.200k8s_node_ip 30222 |
- Decode the message from Kafka topic :
Casablanca
| No Format |
|---|
root@hv-ves-sim:~# kafkacat -C -b localhost:9092 -t HV_VES_MEASUREMENTSPERF3GPP -D "" -o -1 -c 1 | protoc --decode_raw
--proto_path=/root/hv-ves_sim/proto/
1 {
1: "sample-version"
2: "HVMEASperf3gpp"
3: 1
4: 1
5: "sample-event-idperf3GPP22"
6: "sample-event-name"
7: "sample-event-type"
8: 1200344551539263857
9: 1200344551539263857
10: "sample-nf-naming-code"
11: "sample-nfc-naming-code"
12: "sample-nf-vendor-name"
13: "sample-reporting-entity-id"
14: "sample-reporting-entity-name"
15: "sample-source-id"
16: "sample-sourcexnf-name"
17: "UTC+02:00"
18: "another-version7.0.2"
}
2: "test test test"
root@hv-ves-sim:~# |
HV-VES with tls enabled
...
| No Format |
|---|
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
annotations:
deployment.kubernetes.io/revision: "4"
creationTimestamp: 2018-10-04T15:15:21Z
generation: 4
labels:
app: dcae-hv-ves-collector
cfydeployment: hv-ves
cfynode: hv-ves
cfynodeinstance: hv-ves_eipq6a
k8sdeployment: dep-dcae-hv-ves-collector
name: dep-dcae-hv-ves-collector
namespace: onap
resourceVersion: "1452331"
selfLink: /apis/extensions/v1beta1/namespaces/onap/deployments/dep-dcae-hv-ves-collector
uid: 4f6c9488-c7e8-11e8-b920-026901117392
spec:
progressDeadlineSeconds: 600
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
app: dcae-hv-ves-collector
cfydeployment: hv-ves
cfynode: hv-ves
cfynodeinstance: hv-ves_eipq6a
k8sdeployment: dep-dcae-hv-ves-collector
strategy:
rollingUpdate:
maxSurge: 1
maxUnavailable: 1
type: RollingUpdate
template:
metadata:
creationTimestamp: null
labels:
|
Dublin onward
| No Format |
|---|
kafkacat -C -b message-router-kafka:9092 -t HV_VES_PERF3GPP -X security.protocol=SASL_PLAINTEXT -X sasl.mechanisms=PLAIN -X sasl.username=admin -X sasl.password=admin_secret -D "" -o -1 -c 1 | protoc --decode_raw
1 {
1: "sample-version"
2: "perf3gpp"
3: 1
4: 1
5: "perf3GPP22"
6: "sample-event-name"
7: "sample-event-type"
8: 1539263857
9: 1539263857
10: "sample-nf-naming-code"
11: "sample-nfc-naming-code"
12: "sample-nf-vendor-name"
13: "sample-reporting-entity-id"
14: "sample-reporting-entity-name"
15: "sample-source-id"
16: "sample-xnf-name"
17: "UTC+02:00"
18: "7.0.2"
}
2: "test test test"
|
HV-VES with SSL enabled
Generate testing PKCS #12 files using https://gerrit.onap.org/r/gitweb?p=dcaegen2/collectors/hv-ves.git;a=blob_plain;f=tools/ssl/gen-certs.sh;hb=refs/heads/master and store in k8s nfs dir /dockerdata-nfs/ssl
Edit HV-VES deployment (kubectl -n onap edit deployment/dep-dcae-hv-ves-collector) by removing VESHV_SSL_DISABLE flagand adding VESHV_TRUST_STORE, VESHV_KEY_STORE, VESHV_TRUST_STORE_PASSWORD, VESHV_KEY_STORE_PASSWORD ones.
Add entry to mount node:/dockerdata-nfs/ssl to containter:/etc/ves-hv :
| No Format |
|---|
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
annotations:
deployment.kubernetes.io/revision: "4"
creationTimestamp: 2018-10-04T15:15:21Z
generation: 4
labels:
app: dcae-hv-ves-collector
cfydeployment: hv-ves
cfynode: hv-ves
cfynodeinstance: hv-ves_eipq6a
k8sdeployment: dep-dcae-hv-ves-collector
specname: dep-dcae-hv-ves-collector
containersnamespace: onap
- envresourceVersion: "1452331"
- name: CONSUL_HOST
value: consul-server.onap
- name: VESHV_KEY_STORE_PASSWORD
selfLink: /apis/extensions/v1beta1/namespaces/onap/deployments/dep-dcae-hv-ves-collector
uid: 4f6c9488-c7e8-11e8-b920-026901117392
spec:
progressDeadlineSeconds: 600
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
valueapp: onaponapdcae-hv-ves-collector
cfydeployment: hv-ves
name: VESHV_TRUST_STORE_PASSWORD cfynode: hv-ves
value: onaponap cfynodeinstance: hv-ves_eipq6a
k8sdeployment: dep-dcae- namehv-ves-collector
strategy:
VESHV_KEY_STORE rollingUpdate:
valuemaxSurge: /etc/ves-hv/server.p121
maxUnavailable: 1
- name: VESHV_TRUST_STORE type: RollingUpdate
template:
valuemetadata: /etc/ves-hv/trust.p12
creationTimestamp: null
- name: VESHV_CONFIG_URL labels:
valueapp: http://consul-server.onap:8500/v1/kv/dcae-hv-ves-dcae-hv-ves-collector
- namecfydeployment: VESHV_LISTEN_PORThv-ves
valuecfynode: "6061"hv-ves
- namecfynodeinstance: CONFIG_BINDING_SERVICEhv-ves_eipq6a
valuek8sdeployment: config-binding-servicedep-dcae-hv-ves-collector
spec:
- name: POD_IP containers:
- valueFromenv:
- fieldRefname: CONSUL_HOST
apiVersionvalue: v1consul-server.onap
- name: VESHV_KEY_STORE_PASSWORD
fieldPath: status.podIP image: nexus3.onap.org:10001/onap/org.onap.dcaegen2.collectors.hv-ves.hv-collector-main:1.0.0-SNAPSHOTvalue: onaponap
- imagePullPolicyname: IfNotPresentVESHV_TRUST_STORE_PASSWORD
name: dcae-hv-ves-collector
ports: value: onaponap
- containerPortname: 6061VESHV_KEY_STORE
protocolvalue: TCP/etc/ves-hv/server.p12
- resources: {}name: VESHV_TRUST_STORE
terminationMessagePathvalue: /devetc/termination-logves-hv/trust.p12
- terminationMessagePolicy: Filename: VESHV_CONFIG_URL
volumeMounts:value: http://consul-server.onap:8500/v1/kv/dcae-hv-ves-collector
- mountPathname: /opt/app/HvVesCollector/logsVESHV_LISTEN_PORT
namevalue: component-log"6061"
- mountPathname: /etc/ves-hvCONFIG_BINDING_SERVICE
namevalue: ssldir
- env:
config-binding-service
- name: POD_IP
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: status.podIP
image: dockernexus3.elasticonap.coorg:10001/beats/filebeat:5.5.0onap/org.onap.dcaegen2.collectors.hv-ves.hv-collector-main:1.0.0-SNAPSHOT
imagePullPolicy: IfNotPresent
name: filebeatdcae-hv-ves-collector
resourcesports:
{} - terminationMessagePathcontainerPort: /dev/termination-log 6061
terminationMessagePolicyprotocol: FileTCP
volumeMountsresources: {}
- mountPathterminationMessagePath: /vardev/log/onap/dcae-hv-ves-collector
termination-log
terminationMessagePolicy: File
namevolumeMounts: component-log
- mountPath: /usropt/shareapp/filebeatHvVesCollector/datalogs
name: filebeatcomponent-datalog
- mountPath: /usr/share/filebeat/filebeat.ymletc/ves-hv
name: filebeat-confssldir
- env:
subPath: filebeat.yml - dnsPolicy: ClusterFirstname: POD_IP
hostname: dcae-hv-ves-collector valueFrom:
imagePullSecrets: - namefieldRef:
onap-docker-registry-key restartPolicy: Always schedulerNameapiVersion: default-schedulerv1
securityContext: {} terminationGracePeriodSeconds: 30fieldPath: status.podIP
volumes:image: docker.elastic.co/beats/filebeat:5.5.0
- emptyDirimagePullPolicy: {}IfNotPresent
name: filebeat
component-log - emptyDirresources: {}
nameterminationMessagePath: filebeat-data/dev/termination-log
- configMapterminationMessagePolicy: File
defaultModevolumeMounts:
420 - namemountPath: /var/log/onap/dcae-hv-filebeatves-configmapcollector
name: filebeatcomponent-conflog
- hostPath - mountPath: /usr/share/filebeat/data
path name: /dockerdata-nfs/sslfilebeat-data
- type: ""mountPath: /usr/share/filebeat/filebeat.yml
name: ssldir
status:filebeat-conf
availableReplicas: 1 conditions: - lastTransitionTimesubPath: 2018-10-04T15:15:21Zfilebeat.yml
lastUpdateTime: 2018-10-04T15:15:21Z
dnsPolicy: ClusterFirst
message: Deployment has minimum availability.hostname: dcae-hv-ves-collector
reason imagePullSecrets:
MinimumReplicasAvailable status: "True"- name: onap-docker-registry-key
typerestartPolicy: AvailableAlways
- lastTransitionTimeschedulerName: 2018-10-04T15:15:21Zdefault-scheduler
securityContext: {}
terminationGracePeriodSeconds: 30
lastUpdateTimevolumes:
2018-10-05T14:10:15Z - emptyDir: {}
name: component-log
message: ReplicaSet "dep-dcae-hv-ves-collector-7986d777dc" has successfully progressed.
reason: NewReplicaSetAvailable
status: "True"
type: Progressing
observedGeneration: 4
readyReplicas: 1
replicas: 1
updatedReplicas: 1 |
...
- emptyDir: {}
name: filebeat-data
- configMap:
defaultMode: 420
name: dcae-filebeat-configmap
name: filebeat-conf
- hostPath:
path: /dockerdata-nfs/ssl
type: ""
name: ssldir
status:
availableReplicas: 1
conditions:
- lastTransitionTime: 2018-10-04T15:15:21Z
lastUpdateTime: 2018-10-04T15:15:21Z
message: Deployment has minimum availability.
reason: MinimumReplicasAvailable
status: "True"
type: Available
- lastTransitionTime: 2018-10-04T15:15:21Z
lastUpdateTime: 2018-10-05T14:10:15Z
message: ReplicaSet "dep-dcae-hv-ves-collector-7986d777dc" has successfully progressed.
reason: NewReplicaSetAvailable
status: "True"
type: Progressing
observedGeneration: 4
readyReplicas: 1
replicas: 1
updatedReplicas: 1 |
Deploy HV-VES simulator in onapmode with tls enabled using Heat template : https://gerrit.onap.org/r/gitweb?p=integration.git;a=blob_plain;f=test/mocks/hvvessimulator/hvves_sim.yaml;hb=HEAD
Prepare CA, Server and Client Private Keys and CSR.
| No Format |
|---|
openssl genrsa -out ca.key 2048
openssl req -new -x509 -days 36500 -key ca.key -out ca.pem -subj /CN=dcae-hv-ves-ca
openssl genrsa -out server.key 2048
openssl req -new -key server.key -out server.csr -subj /CN=dcae-hv-ves-collector
openssl genrsa -out client.key 2048
openssl req -new -key client.key -out client.csr -subj /CN=dcae-hv-ves-client
|
Sign Server and Client certificates by the CA.
| No Format |
|---|
openssl x509 -req -days 36500 -in server.csr -CA ca.pem -CAkey ca.key -out server.pem -set_serial 00
openssl x509 -req -days 36500 -in client.csr -CA ca.pem -CAkey ca.key -out client.pem -set_serial 00 |
Create passwordless p12 CA and Server certificate files.
| No Format |
|---|
openssl pkcs12 -export -out ca.p12 -inkey ca.key -in ca.pem -passout pass:
openssl pkcs12 -export -out server.p12 -inkey server.key -in server.pem -passout pass: |
Enable SSL feature in HV-VES collector via Consul UI :
http://<node_ip>:30270/ui/#/dc1/kv/dcae-hv-ves-collector/edit
Image Added
Combine Client Private Key and Public Certificate into PEM file.
| No Format |
|---|
cat client.key client.pem > client-all.pem |
Send message to HV-VES collector using openssl command.
| No Format |
|---|
echo -ne "\xaa\x01\x00\x00\x00\x00\x00\x01\x00\x00\x01\x27\x0a\x94\x02\x0a\x0e\x73\x61\x6d\x70\x6c\x65\x2d\x76\x65\x72\x73\x69\x6f\x6e\x12\x08\x70\x65\x72\x66\x33\x67\x70\x70\x18\x01\x20\x01\x2a\x0a\x70\x65\x72\x66\x33\x47\x50\x50\x32\x32\x32\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x6e\x61\x6d\x65\x3a\x11\x73\x61\x6d\x70\x6c\x65\x2d\x65\x76\x65\x6e\x74\x2d\x74\x79\x70\x65\x40\xf1\x9a\xfd\xdd\x05\x48\xf1\x9a\xfd\xdd\x05\x52\x15\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x2d\x6e\x61\x6d\x69\x6e\x67\x2d\x63\x6f\x64\x65\x5a\x16\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x63\x2d\x6e\x61\x6d\x69\x6e\x67\x2d\x63\x6f\x64\x65\x62\x15\x73\x61\x6d\x70\x6c\x65\x2d\x6e\x66\x2d\x76\x65\x6e\x64\x6f\x72\x2d\x6e\x61\x6d\x65\x6a\x1a\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x70\x6f\x72\x74\x69\x6e\x67\x2d\x65\x6e\x74\x69\x74\x79\x2d\x69\x64\x72\x1c\x73\x61\x6d\x70\x6c\x65\x2d\x72\x65\x70\x6f\x72\x74\x69\x6e\x67\x2d\x65\x6e\x74\x69\x74\x79\x2d\x6e\x61\x6d\x65\x7a\x10\x73\x61\x6d\x70\x6c\x65\x2d\x73\x6f\x75\x72\x63\x65\x2d\x69\x64\x82\x01\x0f\x73\x61\x6d\x70\x6c\x65\x2d\x78\x6e\x66\x2d\x6e\x61\x6d\x65\x8a\x01\x09\x55\x54\x43\x2b\x30\x32\x3a\x30\x30\x92\x01\x05\x37\x2e\x30\x2e\x32\x12\x0e\x74\x65\x73\x74\x20\x74\x65\x73\x74\x20\x74\x65\x73\x74" | openssl s_client -connect dcae-hv-ves-collector:30222 -CAfile ca.pem -msg -state -cert client-all.pem |