Sample cnAAA Configuration

The following is only a sample configuration file provided solely for your reference. You must create and modify your own configuration file according to the specific needs of your deployment. Use plain text password as applicable.

Note

The mandatory parameters are required to ensure that the critical pods such as Policy Builder, CRD, DB (admin and SPR), RADIUS-End point and Policy Engine are in the running state.

cloud-user@alpha-master-1:~$ kubectl get pods -A
NAMESPACE         NAME                                                              READY   STATUS    RESTARTS       AGE
cee-alpha         alert-logger-797bc6465-hdlqj                                      1/1     Running   0              7d21h
cee-alpha         alert-router-674f59995d-fzmlb                                     1/1     Running   0              7d21h
cee-alpha         alertmanager-0                                                    2/2     Running   0              7d23h
cee-alpha         alertmanager-1                                                    2/2     Running   0              7d21h
cee-alpha         alertmanager-2                                                    2/2     Running   0              7d21h
cee-alpha         alertmanager-config-sync-6f8f74cbf6-fkv72                         1/1     Running   1 (2d4h ago)   7d18h
cee-alpha         blackbox-exporter-h8nlx                                           1/1     Running   1              13d
cee-alpha         blackbox-exporter-qdmrh                                           1/1     Running   1              13d
cee-alpha         blackbox-exporter-xc522                                           1/1     Running   1              13d
cee-alpha         bulk-stats-0                                                      3/3     Running   0              7d23h
cee-alpha         bulk-stats-1                                                      3/3     Running   0              7d21h
cee-alpha         cee-alpha-product-documentation-67846bdffb-8w7xs                  2/2     Running   0              7d21h
cee-alpha         core-retriever-7ctxq                                              2/2     Running   2              13d
cee-alpha         core-retriever-l8x2v                                              2/2     Running   2              13d
cee-alpha         core-retriever-mpgv5                                              2/2     Running   2              13d
cee-alpha         core-retriever-wpl76                                              2/2     Running   2              13d
cee-alpha         core-retriever-zlxjk                                              2/2     Running   2              13d
cee-alpha         grafana-555f44b84-7s6qc                                           2/2     Running   0              7d21h
cee-alpha         grafana-555f44b84-wv9sr                                           2/2     Running   0              7d21h
cee-alpha         grafana-dashboard-metrics-5dc47f98b-vcdvt                         1/1     Running   0              7d21h
cee-alpha         kube-state-metrics-5f7fcfccf-b8j7c                                1/1     Running   0              7d21h
cee-alpha         logs-retriever-6j2zf                                              1/1     Running   1              13d
cee-alpha         logs-retriever-9tjlm                                              1/1     Running   1              13d
cee-alpha         logs-retriever-kt6mk                                              1/1     Running   1              13d
cee-alpha         logs-retriever-rpdd8                                              1/1     Running   1              13d
cee-alpha         logs-retriever-xkczp                                              1/1     Running   1              13d
cee-alpha         node-exporter-69gwg                                               1/1     Running   0              2d4h
cee-alpha         node-exporter-6ghl9                                               1/1     Running   0              2d4h
cee-alpha         node-exporter-jxrvd                                               1/1     Running   0              2d4h
cee-alpha         node-exporter-kxztj                                               1/1     Running   0              2d4h
cee-alpha         node-exporter-xrv7j                                               1/1     Running   0              2d4h
cee-alpha         ops-center-cee-alpha-ops-center-54899d9984-469p8                  4/4     Running   0              2d4h
cee-alpha         path-provisioner-6hq6h                                            1/1     Running   1              13d
cee-alpha         path-provisioner-6m52h                                            1/1     Running   1              13d
cee-alpha         path-provisioner-f7zr6                                            1/1     Running   1              13d
cee-alpha         path-provisioner-nnmk9                                            1/1     Running   1              13d
cee-alpha         path-provisioner-vqblj                                            1/1     Running   1              13d
cee-alpha         pgpool-7b55b577b9-klh6g                                           1/1     Running   0              2d4h
cee-alpha         pgpool-7b55b577b9-x6hw7                                           1/1     Running   0              2d4h
cee-alpha         postgres-0                                                        1/1     Running   0              7d23h
cee-alpha         postgres-1                                                        1/1     Running   0              7d21h
cee-alpha         postgres-2                                                        1/1     Running   0              7d21h
cee-alpha         prometheus-hi-res-0                                               4/4     Running   0              7d23h
cee-alpha         prometheus-hi-res-1                                               4/4     Running   0              7d21h
cee-alpha         prometheus-hi-res-2                                               4/4     Running   0              7d21h
cee-alpha         prometheus-rules-cf645f668-nlsmf                                  1/1     Running   0              7d21h
cee-alpha         prometheus-scrapeconfigs-synch-78f9dd6dbb-hrk94                   1/1     Running   0              7d5h
cee-alpha         pv-manager-84d59c4d4-h6ldw                                        1/1     Running   0              7d21h
cee-alpha         pv-provisioner-758f6d6875-rkh9l                                   1/1     Running   0              7d21h
cee-alpha         restart-kubelet-888sq                                             1/1     Running   1              13d
cee-alpha         restart-kubelet-b49nq                                             1/1     Running   1              13d
cee-alpha         restart-kubelet-h6xbl                                             1/1     Running   1              13d
cee-alpha         restart-kubelet-hjhwj                                             1/1     Running   1              13d
cee-alpha         restart-kubelet-r7p7b                                             1/1     Running   1              13d
cee-alpha         show-tac-manager-86599f9d75-d65rf                                 2/2     Running   0              7d21h
cee-alpha         snmp-trapper-cee-alpha-687nb                                      1/1     Running   1              8d
cee-alpha         snmp-trapper-cee-alpha-6tkcv                                      1/1     Running   1              8d
cee-alpha         snmp-trapper-cee-alpha-m9cf5                                      1/1     Running   1              8d
cee-alpha         snmp-trapper-default-4s24m                                        1/1     Running   1              8d
cee-alpha         snmp-trapper-default-c9bqn                                        1/1     Running   1              8d
cee-alpha         snmp-trapper-default-m7swc                                        1/1     Running   2              8d
cee-alpha         thanos-query-frontend-hi-res-5d8ff67859-h4msn                     1/1     Running   0              7d23h
cee-alpha         thanos-query-frontend-hi-res-5d8ff67859-rfdb4                     1/1     Running   0              7d21h
cee-alpha         thanos-query-frontend-hi-res-5d8ff67859-rw442                     1/1     Running   0              7d21h
cee-alpha         thanos-query-hi-res-68969b56b9-gdkwc                              2/2     Running   0              7d21h
cee-alpha         thanos-query-hi-res-68969b56b9-snhft                              2/2     Running   0              7d23h
cee-alpha         thanos-query-hi-res-68969b56b9-t6zft                              2/2     Running   0              7d21h
chaos-global      chaos-controller-cd9c8fdff-68p58                                  2/2     Running   0              7d18h
chaos-global      chaos-worker-4vzv2                                                2/2     Running   2              13d
chaos-global      chaos-worker-g28pv                                                2/2     Running   2              13d
chaos-global      chaos-worker-td2pq                                                2/2     Running   2              13d
chaos-global      chaos-worker-wg496                                                2/2     Running   2              13d
chaos-global      chaos-worker-z64jb                                                2/2     Running   2              13d
chaos-global      ops-center-chaos-global-ops-center-58f8cb786f-2vskv               4/4     Running   0              2d4h
istio-system      istiod-759c4dd94c-fglr8                                           1/1     Running   0              7d21h
istio-system      istiod-759c4dd94c-lbkgg                                           1/1     Running   0              7d21h
istio-system      istiod-759c4dd94c-tqztk                                           1/1     Running   0              7d21h
kube-system       cilium-2rnf4                                                      1/1     Running   1              12d
kube-system       cilium-5hrwc                                                      1/1     Running   1              12d
kube-system       cilium-dqfrw                                                      1/1     Running   1              12d
kube-system       cilium-envoy-5xs9q                                                1/1     Running   1              13d
kube-system       cilium-envoy-jpcqq                                                1/1     Running   1              13d
kube-system       cilium-envoy-pqfh4                                                1/1     Running   1              13d
kube-system       cilium-envoy-w29l9                                                1/1     Running   1              13d
kube-system       cilium-envoy-wrrsp                                                1/1     Running   1              13d
kube-system       cilium-nvq2x                                                      1/1     Running   1              12d
kube-system       cilium-operator-6cd9578487-s26j2                                  1/1     Running   2              13d
kube-system       cilium-pkq54                                                      1/1     Running   2              12d
kube-system       cluster-cert-maintainer-ddb8777fb-625qw                           1/1     Running   0              2d4h
kube-system       coredns-54b8d594bc-bd9xj                                          1/1     Running   0              2d4h
kube-system       coredns-54b8d594bc-n8zjd                                          1/1     Running   0              2d4h
kube-system       cpu-sync-js4jr                                                    1/1     Running   0              2d4h
kube-system       cpu-sync-l4mq2                                                    1/1     Running   0              2d4h
kube-system       cpu-sync-zw6rn                                                    1/1     Running   0              2d4h
kube-system       etcd-alpha-master-1                                               1/1     Running   1              13d
kube-system       etcd-alpha-master-2                                               1/1     Running   1              13d
kube-system       etcd-alpha-master-3                                               1/1     Running   1              13d
kube-system       hubble-relay-b5cb8c7f8-kmpz6                                      1/1     Running   0              7d18h
kube-system       hubble-ui-67bb5d95f8-qhzwx                                        2/2     Running   0              7d18h
kube-system       journald-adapter-ck9xn                                            1/1     Running   1              13d
kube-system       journald-adapter-fm7tb                                            1/1     Running   1              13d
kube-system       journald-adapter-m6jzn                                            1/1     Running   1              13d
kube-system       journald-adapter-nf5jf                                            1/1     Running   1              13d
kube-system       journald-adapter-thhhs                                            1/1     Running   2              13d
kube-system       kube-apiserver-alpha-master-1                                     1/1     Running   1              13d
kube-system       kube-apiserver-alpha-master-2                                     1/1     Running   1              13d
kube-system       kube-apiserver-alpha-master-3                                     1/1     Running   1              13d
kube-system       kube-controller-manager-alpha-master-1                            1/1     Running   3              13d
kube-system       kube-controller-manager-alpha-master-2                            1/1     Running   1              13d
kube-system       kube-controller-manager-alpha-master-3                            1/1     Running   1              13d
kube-system       kube-scheduler-alpha-master-1                                     1/1     Running   2              13d
kube-system       kube-scheduler-alpha-master-2                                     1/1     Running   1              13d
kube-system       kube-scheduler-alpha-master-3                                     1/1     Running   1              13d
kube-system       maintainer-gk7dq                                                  1/1     Running   0              2d4h
kube-system       maintainer-ksnzs                                                  1/1     Running   0              2d4h
kube-system       maintainer-rfw49                                                  1/1     Running   0              2d4h
kube-system       maintainer-tqzt5                                                  1/1     Running   0              2d4h
kube-system       maintainer-v86sb                                                  1/1     Running   0              2d4h
kube-system       user-password-monitor-bv96h                                       1/1     Running   0              2d4h
kube-system       user-password-monitor-dhzn5                                       1/1     Running   0              2d4h
kube-system       user-password-monitor-mf4hs                                       1/1     Running   0              2d4h
kube-system       user-password-monitor-pb4tr                                       1/1     Running   0              2d4h
kube-system       user-password-monitor-pg4pd                                       1/1     Running   0              2d4h
lbs-alpha         lbs-agent-6dq7r                                                   1/1     Running   0              7d21h
lbs-alpha         lbs-agent-7lzpv                                                   1/1     Running   0              7d21h
lbs-alpha         lbs-agent-pw444                                                   1/1     Running   2              7d21h
lbs-alpha         lbs-agent-qvhml                                                   1/1     Running   2              7d21h
lbs-alpha         lbs-agent-s9db7                                                   1/1     Running   2              7d21h
lbs-alpha         lbs-operator-5f6d4b8648-lncld                                     2/2     Running   0              7d21h
lbs-alpha         ops-center-lbs-alpha-ops-center-57dc5df798-x49zc                  4/4     Running   0              7d5h
nginx-ingress     nginx-ingress-ingress-nginx-controller-754594c4d6-c5ffp           1/1     Running   0              7d23h
nginx-ingress     nginx-ingress-ingress-nginx-controller-754594c4d6-rsn9n           1/1     Running   0              7d21h
nginx-ingress     nginx-ingress-ingress-nginx-controller-754594c4d6-wnmt4           1/1     Running   0              7d21h
nginx-ingress     nginx-ingress-ingress-nginx-defaultbackend-5f6687fbfb-qxsfp       1/1     Running   0              7d21h
<namespace>         admin-db-0                                                        1/1     Running   0              7d2h
<namespace>         admin-db-1                                                        1/1     Running   0              7d2h
<namespace>         base-entitlement-pcf-79797d9b7c-4qgmd                             1/1     Running   0              7d21h
<namespace>         br-controller-scdb-6d8bf99679-nbnjw                               1/1     Running   0              7d2h
<namespace>         cdl-ep-session-c1-d0-8ffd988f7-2bg7p                              1/1     Running   0              7d2h
<namespace>         cdl-ep-session-c1-d0-8ffd988f7-vsbn8                              1/1     Running   0              7d2h
<namespace>         cdl-index-session-c1-m1-0                                         1/1     Running   0              7d2h
<namespace>         cdl-index-session-c1-m1-1                                         1/1     Running   0              7d2h
<namespace>         cdl-index-session-c1-m2-0                                         1/1     Running   0              7d2h
<namespace>         cdl-index-session-c1-m2-1                                         1/1     Running   0              7d2h
<namespace>         cdl-index-session-c1-m3-0                                         1/1     Running   0              7d2h
<namespace>         cdl-index-session-c1-m3-1                                         1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m1-0                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m1-1                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m2-0                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m2-1                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m3-0                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m3-1                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m4-0                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m4-1                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m5-0                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m5-1                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m6-0                                          1/1     Running   0              7d2h
<namespace>         cdl-slot-session-c1-m6-1                                          1/1     Running   0              7d2h
<namespace>         consolidated-aaa-logging-0                                        1/1     Running   0              7d2h
<namespace>         consolidated-logging-0                                            1/1     Running   0              7d2h
<namespace>         controlcenter-<namespace>-pcf-engine-app-production-rjio-5bcpjv6b   3/3     Running   5              7d2h
<namespace>         crd-api-<namespace>-pcf-engine-app-production-rjio-6bcdf5b547b8xt   2/2     Running   5              7d2h
<namespace>         db-admin-0                                                        1/1     Running   0              7d2h
<namespace>         db-admin-1                                                        1/1     Running   0              7d2h
<namespace>         db-admin-2                                                        1/1     Running   0              7d2h
<namespace>         db-admin-config-0                                                 1/1     Running   0              7d2h
<namespace>         db-admin-config-1                                                 1/1     Running   0              7d2h
<namespace>         db-admin-config-2                                                 1/1     Running   0              7d2h
<namespace>         db-scdb-sdb-subscriber1-0                                         1/1     Running   0              7d2h
<namespace>         db-scdb-sdb-subscriber1-1                                         1/1     Running   0              7d2h
<namespace>         db-scdb-sdb-subscriber1-2                                         1/1     Running   0              7d2h
<namespace>         db-spr-config-0                                                   1/1     Running   0              7d2h
<namespace>         db-spr-config-1                                                   1/1     Running   0              7d2h
<namespace>         db-spr-config-2                                                   1/1     Running   0              7d2h
<namespace>         db-spr1-0                                                         1/1     Running   0              7d2h
<namespace>         db-spr1-1                                                         1/1     Running   0              7d2h
<namespace>         db-spr1-2                                                         1/1     Running   0              7d2h
<namespace>         etcd-<namespace>-etcd-cluster-0                                     2/2     Running   0              7d2h
<namespace>         etcd-<namespace>-etcd-cluster-1                                     2/2     Running   0              7d2h
<namespace>         etcd-<namespace>-etcd-cluster-2                                     2/2     Running   0              7d2h
<namespace>         grafana-dashboard-cdl-<namespace>-7f7bb99f47-2zr82                  1/1     Running   0              7d2h
<namespace>         grafana-dashboard-etcd-<namespace>-7cfdf8ddc5-wftlc                 1/1     Running   0              7d2h
<namespace>         grafana-dashboard-pcf-585fb9c5b7-h2jd9                            1/1     Running   0              7d2h
<namespace>         kafka-0                                                           2/2     Running   0              7d2h
<namespace>         kafka-1                                                           2/2     Running   0              7d2h
<namespace>         kafka-2                                                           2/2     Running   0              7d2h
<namespace>         lbvip02-86dcc76fb7-26bb5                                          1/1     Running   0              7d2h
<namespace>         network-query-222vs                                               1/1     Running   0              7d2h
<namespace>         network-query-7thw5                                               1/1     Running   0              7d2h
<namespace>         network-query-9s8cs                                               1/1     Running   0              7d2h
<namespace>         network-query-csq7f                                               1/1     Running   0              7d2h
<namespace>         network-query-lqjvp                                               1/1     Running   0              7d2h
<namespace>         ops-center-<namespace>-ops-center-5b747dc456-8vwkn                  4/4     Running   0              7d5h
<namespace>         patch-server-<namespace>-cnat-cps-infrastructure-57698b85b6-z476p   1/1     Running   0              7d2h
<namespace>         pcf-engine-<namespace>-pcf-engine-app-production-rjio-8647c6b228l   5/5     Running   5              7d2h
<namespace>         pcf-engine-<namespace>-pcf-engine-app-production-rjio-8647c6czfzl   5/5     Running   5              7d2h
<namespace>         pcf-engine-<namespace>-pcf-engine-app-production-rjio-8647c6f9dj7   5/5     Running   5              7d2h
<namespace>         pcf-prometheus-rules-74fb759cd4-lv7ns                             2/2     Running   0              7d2h
<namespace>         pcf-utilities-0                                                   1/1     Running   0              7d2h
<namespace>         policy-builder-<namespace>-pcf-engine-app-production-rjio-588nbvs   1/1     Running   2              7d2h
<namespace>         prometheus-rules-cdl-7655b49bf-652dk                              1/1     Running   0              7d2h
<namespace>         prometheus-rules-etcd-7b5c7dc847-kjndn                            1/1     Running   0              7d2h
<namespace>         radius-ep-0                                                       2/2     Running   4              7d2h
<namespace>         radius-ep-1                                                       2/2     Running   5              7d2h
<namespace>         radius-ep-2                                                       2/2     Running   5              7d2h
<namespace>         redis-keystore-0                                                  2/2     Running   0              7d2h
<namespace>         redis-keystore-1                                                  2/2     Running   0              7d2h
<namespace>         redis-queue-0                                                     2/2     Running   0              7d2h
<namespace>         redis-queue-1                                                     2/2     Running   0              7d2h
<namespace>         redis-queue-2                                                     2/2     Running   0              7d2h
<namespace>         rs-controller-admin-b64548888-855lb                               2/2     Running   0              7d2h
<namespace>         rs-controller-admin-config-66f6b6cfdb-2gxcl                       1/1     Running   0              7d2h
<namespace>         rs-controller-scdb-sdb-subscriber1-667df76585-n4n7s               1/1     Running   0              7d2h
<namespace>         rs-controller-spr-config-68f7488794-6v4vc                         1/1     Running   0              7d2h
<namespace>         rs-controller-spr1-69bbf65dcd-ppsck                               1/1     Running   0              7d2h
<namespace>         smart-agent-<namespace>-ops-center-78cb748f88-snlkm                 1/1     Running   0              7d21h
<namespace>         svn-0                                                             2/2     Running   0              7d2h
<namespace>         traceid-0                                                         1/1     Running   0              7d2h
<namespace>         zookeeper-0                                                       1/1     Running   0              7d2h
<namespace>         zookeeper-1                                                       1/1     Running   0              7d2h
<namespace>         zookeeper-2                                                       1/1     Running   0              7d2h
registry          charts-cee-2025-01-1-i14-0                                        1/1     Running   0              2d4h
registry          charts-cee-2025-01-1-i14-1                                        1/1     Running   0              2d4h
registry          charts-cee-2025-01-1-i14-2                                        1/1     Running   0              2d4h
registry          charts-cpc-2025-01-0-i84-0                                        1/1     Running   0              7d21h
registry          charts-cpc-2025-01-0-i84-1                                        1/1     Running   0              7d21h
registry          charts-cpc-2025-01-0-i84-2                                        1/1     Running   0              7d23h
registry          charts-ulb-2025-01-0-i6-0                                         1/1     Running   0              7d23h
registry          charts-ulb-2025-01-0-i6-1                                         1/1     Running   0              7d21h
registry          charts-ulb-2025-01-0-i6-2                                         1/1     Running   0              7d21h
registry          registry-cee-2025-01-1-i14-0                                      1/1     Running   0              2d4h
registry          registry-cee-2025-01-1-i14-1                                      1/1     Running   0              2d4h
registry          registry-cee-2025-01-1-i14-2                                      1/1     Running   0              2d4h
registry          registry-cpc-2025-01-0-i84-0                                      1/1     Running   0              7d21h
registry          registry-cpc-2025-01-0-i84-1                                      1/1     Running   0              7d23h
registry          registry-cpc-2025-01-0-i84-2                                      1/1     Running   0              7d21h
registry          registry-ulb-2025-01-0-i6-0                                       1/1     Running   0              7d23h
registry          registry-ulb-2025-01-0-i6-1                                       1/1     Running   0              7d21h
registry          registry-ulb-2025-01-0-i6-2                                       1/1     Running   0              7d21h
registry          software-unpacker-0                                               1/1     Running   0              7d23h
registry          software-unpacker-1                                               1/1     Running   0              7d21h
registry          software-unpacker-2                                               1/1     Running   0              7d21h
smi-certs         ss-cert-provisioner-65f8ffdf96-f2kzq                              1/1     Running   0              7d21h
smi-ops-control   opscenter-controller-974777585-6l66g                              1/1     Running   0              7d5h
smi-vips          keepalived-bvjc4                                                  3/3     Running   5              13d
smi-vips          keepalived-ccbjn                                                  3/3     Running   5              13d
smi-vips          keepalived-hkmnj                                                  3/3     Running   5              13d
smi-vips          keepalived-w4bmw                                                  3/3     Running   5              13d
smi-vips          keepalived-x57b2                                                  3/3     Running   5              13d
cloud-user@alpha-master-1:~$


cloud-user@alpha-master-1:~$ kubectl get pods -A | grep 0/
cloud-user@alpha-master-1:~$

cloud-user@alpha-master-1:~$ kubectl get pods -A | awk 'NR==1 || (split($3,a,"/") && a[1]!=a[2])'
NAMESPACE         NAME                                                              READY   STATUS    RESTARTS        AGE
cloud-user@alpha-master-1:~$

cloud-user@alpha-master-1:~$ kubectl get pods -A | grep -v Running
NAMESPACE         NAME                                                              READY   STATUS    RESTARTS       AGE
cloud-user@alpha-master-1:~$


cloud-user@alpha-master-1:~$ helm ls -n <namespace>
NAME                                            NAMESPACE       REVISION        UPDATED                                 STATUS          CHART                                                                        APP VERSION
<namespace>-cnat-cps-infrastructure               <namespace>       1               2025-01-22 09:25:12.302092085 +0000 UTC deployed        cnat-cps-infrastructure-0.6.10-dev-cpc-2025-01-0050-250113145752-ccfb651     BUILD_2025.01.0.i84
<namespace>-cps-radius-ep                         <namespace>       1               2025-01-22 09:25:12.314792736 +0000 UTC deployed        cps-radius-ep-0.6.43-dev-cpc-2025-01-0117-250113145837-79379ea               BUILD_2025.01.0.i84
<namespace>-etcd-cluster                          <namespace>       1               2025-01-22 09:25:12.306024478 +0000 UTC deployed        etcd-cluster-1.6.0-1-6-0154-241127115736-ca72f04                             BUILD_2025.01.0.i84
<namespace>-network-query                         <namespace>       1               2025-01-22 09:25:12.31344704 +0000 UTC  deployed        network-query-0.5.4-dev-cpc-2025-01-0085-250113113356-5fecffc                BUILD_2025.01.0.i84
<namespace>-ngn-datastore                         <namespace>       1               2025-01-22 09:25:12.312562639 +0000 UTC deployed        ngn-datastore-1.12.0-1-12-1049-250108155638-6f9b7b0                          BUILD_2025.01.0.i84
<namespace>-ops-center                            <namespace>       3               2025-01-22 05:50:50.022064334 +0000 UTC deployed        pcf-ops-center-0.6.32-dev-cpc-2025-01-0540-250114095843-adb26ce              BUILD_2025.01.0.i84
<namespace>-pcf-config                            <namespace>       1               2025-01-22 09:25:12.314287792 +0000 UTC deployed        pcf-config-0.6.3-dev-cpc-2025-01-0028-250113150230-f686b68                   BUILD_2025.01.0.i84
<namespace>-pcf-dashboard                         <namespace>       1               2025-01-22 09:25:12.305991736 +0000 UTC deployed        pcf-dashboard-0.2.17-dev-cpc-2025-01-0178-250113150137-30d1bc0               BUILD_2025.01.0.i84
<namespace>-pcf-engine-app-production-rjio        <namespace>       1               2025-01-22 09:25:12.312781104 +0000 UTC deployed        pcf-engine-app-0.9.1-dev-cpc-2025-01-0741-250120133559-dded5d5               BUILD_2025.01.0.i84
<namespace>-pcf-oam-app                           <namespace>       1               2025-01-22 09:25:12.306231511 +0000 UTC deployed        pcf-oam-app-0.6.2-dev-cpc-2025-01-0021-250114095926-8be6401                  BUILD_2025.01.0.i84
<namespace>-pcf-services                          <namespace>       1               2025-01-22 09:25:12.316334935 +0000 UTC deployed        pcf-services-0.6.17-dev-cpc-2025-01-0081-250113150000-3a1c3c8                BUILD_2025.01.0.i84
cloud-user@alpha-master-1:~$


cloud-user@alpha-master-1:~$ kubectl get pods -n cpc-alpha | grep db-admin
db-admin-0                                                        1/1     Running   0          7d2h
db-admin-1                                                        1/1     Running   0          7d2h
db-admin-2                                                        1/1     Running   0          7d2h
db-admin-config-0                                                 1/1     Running   0          7d2h
db-admin-config-1                                                 1/1     Running   0          7d2h
db-admin-config-2                                                 1/1     Running   0          7d2h
cloud-user@alpha-master-1:~$

Note

The Engine pod retains the 'pcf-engine' designation for backward compatibility.

cnAAA GR configurations

cnAAA Ops-Center Configuration for GR Site01

This is only a sample configuration of cnAAA Ops-Center settings for GR Site01 provided solely for your reference. You must create and modify your own configuration file according to the specific needs of your deployment.Use plain text password as applicable.


datastore primary-endpoint connection-settings keep-alive keep-alive-time-ms 200

datastore primary-endpoint connection-settings channel count 4

datastore primary-endpoint connection-settings timeout-ms 600

datastore external-endpoints datastore

connection-settings keep-alive keep-alive-time-ms 200

connection-settings channel count 4

connection-settings timeout-ms 500

exit

db global-settings db-replica 3

db global-settings volume-storage-class local

db global-settings backup-settings scp-server host 192.0.2.1

db global-settings backup-settings scp-server port 22

db global-settings backup-settings scp-server user-name cloud-user

db global-settings backup-settings scp-server password $8$50BpcgMJlN/L3zOKLFOImY/Fs5u1kUT40FYBV8gvKIs=

db global-settings backup-settings scp-server remote-backup-path /home/cloud-user/Backup_user

db scdb replica-name admin-db

port      65005

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type-5

replica-set-label value admin-db

member-configuration member sdb-rs4-s1-arbiter1

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs4-s1-arbiter2

  host    192.0.2.3

  arbiter true

  site    remote

exit

member-configuration member sdb-rs4-s1-m1

  host     192.0.2.4

  arbiter  false

  priority 104

  site     local

exit

member-configuration member sdb-rs4-s1-m2

  host     192.0.2.5

  arbiter  false

  priority 103

  site     local

exit

member-configuration member sdb-rs4-s2-m1

  host     192.0.2.6

  arbiter  false

  priority 102

  site     remote

exit

member-configuration member sdb-rs4-s2-m2

  host     192.0.2.7

  arbiter  false

  priority 101

  site     remote

exit

member-configuration member sdb-rs4-s3-arbiter3

  host    192.0.2.8

  arbiter true

  site    remote

exit

exit

db scdb replica-name sdb-spr01

port      65001

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type

replica-set-label value oam

member-configuration member sdb-rs1-s1-arbiter1

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs1-s1-arbiter2

  host    192.0.2.3

  arbiter true

  site    remote

exit

member-configuration member sdb-rs1-s1-m1

  host     192.0.2.4

  arbiter  false

  priority 104

  site     local

exit

member-configuration member sdb-rs1-s1-m2

  host     192.0.2.5

  arbiter  false

  priority 103

  site     local

exit

member-configuration member sdb-rs1-s2-m1

  host     192.0.2.6

  arbiter  false

  priority 102

  site     remote

exit

member-configuration member sdb-rs1-s2-m2

  host     192.0.2.7

  arbiter  false

  priority 101

  site     remote

exit

member-configuration member sdb-rs1-s3-arbiter3

  host    192.0.2.8

  arbiter true

  site    remote

exit

exit

db scdb replica-name sdb-spr02

port      65002

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type

replica-set-label value oam

member-configuration member sdb-rs2-s1-arbiter1

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs2-s1-arbiter2

  host    192.0.2.3

  arbiter true

  site    remote

exit

member-configuration member sdb-rs2-s1-m1

  host     192.0.2.4

  arbiter  false

  priority 104

  site     local

exit

member-configuration member sdb-rs2-s1-m2

  host     192.0.2.5

  arbiter  false

  priority 103

  site     local

exit

member-configuration member sdb-rs2-s2-m1

  host     192.0.2.6

  arbiter  false

  priority 102

  site     remote

exit

member-configuration member sdb-rs2-s2-m2

  host     192.0.2.7

  arbiter  false

  priority 101

  site     remote

exit

member-configuration member sdb-rs2-s3-arbiter3

  host    192.0.2.8

  arbiter true

  site    remote

exit

exit

db scdb replica-name sdb-spr03

port      65003

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type

replica-set-label value oam

member-configuration member sdb-rs3-s1-arbiter1

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs3-s1-arbiter2

  host    192.0.2.3

  arbiter true

  site    remote

exit

member-configuration member sdb-rs3-s1-m1

  host     192.0.2.4

  arbiter  false

  priority 104

  site     local

exit

member-configuration member sdb-rs3-s1-m2

  host     192.0.2.5

  arbiter  false

  priority 103

  site     local

exit

member-configuration member sdb-rs3-s2-m1

  host     192.0.2.6

  arbiter  false

  priority 102

  site     remote

exit

member-configuration member sdb-rs3-s2-m2

  host     192.0.2.7

  arbiter  false

  priority 101

  site     remote

exit

member-configuration member sdb-rs3-s3-arbiter3

  host    192.0.2.8

  arbiter true

  site    remote

exit

exit

debug tracing type DISABLED

debug backup-config backup-type all

debug backup-config username admin

debug backup-config password $8$i3KyeobVckgOGTJUafPaBlHJrAiz+clYTAWqUdUwf1U=

debug backup-config svn-url http://svn/repos/RJIL_PB_APR25

debug backup-config scp-server-user-name root

debug backup-config scp-server-user-ip 192.0.2.9

debug backup-config scp-server-dest-backup-path /opt/Auto-bkp

debug backup-config scp-server-user-password $8$OWABKOFKlplELtLz4yCltDfdHK0Yk+ES/MxP1YK9PSw=

debug backup-config pb-ingress pb.CPC-gamma-cncps-CPC-engine-app-CPC01production.192.0.2.10.nip.io

debug backup-config crd-ingress crd-api.CPC-gamma-cncps-CPC-engine-app-CPC01production.192.0.2.10.nip.io

debug logging default-level error

debug logging logger com.broadhop

level error

exit

debug logging logger com.broadhop.balance.impl.autowire.AutowireBalanceManagerBlueprint

level error

exit

debug logging logger com.broadhop.balance.impl.policyintel.PolicyStateStub

level error

exit

debug logging logger com.broadhop.custrefdata.impl.CustomerReferenceDataManager

level debug

exit

debug logging logger com.broadhop.custrefdata.impl.dao.GenericDao

level debug

exit

debug logging logger com.broadhop.licensing.impl.LicenseCountRequestHandler

level debug

exit

debug logging logger com.broadhop.licensing.impl.LicenseManagerProxy

level debug

exit

debug logging logger com.broadhop.licensing.impl.PrometheusMetricsApi

level debug

exit

debug logging logger com.broadhop.licensing.impl.SmartLicenceMongo

level debug

exit

debug logging logger com.broadhop.radius

level error

exit

debug logging logger com.broadhop.radius.impl.devicemanager

level error

exit

debug logging logger com.broadhop.radius.messages.impl

level debug

exit

debug logging logger com.broadhop.radius.policy.RadiusDelayedStartupManager

level error

exit

debug logging logger com.broadhop.radius.policy.event

level debug

exit

debug logging logger com.broadhop.radius.policy.event.RadiusMessageDealer

level error

exit

debug logging logger com.broadhop.referencedata.impl

level debug

exit

debug logging logger com.broadhop.referencedata.impl.ReferenceDataManager

level error

exit

debug logging logger com.broadhop.resource.impl

level debug

exit

debug logging logger com.broadhop.resource.impl.ResourceChangeMonitor

level error

exit

debug logging logger com.broadhop.runtime.impl

level error

exit

debug logging logger com.cisco.radius.endpoint.impl

level error

exit

debug logging logger com.cisco.radius.endpoint.utility.LeaderSelector

level debug

exit

debug logging logger com.cisco.radius.smart.licensing.LicenseKPIManager

level debug

exit

debug logging logger policy.engine

level debug

exit

features patching ingress-enabled true

testing enforce-affinity-rules true

pods-management disable-pods [ redis network-query traceid ]

advance-tuning redis-password $8$GzehhS3rBaAM2cW0bihnzHbSDGL03E/N1L0fekMsHw8=

advance-tuning slice-access-control disabled

advance-tuning slice-based-nf-selection chf disabled

advance-tuning app-resource-control rest-ep memory max-heap-size 4

advance-tuning app-resource-control rest-ep memory new-gen-size 3

advance-tuning async-threading default-worker-threads 25

advance-tuning async-threading default-queue-size 120

advance-tuning async-threading default-processing-threads 12

advance-tuning async-threading http2-connect-timeout-ms 120

advance-tuning async-threading http2-idle-connection-timeout-sec 60

radius bind-ipv4 [ 198.51.100.1 ]

radius bind-ipv6 [ 2001:db8::10:1:42:142 ]

radius replicas 3

radius lbs-service true

radius settings request-timeout-ms 5000

radius settings max-tries  1

radius settings min-processing-time-millis 3000

radius settings backoff-time-millis 1000

radius advance-tuning throttling-limit 100

radius advance-tuning coa-throttlling-for-asr9k-pep true

radius message-authenticator access-accept false

radius message-authenticator accounting-response false

radius device-group ASR9K

default-shared-secret     $8$dqP6Y3ne6pOEg0jjPshAAvOf94SIe1gPlyR/rxdl9kc=

default-coa-shared-secret $8$eAVvx1N1zDAJUVBSsxEwK9ReGIdk16AThB1hfQnNTKg=

coa-port                  3799

coa-retries               3

coa-timeout-seconds       3

device EX-BNG1

  ip                 198.51.100.2

  shared-secret      $8$Pn/NW5P02PfeWgff9E9sqc8dECtU2TSLJ+TnzVdRYOc=

  coa-shared-secret  $8$DC5x/I2KI8UD8VsjXJJHNmWzeDPsaBl2HrXESADjDj0=

  loopback-addresses [ 192.0.2.11 ]

exit

device EX-BNG2

  ip                 198.51.100.3

  shared-secret      $8$R5LNawhpHvCtjHdemcGdDkVHv4/Gebh28uhm2ylZYjU=

  coa-shared-secret  $8$vQhG90kIXVTwmLaqLhj2rxZ3XyxDGW/nKf0ZeIw7ifU=

  loopback-addresses [ 192.0.2.11 ]

exit

device EX-BNG3

  ip                 198.51.100.4

  shared-secret      $8$qDifuNqPGwsCsGODUT+NA6Ypf7G51izfB449i5WIXyk=

  coa-shared-secret  $8$ZVnedWz3Xq+h7QsxlzuFXaIPBY3QoWpFUezjC8EsO4A=

  loopback-addresses [ 192.0.2.11 ]

exit

exit

radius server-group grp1

servers DEL_OCS

  primary              198.51.100.5

  secondary            198.51.100.6

  nas-ip               192.0.2.12

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$rgcQTgLEudJdUtfCgLwAYC16ktAi4Xu7qjF/riX02Dg=

  shared-secret        $8$30UyK5lB2EwfzEPYWrXS/sn+DWfOXzm6XV3s7D8Wq+0=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$RpDHAuN/zCZYroXNasrvul/ocQHve4GVGxiLnFVTLg0=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers GUJ_OCS

  primary              198.51.100.7

  secondary            198.51.100.8

  nas-ip               192.0.2.12

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$uABWJQgerqpneO6gd2AGaSAIxCitNpH69PG+9jFW9fg=

  shared-secret        $8$OU/UwXacpI9i/N9ftnCAbqa04CA0MjDX2LnnQW2eLEM=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$Ua4NmzgUbJ3EA1v86eE2fMMtF3pm1Ghb0WueZOepXhA=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers LUCK_OCS

  primary              198.51.100.9

  secondary            198.51.100.10

  nas-ip               192.0.2.12

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$U4EOrGRDyN8nq96aVVsZlei3DkGbdEfqQQL444t0ufw=

  shared-secret        $8$Tgq1MKmmRs195IeZNEWreCQpOIeWiJhN62sF5Cp8W84=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$9F9a+1KCLxXLIg0mpeSPasKBNDpuBvYTQIFOgYNGy5c=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers PBHR_OCS

  primary              198.51.100.11

  secondary            198.51.100.12

  nas-ip               192.0.2.12

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$cA7xG56sPrhWYYccYGHCuozy7t8CAtc/q5TCTX0CZLo=

  shared-secret        $8$37deIR+G0mdMhH9rSn3OfQ6scAtHYvtQgWF5o19zBak=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$Ko8EAV1Sdv/6OgMwJHGAiiGeJeRTt/MI+jQocQS3Dvs=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers PassiveMZ-12997

  primary              198.51.100.13

  secondary            198.51.100.14

  nas-ip               192.0.2.12

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$IqebiUpWoztzVa+L0dVdXxBEGApCZ9Q68Jj3T8HKHWM=

  shared-secret        $8$5XrbqUxj+vdcZCyfVEglaw6NHMCD87D1RyMUxjEqJfM=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$W192Tn+h2sf7DW8dc4dy/O+kpCNX5S2/SjerSIMmFp4=

  thread-pool-size     300

  server-type          offline

  max-proxy-queue-size 50000

  retries              3

exit

exit

radius async-threading-configuration default-processing-threads 100

radius async-threading-configuration default-action-priority 5

radius async-threading-configuration default-action-threads 100

radius async-threading-configuration default-action-queue-size 400000

radius async-threading-configuration default-action-drop-oldest-when-full true

radius properties PROMETHEUS_PORT

value 9099

exit

radius properties backOffRetryCoA.CoANackErrorCause

value 405,506,1001

exit

radius properties backOffRetryCoA.constantdelayInSeconds

value 60

exit

radius properties backOffRetryCoA.maxRetransmission

value 3

exit

radius properties com.broadhop.pep.ipv6.enable.feature

value true

exit

radius properties enable.radius.auth

value true

exit

radius properties grpc.executors

value 40

exit

radius properties grpc.request.proxyAccounting.timeoutMillies

value 3000

exit

radius properties grpc.timeoutMs.processing

value 15000

exit

radius properties io.netty.eventLoopThreads

value 100

exit

radius properties parallelChannelCount

value 10

exit

radius properties prometheusPort

value 9099

exit

radius properties radiusCorePoolSize

value 40

exit

radius properties radiusMaxQueue

value 4000

exit

radius properties smart.license.kpi.interval.mins

value 1

exit

radius properties traps.tps

value 5000

exit

radius properties udpMaxQueue

value 4000

exit

radius properties udpPoolSize

value 40

exit

api unified engine-group CPC01production

api unified externalIPs [ 198.51.100.15 ]

api unified external-port 8080

engine CPC01production

config-lock           false

replicas              3

subversion-run-url    http://svn/repos/run

subversion-config-url http://svn/repos/configuration

tracing-service-name  CPC-engine

crdapi crd-mongo-cache-refresh-interval 10000

crdapi admin-db primary 192.0.2.4

crdapi admin-db secondary 192.0.2.5

crdapi admin-db port 65005

properties GeoSiteName

  value gamma_site1

exit

properties balanceKeyHashAvpName

  value SprKeyHash

exit

properties broadcast.tps

  value 500

exit

properties cc.ua.soap.url

  value http://127.0.0.1:8080/apirouter

exit

properties coaThrottlingPerBng

  value true

exit

properties com.broadhop.SrgBngSwitchOverEnable

  value true

exit

properties com.broadhop.cc.login.details.feature

  value true

exit

properties com.broadhop.domain.ipv6.enable.feature

  value true

exit

properties com.broadhop.pb.login.details.feature

  value true

exit

properties com.broadhop.pb.publish.audit.feature

  value true

exit

properties com.broadhop.pep.ipv6.enable.feature

  value

exit

license smart reservation

system mode running

cnAAA Ops Center Configuration for GR Site02

This is only a sample configuration of cnAAA Ops Center settings for Site02 provided solely for your reference. You must create and modify your own configuration file according to the specific needs of your deployment.


datastore primary-endpoint connection-settings keep-alive keep-alive-time-ms 200

datastore primary-endpoint connection-settings channel count 4

datastore primary-endpoint connection-settings timeout-ms 600

datastore external-endpoints datastore

connection-settings keep-alive keep-alive-time-ms 200

connection-settings channel count 4

connection-settings timeout-ms 500

exit

db global-settings db-replica 3

db global-settings volume-storage-class local

db scdb replica-name admin-db

port      65005

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type-5

replica-set-label value admin-db

member-configuration member sdb-rs4-s1-arbiter1

  host    192.0.2.1

  arbiter true

  site    remote

exit

member-configuration member sdb-rs4-s1-arbiter2

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs4-s1-m1

  host     192.0.2.3

  arbiter  false

  priority 104

  site     remote

exit

member-configuration member sdb-rs4-s1-m2

  host     192.0.2.4

  arbiter  false

  priority 103

  site     remote

exit

member-configuration member sdb-rs4-s2-m1

  host     192.0.2.5

  arbiter  false

  priority 102

  site     local

exit

member-configuration member sdb-rs4-s2-m2

  host     192.0.2.6

  arbiter  false

  priority 101

  site     local

exit

member-configuration member sdb-rs4-s3-arbiter3

  host    192.0.2.7

  arbiter true

  site    remote

exit

exit

db scdb replica-name sdb-spr01

port      65001

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type

replica-set-label value oam

member-configuration member sdb-rs1-s1-arbiter1

  host    192.0.2.1

  arbiter true

  site    remote

exit

member-configuration member sdb-rs1-s1-arbiter2

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs1-s1-m1

  host     192.0.2.3

  arbiter  false

  priority 104

  site     remote

exit

member-configuration member sdb-rs1-s1-m2

  host     192.0.2.4

  arbiter  false

  priority 103

  site     remote

exit

member-configuration member sdb-rs1-s2-m1

  host     192.0.2.5

  arbiter  false

  priority 102

  site     local

exit

member-configuration member sdb-rs1-s2-m2

  host     192.0.2.6

  arbiter  false

  priority 101

  site     local

exit

member-configuration member sdb-rs1-s3-arbiter3

  host    192.0.2.7

  arbiter true

  site    remote

exit

exit

db scdb replica-name sdb-spr02

port      65002

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type

replica-set-label value oam

member-configuration member sdb-rs2-s1-arbiter1

  host    192.0.2.1

  arbiter true

  site    remote

exit

member-configuration member sdb-rs2-s1-arbiter2

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs2-s1-m1

  host     192.0.2.3

  arbiter  false

  priority 104

  site     remote

exit

member-configuration member sdb-rs2-s1-m2

  host     192.0.2.4

  arbiter  false

  priority 103

  site     remote

exit

member-configuration member sdb-rs2-s2-m1

  host     192.0.2.5

  arbiter  false

  priority 102

  site     local

exit

member-configuration member sdb-rs2-s2-m2

  host     192.0.2.6

  arbiter  false

  priority 101

  site     local

exit

member-configuration member sdb-rs2-s3-arbiter3

  host    192.0.2.7

  arbiter true

  site    remote

exit

exit

db scdb replica-name sdb-spr03

port      65003

interface vlan2400

resource cpu limit 3000

resource memory limit 20000

replica-set-label key smi.cisco.com/node-type

replica-set-label value oam

member-configuration member sdb-rs3-s1-arbiter1

  host    192.0.2.1

  arbiter true

  site    remote

exit

member-configuration member sdb-rs3-s1-arbiter2

  host    192.0.2.2

  arbiter true

  site    local

exit

member-configuration member sdb-rs3-s1-m1

  host     192.0.2.3

  arbiter  false

  priority 104

  site     remote

exit

member-configuration member sdb-rs3-s1-m2

  host     192.0.2.4

  arbiter  false

  priority 103

  site     remote

exit

member-configuration member sdb-rs3-s2-m1

  host     192.0.2.5

  arbiter  false

  priority 102

  site     local

exit

member-configuration member sdb-rs3-s2-m2

  host     192.0.2.6

  arbiter  false

  priority 101

  site     local

exit

member-configuration member sdb-rs3-s3-arbiter3

  host    192.0.2.7

  arbiter true

  site    remote

exit

exit

debug tracing type DISABLED

debug logging default-level error

debug logging logger com.broadhop

level error

exit

debug logging logger com.broadhop.licensing.impl.LicenseCountRequestHandler

level debug

exit

debug logging logger com.broadhop.licensing.impl.LicenseManagerProxy

level debug

exit

debug logging logger com.broadhop.licensing.impl.PrometheusMetricsApi

level error

exit

debug logging logger com.broadhop.licensing.impl.SmartLicenceMongo

level debug

exit

debug logging logger com.broadhop.policy.impl

level debug

exit

debug logging logger com.broadhop.radius

level error

exit

debug logging logger com.broadhop.radius.impl.devicemanager

level debug

exit

debug logging logger com.broadhop.radius.messages.impl

level error

exit

debug logging logger com.broadhop.radius.policy.RadiusDelayedStartupManager

level error

exit

debug logging logger com.broadhop.radius.policy.event

level error

exit

debug logging logger com.broadhop.radius.policy.event.RadiusMessageDealer

level error

exit

debug logging logger com.cisco.radius.actions.impl

level error

exit

debug logging logger com.cisco.radius.endpoint.impl

level error

exit

debug logging logger com.cisco.radius.endpoint.impl.RadiusEndpointMessageListener

level debug

exit

debug logging logger com.cisco.radius.endpoint.impl.util

level error

exit

debug logging logger com.cisco.radius.endpoint.utility.LeaderSelector

level debug

exit

debug logging logger com.cisco.radius.smart.licensing.LicenseKPIManager

level debug

exit

debug logging logger policy.engine

level debug

exit

features patching ingress-enabled true

testing enforce-affinity-rules true

pods-management disable-pods [ redis network-query traceid ]

advance-tuning redis-password $8$jEoUSZxGgkcGfFCR95Z5ZRE1Bdp7J+eP0lr4VDPbC2Y=

advance-tuning slice-access-control disabled

advance-tuning async-threading default-worker-threads 25

advance-tuning async-threading default-queue-size 120

advance-tuning async-threading default-processing-threads 12

advance-tuning async-threading http2-connect-timeout-ms 120

advance-tuning async-threading http2-idle-connection-timeout-sec 60

radius bind-ipv4 [ 192.0.2.8 ]

radius bind-ipv6 [ 2001:db8::1 ]

radius replicas 1

radius lbs-service true

radius settings request-timeout-ms 5000

radius settings max-tries  1

radius settings min-processing-time-millis 1000

radius settings backoff-time-millis 1000

radius advance-tuning throttling-limit 10

radius advance-tuning coa-throttlling-for-asr9k-pep true

radius message-authenticator access-accept false

radius message-authenticator accounting-response false

radius device-group ASR9K

default-shared-secret     $8$Hgpy1vW0YuzKbgt9iWFAPj+IqcFLFxgbkp9s+TMJIgM=

default-coa-shared-secret $8$83Hhbxao8HfFjIYoKn8z8kBXs44TPcPgIFhRiB9BXNc=

coa-port                  3799

coa-retries               3

coa-timeout-seconds       3

device EX-BNG1

  ip                 192.0.2.9

  shared-secret      $8$F3+sGL0FjR5R+O4XGqo+J0o3s4E2RpfbQgzRQtCF9zY=

  coa-shared-secret  $8$uOAYc3Vt1lKdrlp0EHaym2B+FpH+b984OFJiRLPQSL4=

  loopback-addresses [ 198.51.100.1 ]

exit

device EX-BNG2

  ip                 192.0.2.10

  shared-secret      $8$HFvy2NknPjuGYoHqXzleHZaCTed76osXr7nbJEPLb4o=

  coa-shared-secret  $8$cIfI0dHd2i9RLgTfgJUrnfIKUgmwkWa5Vj6vbEG0yfE=

  loopback-addresses [ 198.51.100.1 ]

exit

device EX-BNG3

  ip                 192.0.2.11

  shared-secret      $8$q1n/El8lGiMhofFVvbQJw0zMy0BMhAe4uSFVUAZdp9M=

  coa-shared-secret  $8$w9IRXdD2zuGjWnAKRSLgf8RFxqcywcz0pcUUu7/TVeM=

  loopback-addresses [ 198.51.100.1 ]

exit

exit

radius server-group grp1

servers DEL_OCS

  primary              192.0.2.12

  secondary            192.0.2.13

  nas-ip               192.0.2.14

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$inbnxcbFpx90KAbRlb0CPmiyfY4Fm3+ur6WbHqs4aGo=

  shared-secret        $8$d14/JWy9migM6wnVoV1Pm/fK6aiBxX3Lrm5DRfz3liU=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$+KEGV6qWQBITNvrI/nrjsm/gyEJnPxbIXdMvur9IapA=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers GUJ_OCS

  primary              192.0.2.15

  secondary            192.0.2.13

  nas-ip               192.0.2.14

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$AhwQuyuBStb2KM+RkRAV2OQJJQ37wF8GW2KihZuAsck=

  shared-secret        $8$cmiPSOzIXdcKjLPMQFJffifa8h/39GwDTfmt50hXMhk=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$A6k9SnXu5rMnLGqfnUB4fKmGWITYg9zk7fzqgFuLgJk=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers LUCK_OCS

  primary              192.0.2.16

  secondary            192.0.2.13

  nas-ip               192.0.2.14

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$6gYFdcOroQsOiD8wKmgZh37+RdZEyp+oTzw00PKimG8=

  shared-secret        $8$+pLtFGo2a7OGmRyFaIRWIokQ1ILoAQwcMXyUTxHorA8=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$EHftY2XyKpc3j0WRddtlFAbt28pEQ/jhhi6PthXVgTc=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers PBHR_OCS

  primary              192.0.2.17

  secondary            192.0.2.13

  nas-ip               192.0.2.14

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$QuSmQ22UIA5yxnQQG1xCfZOzH7ufESZXx6Y+E6LERiA=

  shared-secret        $8$kVWgx4fd1MTlzoA3EnuD5+L7w9ELN1CIqHNEHW/qgzI=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$TTCtNmQLRhuc5gBUrtkx/vvpkFqwK+JxhhxlcIiPOY4=

  thread-pool-size     300

  server-type          online

  max-proxy-queue-size 50000

  retries              3

exit

servers PassiveMZ-12997

  primary              192.0.2.18

  secondary            192.0.2.13

  nas-ip               192.0.2.19

  accounting-port      1805

  authorization-port   1802

  auth-protocol        PAP

  radius-password      $8$T4jkp4FNUES0nu1SylJI8+6ERUktlwF/2n6WM2V3r9s=

  shared-secret        $8$zvaQd++DsvjdLbqhRGhglZc4SFCTmLUIHmr0mI5Dl0k=

  timeout-seconds      3

  test-message         false

  test-userid          test

  test-password        $8$LBlPEuGt7crFTasVX86yB63TIwlAV+oLq2D0yDauMaI=

  thread-pool-size     300

  server-type          offline

  max-proxy-queue-size 50000

  retries              3

exit

exit

radius async-threading-configuration default-processing-threads 100

radius async-threading-configuration default-action-priority 5

radius async-threading-configuration default-action-threads 100

radius async-threading-configuration default-action-queue-size 400000

radius async-threading-configuration default-action-drop-oldest-when-full true

radius properties PROMETHEUS_PORT

value 9099

exit

radius properties backOffRetryCoA.CoANackErrorCause

value 405,506,1001

exit

radius properties backOffRetryCoA.constantdelayInSeconds

value 60

exit

radius properties backOffRetryCoA.maxRetransmission

value 3

exit

radius properties com.broadhop.pep.ipv6.enable.feature

value true

exit

radius properties enable.radius.auth

value true

exit

radius properties grpc.executors

value 5

exit

radius properties grpc.request.proxyAccounting.timeoutMillies

value 3000

exit

radius properties grpc.timeoutMs.processing

value 15000

exit

radius properties io.netty.eventLoopThreads

value 100

exit

radius properties parallelChannelCount

value 10

exit

radius properties prometheusPort

value 9099

exit

radius properties radiusCorePoolSize

value 20

exit

radius properties radiusMaxQueue

value 4000

exit

radius properties smart.license.kpi.interval.mins

value 1

exit

radius properties traps.tps

value 5000

exit

radius properties udpMaxQueue

value 4000

exit

radius properties udpPoolSize

value 40

exit

api unified engine-group CPC02production

api unified externalIPs [ 192.0.2.20 ]

api unified external-port 8080

engine CPC02production

config-lock           false

replicas              1

subversion-run-url    http://svn/repos/run

subversion-config-url http://svn/repos/configuration

tracing-service-name  CPC-engine

crdapi crd-mongo-cache-refresh-interval 10000

crdapi admin-db primary 192.0.2.3

crdapi admin-db secondary 192.0.2.4

crdapi admin-db port 65005

properties GeoSiteName

  value delta_site2

exit

properties balanceKeyHashAvpName

  value SprKeyHash

exit

properties broadcast.tps

  value 500

exit

properties cc.ua.soap.url

  value http://127.0.0.1:8080/apirouter

exit

properties coaThrottlingPerBng

  value true

exit

properties com.broadhop.SrgBngSwitchOverEnable

  value true

exit

properties com.broadhop.domain.ipv6.enable.feature

  value true

exit

properties com.broadhop.pb.login.details.feature

  value true

exit

properties com.broadhop.pb.publish.audit.feature

  value true

exit

properties com.broadhop.pep.ipv6.enable.feature

  value true

exit

properties com.broadhop.servicemismatchenable

  value false

exit

properties com.cisco.engine.log.type

  value 2

exit

properties conflict.resolve.attempts

  value 2

exit

properties conflict.tps

  value 5

exit

properties cpc.smart.license.enabled

  value true

exit

properties crd.mongo.cache.refresh.interval

  value 10000

exit

properties dbSocketTimeout

  value 1000

exit

properties enable.conflict.merge

  value true

exit

properties enable.radius.aaa.key.building

  value true

exit

properties grpc.executors

  value 5

exit

properties grpc.request.BackoffTimeMillis

  value 100

exit

properties grpc.request.MinProcessingTimeMillis

  value 11

exit

properties grpc.request.asyncCoA.timeoutMillies

  value 15000

exit

properties grpc.request.bundledCoA.timeoutMillies

  value 15000

exit

properties grpc.request.getMaxTries

  value 1

exit

properties grpc.request.proxyAccounting.timeoutMillies

  value 5000

exit

properties grpc.request.timeoutMillies

  value 10

exit

properties inboundMessageQueueSize

  value 4000

exit

properties inboundMessageSlaMs

  value 3000

exit

properties maxHash

  value 3

exit

properties messageSlaMs

  value 3000

exit

properties mongo.connections.per.host.default

  value 300

exit

properties mongo.threads.allowed.to.wait.for.connection

  value 1000

exit

properties CPC.actions.sync.timeoutMs.default

  value 10000

exit

properties queryEachSiteForSearchSubscribers

  value true

exit

properties radius.engine.service.port.timeout

  value 5000

exit

properties radius.warmup.duration.sec

  value 30

exit

properties radius.warmup.event.dealy.ms

  value 20

exit

properties radius.warmup.request.per.thread

  value 50

exit

properties radius.warmup.threads

  value 5

exit

properties radius.warmup.unified.soap.url

  value http://localhost:8080/ua/soap

exit

properties replaceFullNameInSearchSubscribers

  value true

exit

properties returnBalance

  value false

exit

properties sessioncount.query.interval.mins

  value 1

exit

properties skip.service.evaluation.on.delete

  value false

exit

properties skipped.device.mgrs

  value RX_5G_TGPP,N7_TGPP,N5_TGPP,N

exit

license smart reservation

system mode running

Sample ULB Configuration

ULB Ops Center Configuration for GR Site01

This is only a sample configuration of ULB settings for GR Site01 provided solely for your reference. You must create and modify your own configuration file according to the specific needs of your deployment. Use plain text password as applicable.

logging level error

logging name lbs-agent.egress-mgr.app level error

logging name lbs-agent.egress-mgr.calico level error

logging name lbs-agent.egress-mgr.egressmgr level error

logging name lbs-agent.egress-mgr.ipt-reconciler level error

logging name lbs-agent.egress-mgr.iptables level error

logging name lbs-agent.egress-mgr.iptables-oper level error

logging name lbs-agent.egress-mgr.lbs-iptables level error

logging name lbs-agent.egress-mgr.listener level error

logging name lbs_operator.app.app level error

logging name lbs_operator.app.empcrd level error

logging name lbs_operator.app.lbcrd level error

logging name lbs_operator.app.service level error

cilium bpf auth-map-max    4194303

cilium bpf fragments-map-max 65536

cilium bpf lb-affinity-map-max 4194304

cilium bpf lb-map-max      4194304

cilium bpf lb-rev-nat-map-max 4194304

cilium bpf lb-service-backend-map-max 4194303

cilium bpf lb-service-map-max 4194304

cilium bpf lb-source-range-map-max 4194304

cilium bpf neigh-global-max 4194304

cilium bpf node-map-max    4194303

cilium bpf policy-map-max  16383

system mode running

ULB Ops Center Configuration for GR Site02

This is only a sample configuration of ULB settings for GR Site02 provided solely for your reference. You must create and modify your own configuration file according to the specific needs of your deployment. Use plain text password as applicable.

logging level error

logging name lbs-agent.egress-mgr.app level error

logging name lbs-agent.egress-mgr.calico level error

logging name lbs-agent.egress-mgr.egressmgr level error

logging name lbs-agent.egress-mgr.ipt-reconciler level error

logging name lbs-agent.egress-mgr.iptables level error

logging name lbs-agent.egress-mgr.iptables-oper level error

logging name lbs-agent.egress-mgr.lbs-iptables level error

logging name lbs-agent.egress-mgr.listener level error

logging name lbs_operator.app.app level error

logging name lbs_operator.app.empcrd level error

logging name lbs_operator.app.lbcrd level error

logging name lbs_operator.app.service level error

cilium bpf auth-map-max    4194303

cilium bpf fragments-map-max 65536

cilium bpf lb-affinity-map-max 4194304

cilium bpf lb-map-max      4194304

cilium bpf lb-rev-nat-map-max 4194304

cilium bpf lb-service-backend-map-max 4194303

cilium bpf lb-service-map-max 4194304

cilium bpf lb-source-range-map-max 4194304

cilium bpf neigh-global-max 4194304

cilium bpf node-map-max    4194303

cilium bpf policy-map-max  16383

system mode running

UCC 5G CPC AAA Configuration and Administration Guide, Release 2026.01.0

Bias-Free Language

Book Title