OOM NodePort List

Sync with Casablanca Unprotected Interfaces

TODO: add protocol to each port - to determine suitability for HTTP/HTTPS or multi-protocol proxy for ingress

NodePorts are used to allow client applications, that run outside of Kubernetes, access to ONAP components deployed by OOM.

A NodePort maps an externally reachable port to an internal port of an ONAP microservice.

It should be noted that the use of NodePorts is temporary. An alternative solution is currently being scoped for the Dublin Release.

But for now, this page is used to track NodePort assignments.

All ONAP project teams that have microservices that need to provide external access for clients, must update this wiki page to reserve NodePorts and prevent ONAP deployment failures due to NodePort conflicts.

If a service is only accessed by other services within the same kubernetes deployment (ie. databases, backend services with no external northbound APIs) then please DO NOT reserve

a NodePort as they are a very limited resource. The service name and its Internal Port (<service name>.port) should be used instead (ie. vid.8443)

To reserve a NodePort search the table below for the text "FREE_PORT".

If it is determined that an existing reservation is no longer required, please add the text "FREE_PORT" to indicate its availability.

Developer Checklist

Verify unused nodeports

Before using a particular nodeport - verify there is no conflict by deploying the entire system and checking services or the tables below.

Get the nodeport of a particular service

# human readable list
kubectl get services --all-namespaces | grep robot
# machine readable number
kubectl get --namespace onap -o jsonpath="{.spec.ports[0].nodePort}" services robot)

Node Port Reservations 302 prefix

Component (sortable)	Pod	Service name	Protocol (rest/multi-protocol)	Node Port	Internal Port
vid		vid	REST	30200	8443
sdnc		sdnc-portal		30201	8843
		sdnc		30202	8282
		sdnc-dgbuilder		30203	3000
		sdc-be		30204	8443
		sdc-be		30205	8080
		sdc-fe		30206	8181
		sdc-fe		30207	9443
		sdnc		30208	8202
		robot		30209	88	u:p test:test
		aai-modelloader		30210	8080
		appc		30211	9090
		portal-sdk		30212	8080
		portal-app		30213	8006
		portal-app		30214	8010
		portal-app		30215	8989
		policy brmsgw		30216	9989
		drools		30217	6969
		pap		30218	9091
		pap		30219	8443
		aai-sparky-be		30220	9517
		drools		30221	9696
	DCAEGEN2	hv-ves xdcae-hv-ves-collector		30222	6061
	DCAEGEN2	xdcae-datafile-collector		30223	8080	OPTFRA-405 - Getting issue details... STATUS
		so-monitor		30224	9091
		portal-app (ssl)		30225	8443	https://gerrit.onap.org/r/#/c/69859/ OOM-1455 - Getting issue details... STATUS
		message-router		30226	3905
		message-router		30227	3904
		appc-dgbuilder		30228	3000
		aai-modelloader		30229	8443
		appc		30230	8282
		appc		30231	1830
		aai		30232	8080
		aai		30233	8443
		pomba-kibana	REST	30234	5601
		xdcae-ves-collector		30235	8080
		nexus		30236	8081
		policy-apex-pdp		30237	12345
		vid - http		30238	8080
		aai-spike		30239	9518
		pomba-context-builder	REST	30240	9530
		dmaap-bc		30241	8080
		dmaap-bc		30242	8443
		aaf-sms		30243	10443
		aaf-sms-db		30244	8200
		sdnc		30246	8280
		dcae datafile collector		30245	8100
		aaf-service		30247	8100
		oof-osdf		30248	8698
		pomba-data-router	REST	30249	9502
		appc-cds		30250	80
		aaf-gui		30251	8200
		so-mariadb		30252	3306
		log-kibana	REST	30253	5601
		log-es	REST	30254	9200
		log-ls	REST	30255	5044
		sdc-wfd-fe		30256	8080
		sdc-wfd-be		30257	8080
		clamp		30258	8443
		dmaap-dr-prov		30259	8080
		cli		30260	8080
		multicloud-azure		30261	9008	https://gerrit.onap.org/r/#/c/68647/
		dcae datafile collector		30262	8433
		sdc-dcae-fe		30263	8183
		sdc-dcae-fe		30264	9444
		sdc-dcae-dt		30265	8186
		sdc-dcae-dt		30266	9446
		sdnc		30267	8443
		aai-crud-service		30268	9520
		dmaap-dr-prov		30269	8443
		consul-server-ui		30270	8500
		cli		30271	9090
		SDNC GEO (mysql)		30272
		SDNC GEO (mysql)		30273
		nbi		30274	8080
		oof-has-api		30275	8091
		oof-has-music		30276	8080
		so		30277	8080	see also https://gerrit.onap.org/r/#/c/72433/2
		aai-champ		30278	9522
		aai-babel		30279	9516
		msb-iag		30280	80
		msb-discovery		30281	10081
		msb-eag		30282	80
		msb-iag		30283	443
		msb-eag		30284	443
		msb-consul		30285	8500
		dcae-redis		30286	6379
		dcae-redis		30287	16379
		sniro-emulator		30288	80	pnda has a conflict here - DCAEGEN2-1012 - Getting issue details... STATUS
		appc-cdt		30289	80
		cdash-kibana		30290	5601
		multicloud		30291	9001
		multicloud-vio		30292	9004
		multicloud-ocata		30293	9006
		multicloud-windriver		30294	9005
		clamp		30295	8080
		multicloud-pike		30296	9007
		refrepo		30297	8702
		LOG demo target		30298	8080	taken from UUI - they are using the 303 prefix OOM-1531 - Getting issue details... STATUS
		pomba-networkdiscovery	REST	30299	8080	taken from UUI - they are using the 303 prefix SDNC-533 - Getting issue details... STATUS https://gerrit.onap.org/r/#/c/73980/2
		vvp		?	?	OOM-1534 - Getting issue details... STATUS
		cds-ui		30397	3000
		uui		30398	8080	may be a typo with 30298 - currently using 398 as of 20181125
		uui-server		30399	8082	OOM-1531 - Getting issue details... STATUS may be a typo with 30298 - currently using 399 as of 20181125
		There		is	Room above:	There is ROOM Above 31100

		modeling-generic-parser		30301	8280
		IF POSSIBLE		Leave	31104-31109	open
		aaf-service	https/REST(json\|xml)	31110	8100	AAF Main Service
		aaf-locator	https/REST(json\|xml)	31111	8095	AAF Locator
		aaf-oauth	https/REST(json\|xml)	31112	8140	AAF OAuth2 access
		aaf-gui	https/REST(json\|xml)	31113	8200	AAF GUI
		aaf-cm	https/REST(json\|xml)	31114	8150	AAF Certificate Manager
		aaf-fs	http (Note: Fileserver for CRLs, etc)	31115	8096	AAF File Server
		aaf-hello	https/REST(json\|xml)	31116	8130	AAF Hello Sample
		aaf	HOLD for Future	31117 31118 31119		Future AAF Services

Node Port Reservations (304 node port prefix range)

This table is for documenting node ports that are reserved outside of a typical ONAP deployment.

Even though the ports listed below may appear in ONAP Helm Charts, they are not used at runtime unless enabled through configuration.

For example, there may be a need to reserve node ports (even temporarily) for use in POC or for demo code, that currently exists in the ONAP codebase.

POD	Service name	Node Port	Internal Port
	dcae-pnda-mirror (node the boostrap pod np is named mirror)	30400	80	A PNDA deployment (outside the Kubernetes cluster) needs to download its components from the PNDA mirror (inside the Kubernetes cluster) DCAEGEN2-1012 - Getting issue details... STATUS
	vfc-nslcm	30403
	so-bpmn-infra	30404	8081	so-bpmn-port
	so-bpmn-infra	30405	5005	so-bpmn-debug
	so-vnfm-adapter	30406	9092
DCAEGEN2	xdcae-tca-analytics	30410	11011	switch from 32010 DCAEGEN2-998 - Getting issue details... STATUS
	vfc - commented	30411
	DCAEGEN2	30415	10000	DCAE Config Binding Service
	DCAEGEN2	30416	8080/8687	DCAE RESTConf collector Service
	DCAEGEN2	30417	8443	DCAE VESCollector - Https
	DCAEGEN2	30418	8080	Dashboard (http)
	DCAEGEN2	30419	8443	Dashboard (https)
	Netbox UI	30420	8080
	policy-api	30440	6969	https://gerrit.onap.org/r/#/c/79318/
	policy-xacml-pdp	30441	6969	https://gerrit.onap.org/r/#/c/81977/
	log-demonode0	30453	8080
	log-demonode1	30454	8080
	log-demonode2	30455	8080
	log-es SSL	30456	20181016 LOG-748 - Getting issue details... STATUS
	log-kb SSL	30457	20181016 LOG-748 - Getting issue details... STATUS
	log-ls SSL	30458	20181016 LOG-748 - Getting issue details... STATUS
	SDNC GEO	30461
	SDNC GEO	30462
	SDNC GEO	30463
	SDNC GEO	30464
	SDNC GEO	30465
	SDNC GEO	30466
	DCAEGEN2	30470	162	Snmptrap (test purpose)
	DCAEGEN2	30471		Reserved
	DCAEGEN2	30472		Reserved
	DCAEGEN2	30473		Reserved
	DCAEGEN2	30474		Reserved
	MUSIC	30475
	MUSIC	30476	8080
	MUSIC	30477
	vfc-resmgr	30480
	vfc-multivim-proxy	30481
	vfc-huawei-vnfm-driver	30482
	vfc-juju-vnfm-dirver	30483
	multicloud-starlingx	30485	9009
	multicloud-thinkcloud	30486	9010
	multicloud-fcaps	30487	9011
	multicloud-tentative	30488
	multicloud-tentative	30489
	DMaap tentative	30490		https://lists.onap.org/g/onap-discuss/topic/new_nodeports_for_the_dmaap/29582628?p=,,,20,0,0,0::recentpostdate%2Fsticky,,,20,2,0,29582628
	DMaap tentative	30491
	DMaap tentative	30492
	dmaap-dr-node	30493	8080
	dmaap-dr-node	30494	8443
	multicloud-service-assurance	30495	9009	Only from Dublin Release
	multicloud-service-assurance (tentative)	30496	9010	Only from Dublin Release

This port does not seem to be configurable from a Helm Chart.

Mike Elliott will raise issue to see if it can be made configurable within either the 302 or 304 ranges.

Service name

Node Port

Internal Port

xdcae-tca-analytics

32010

use 30410

11011

DCAEGEN2-998 - Getting issue details... STATUS

Space shortcuts

Page tree

Developer Checklist

Verify unused nodeports

Get the nodeport of a particular service

Node Port Reservations 302 prefix

Node Port Reservations (304 node port prefix range)