Network Communication
Intra Stack Communication
It is important that components of the CMP
Converged Monetisation Platform. The MDS Global product that supports customer care and billing for digital service providers. stack can communicate with one another. The Intra Stack Communications table describes which components require access to the other components, over which port. If there are firewalls (other than the default Linux A well-known widely used open source operating system. firewalls, as these are updated by the CMP installation) used between target hosts, the communication over the specified ports must be allowed by the firewall. If any of the ports are changed in the inventory file, the new value must be used when configuring firewalls.
Access must be allowed for each server in the corresponding Ansible Source hosts group In the Customer Manager Platform hierarchy, the highest level of the structure. The group level can be used to group corporates. Groups can hold financial information..
| Intra Stack Communications | |||
|---|---|---|---|
| Source Hosts Groups | Destination Host Groups | Port Numbers | Protocol |
|
JBoss/Wildfly JBoss Web Server (JWS)/Tomcat Identity Server Pentaho Reporting Server Shared Services SAM Services Voucher Management Services Role Extender Bulk Action Console CMP Web Services – REST SABRE Server CMP Administration Console SPaRC Engine Health Check Service |
CMP Database | 5432 | JDBC |
|
JBoss/Wildfly JBoss Web Server (JWS)/Tomcat Role Extender CMP Web Services – REST Bulk Action Console SABRE Server CMP Administration Console |
Identity Server | 9443 | HTTPS |
|
JBoss/Wildfly JBoss Web Server (JWS)/Tomcat SABRE Server CMP Administration Console |
Role Extender | 8081 | HTTPS |
|
CMP Administration Console SABRE Server |
SABRE Server CMP Administration Console |
27300 27400 | HTTPS |
|
JBoss/Wildfly JBoss Web Server (JWS)/Tomcat Identity Server Pentaho Reporting Server Shared Services SAM Services Voucher Management Services Role Extender Bulk Action Console CMP Web Services – REST SABRE Server CMP Administration Console Artemis / ActiveMQ SPaRC Engine |
Health Check Service |
21215 | HTTPS |
The Port Numbers indicated in the table above are defaults, and will be different if changed in the inventory configuration.
High Availability Intra Stack Communication
Communication between components in a High Availability deployment is more complicated than described in the table above. Services will communicate via the load balancer and connectivity to and from the load balancers is required, for example you must ensure the necessary ports are open to allow communication. Determining the exact network In the context of CMP, the infrastructure on which usage of registered customers will be measured – this could be a mobile phone network, broadband network or other non-telecommunications network. connectivity requirements in a High Availability deployment is the responsibility of the person performing the installation, based on the load balancer and shared storage configuration they have set up. See also Assumptions and High Availability Prerequisites.
Even in a High Availability deployment with traffic going between components via a Load balancer, direct intra stack communication needs to be allowed as follows:
| Source Host Groups | Destination Load Balancer |
|---|---|
|
AgentView AgentView Interface Layer Bulk Action Console JBoss/Wildfly JBoss Web Server (JWS)/Tomcat Role Extender REST Web Services CMP Administration Console |
Identify Server WSO2 |
|
AgentView Pentaho Reporting Server WSO2 IS Login |
JBoss Web Server (JWS)/Tomcat |
|
Business Configuration SOAP Web Services |
JBoss/Wildfly |
External Access
To provide user A person with the capability to log in to the CMP GUI software, such as a customer service advisor or agent. access to CMP, communication over the following ports must be allowed from the client networks. If use_ssl is selected in the Inventory Configuration Tool, the HTTPS ports listed need to be allowed.
| Target Host Groups | HTTPS Port |
|---|---|
| JBoss/Wildfly (hosting AgentView, WSO2 Login SSO) | 7443 |
| JBoss Web Server (JWS)/Tomcat (hosting Business Configuration, SOAP etc.) | 8443 |
| Identity Server | 9443 |
| Bulk Action Console | 9009 |
| CMP Web Services – REST | 9000 |
| SABRE Server | 21212 |
| CMP Administration Console | 31212 |
| Artemis / ActiveMQ | 8161 |
External access will also be required for all incoming and outgoing communication from Sabre Jobs that has been deployed as part of the customer In the context of the Cloud Monetisation Platform, an individual or organisation who has signed an agreement to take goods and services from a service provider. A customer receives a bill associated with one or more subscriptions, and can be a single end user or a large company with many subscriptions assigned to one agreement. specific CMP installation, for example, event records, sending email, reading from external queues. The network requirements in this area need to be determined as part of the CMP implementation project and are outside the scope of this document.
If any of the ports are changed in the inventory file then access needs to be allowed to the newly specified ports instead.
In addition to the SSH access described earlier, the control server also needs to have the above “External Access” to the target hosts.