Skip to content

infinitydon/open5gs-lbo-hr-5g-roaming

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
hUPF-vpp-vpn-ikve2-chart
hUPF-vpp-vpn-ikve2-chart
 
 
ipx-vpp-vpn-ikve2-chart
ipx-vpp-vpn-ikve2-chart
 
 
o5gs-helm-charts-roaming-hplmn
o5gs-helm-charts-roaming-hplmn
 
 
o5gs-helm-charts-roaming-vplmn
o5gs-helm-charts-roaming-vplmn
 
 
pcaps
pcaps
 
 
static
static
 
 
tls-certs-hplmn-helm-chart
tls-certs-hplmn-helm-chart
 
 
tls-certs-vplmn-helm-chart
tls-certs-vplmn-helm-chart
 
 
vUPF-vpp-vpn-ikve2-chart
vUPF-vpp-vpn-ikve2-chart
 
 
README.md
README.md
 
 
certmanager-install-visiting-home-clusters.md
certmanager-install-visiting-home-clusters.md
 
 
cluster-setup.md
cluster-setup.md
 
 
coredns-static-dns-entries.md
coredns-static-dns-entries.md
 
 
home-ip-addressing-and-vlan.md
home-ip-addressing-and-vlan.md
 
 
openbao-Rootca-intermediateCA-setup-ipx-cluster.md
openbao-Rootca-intermediateCA-setup-ipx-cluster.md
 
 
openbao-install-setup-home-cluster.md
openbao-install-setup-home-cluster.md
 
 
openbao-install-setup-ipx-cluster.md
openbao-install-setup-ipx-cluster.md
 
 
openbao-install-setup-visiting-cluster.md
openbao-install-setup-visiting-cluster.md
 
 
packetRusher.md
packetRusher.md
 
 
visiting-ip-addressing-and-vlan.md
visiting-ip-addressing-and-vlan.md
 
 
vpn-test-pod-nad.txt
vpn-test-pod-nad.txt
 
 
vpp-ikev2-ipsec-commands.txt
vpp-ikev2-ipsec-commands.txt
 
 

Repository files navigation

Building a Cloud-Native 5G Roaming Architecture with Open5GS, cert-manager, and OpenBao: Supporting LBO and HR Modes

Virtualization: Proxmox

Kubernetes Distro: Microk8s

5G Core: Open5gs

Simulator: PacketRusher

TLS Certs: Openbao and cert-manager

Routing and VPN: VPP and FRR

The choice of Microk8s stems from the fact it makes it easy to have quick single-node k8s cluster with inbuilt support plugins like host-storage and Multus.

Architecture is shown below

open5gs-hr-lbo-roaming

I have included the deployment of each stage in the respective markdown docs located in the root of this repo.

Ideally:

  • Create the k8s clusters

  • Deploy the IPX routers, hPLMN and vPLMN edge helm charts to the respective clusters

  • Install the OpenBao (all 3 clusters) and cert-manager (only the visiting and home clusters)

  • Configure the Openbao for TLS certs generation

    N.B - The IPX Openbao is exposed via a metallb LB since the visiting and home cluster cert-manager will need to access it to generate the SEPP N32 certs

  • Install the TLS certs helm charts in the visiting and home clusters

  • Install the open5gs charts in the respective clusters.

  • Deploy the PacketRusher VM and test.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published