Upload files to "open5gs/conf"

open5gs/conf/amf.yaml

@@ -0,0 +1,239 @@
+logger:
+  file:
+    path: /var/log/open5gs/amf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+amf:
+  sbi:
+    server:
+      - address: 10.0.1.5
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+  ngap:
+    server:
+      - address: 10.0.1.5
+  metrics:
+    server:
+      - address: 10.0.1.5
+        port: 9090
+  guami:
+    - plmn_id:
+        mcc: 999
+        mnc: 70
+      amf_id:
+        region: 2
+        set: 1
+  tai:
+    - plmn_id:
+        mcc: 999
+        mnc: 70
+      tac: 1
+  plmn_support:
+    - plmn_id:
+        mcc: 999
+        mnc: 70
+      s_nssai:
+        - sst: 1
+  security:
+    integrity_order : [ NIA2, NIA1, NIA0 ]
+    ciphering_order : [ NEA0, NEA1, NEA2 ]
+  network_name:
+    full: Open5GS
+    short: Next
+  amf_name: open5gs-amf0
+  time:
+#    t3502:
+#      value: 720   # 12 minutes * 60 = 720 seconds
+    t3512:
+      value: 540    # 9 minutes * 60 = 540 seconds
+
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev:eth0
+#        advertise: open5gs-amf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/amf.key
+#        cert: /etc/open5gs/tls/amf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: amf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/amf.key
+#        cert: /etc/open5gs/tls/amf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/amf.key
+#        client_cert: /etc/open5gs/tls/amf.crt
+#  sbi:
+#    server:
+#      - address: amf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+################################################################################
+# NGAP Server
+################################################################################
+#  o Listen on address available in `eth0` interface
+#  ngap:
+#    server:
+#      - dev: eth0
+#
+################################################################################
+# 3GPP Specification
+################################################################################
+#  o GUAMI
+#  guami:
+#    - plmn_id:
+#        mcc: 999
+#        mnc: 70
+#      amf_id:
+#        region: 2
+#        set: 1
+#        pointer: 4
+#    - plmn_id:
+#        mcc: 001
+#        mnc: 01
+#      amf_id:
+#        region: 5
+#        set: 2
+#
+#  o TAI
+#  tai:
+#    - plmn_id:
+#        mcc: 001
+#        mnc: 01
+#      tac: [1, 3, 5]
+#  tai:
+#    - plmn_id:
+#        mcc: 002
+#        mnc: 02
+#      tac: [6-10, 15-18]
+#  tai:
+#    - plmn_id:
+#        mcc: 003
+#        mnc: 03
+#      tac: 20
+#    - plmn_id:
+#        mcc: 004
+#        mnc: 04
+#      tac: 21
+#  tai:
+#    - plmn_id:
+#        mcc: 005
+#        mnc: 05
+#      tac: [22, 28]
+#    - plmn_id:
+#        mcc: 006
+#        mnc: 06
+#      tac: [30-32, 34, 36-38, 40-42, 44, 46, 48]
+#    - plmn_id:
+#        mcc: 007
+#        mnc: 07
+#      tac: 50
+#    - plmn_id:
+#        mcc: 008
+#        mnc: 08
+#      tac: 60
+#    - plmn_id:
+#        mcc: 009
+#        mnc: 09
+#      tac: [70, 80]
+#
+#  o PLMN Support
+#  plmn_support:
+#    - plmn_id:
+#        mcc: 999
+#        mnc: 70
+#      s_nssai:
+#        - sst: 1
+#          sd: 010000
+#    - plmn_id:
+#        mcc: 999
+#        mnc: 70
+#      s_nssai:
+#        - sst: 1
+#
+#  o Access Control
+#  access_control:
+#    - default_reject_cause: 13
+#    - plmn_id:
+#        reject_cause: 15
+#        mcc: 001
+#        mnc: 01
+#    - plmn_id:
+#        mcc: 002
+#        mnc: 02
+#    - plmn_id:
+#        mcc: 999
+#        mnc: 70
+#
+#  o Relative Capacity
+#  relative_capacity: 100

open5gs/conf/ausf.yaml

@@ -0,0 +1,102 @@
+logger:
+  file:
+    path: /var/log/open5gs/ausf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+ausf:
+  sbi:
+    server:
+      - address: 10.0.1.11
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-ausf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/ausf.key
+#        cert: /etc/open5gs/tls/ausf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: ausf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/ausf.key
+#        cert: /etc/open5gs/tls/ausf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/ausf.key
+#        client_cert: /etc/open5gs/tls/ausf.crt
+#  sbi:
+#    server:
+#      - address: ausf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain

open5gs/conf/bsf.yaml

@@ -0,0 +1,102 @@
+logger:
+  file:
+    path: /var/log/open5gs/bsf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+bsf:
+  sbi:
+    server:
+      - address: 10.0.1.15
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-bsf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/bsf.key
+#        cert: /etc/open5gs/tls/bsf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: bsf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/bsf.key
+#        cert: /etc/open5gs/tls/bsf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/bsf.key
+#        client_cert: /etc/open5gs/tls/bsf.crt
+#  sbi:
+#    server:
+#      - address: bsf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain

open5gs/conf/hss.yaml

@@ -0,0 +1,15 @@
+db_uri: mongodb://localhost/open5gs
+logger:
+  file:
+    path: /var/log/open5gs/hss.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+hss:
+  freeDiameter: /etc/freeDiameter/hss.conf
+#  sms_over_ims: "sip:smsc.mnc001.mcc001.3gppnetwork.org:7060;transport=tcp"
+#  use_mongodb_change_stream: true

open5gs/conf/mme.yaml

@@ -0,0 +1,296 @@
+logger:
+  file:
+    path: /var/log/open5gs/mme.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+mme:
+  freeDiameter: /etc/freeDiameter/mme.conf
+  s1ap:
+    server:
+      - address: 10.0.1.2
+  gtpc:
+    server:
+      - address: 10.0.1.2
+    client:
+      sgwc:
+        - address: 10.0.1.3
+      smf:
+        - address: 10.0.1.4
+  sgsap:
+    server:
+      - address: 10.0.1.48
+        map:
+          tai:
+            plmn_id:
+              mcc: 999
+              mnc: 70
+            tac: 1
+          lai:
+            plmn_id:
+              mcc: 999
+              mnc: 70
+            lac: 1
+  metrics:
+    server:
+      - address: 10.0.1.2
+        port: 9090
+  gummei:
+    - plmn_id:
+        mcc: 999
+        mnc: 70
+      mme_gid: 2
+      mme_code: 1
+  tai:
+    - plmn_id:
+        mcc: 999
+        mnc: 70
+      tac: 1
+  security:
+    integrity_order : [ EIA2, EIA1, EIA0 ]
+    ciphering_order : [ EEA0, EEA1, EEA2 ]
+  network_name:
+    full: DHI
+    short: DHI
+  mme_name: open5gs-mme0
+  time:
+
+#    t3402:
+#      value: 720   # 12 minutes * 60 = 720 seconds
+#    t3412:
+#      value: 3240  # 54 minutes * 60 = 3240 seconds
+#    t3423:
+#      value: 720   # 12 minutes * 60 = 720 seconds
+
+################################################################################
+# S1AP Server
+################################################################################
+#  o Listen on address available in `eth0` interface
+#  ngap:
+#    server:
+#      - dev: eth0
+#
+################################################################################
+# GTP-C Server
+################################################################################
+#  o Listen on IPv4 and IPv6
+#  gtpc:
+#    server:
+#      - address: 127.0.0.2
+#      - address: ::1
+#
+################################################################################
+# GTP-C Client
+################################################################################
+#  o SGW selection by eNodeB TAC
+#   (either single TAC or multiple TACs, DECIMAL representation)
+#  gtpc:
+#    client:
+#      sgwc:
+#        - address: 127.0.0.3
+#          tac: 26000
+#        - address: 127.0.2.2
+#          tac: [25000, 27000, 28000]
+#
+#  o SGW selection by e_cell_id(28bit)
+#   (either single or multiple e_cell_id, HEX representation)
+#  gtpc:
+#    client:
+#      sgwc:
+#        - address: 127.0.0.3
+#          e_cell_id: abcde01
+#        - address: 127.0.2.2
+#          e_cell_id: [12345, a9413, 98765]
+#
+#  o SMF selection by APN
+#  gtpc:
+#    client:
+#      smf:
+#        - address: 127.0.0.4
+#          apn: internet
+#        - address: 127.0.0.5
+#          apn: volte
+#
+#  o SMF selection by eNodeB TAC
+#   (either single TAC or multiple TACs, DECIMAL representation)
+#  gtpc:
+#    client:
+#      smf:
+#        - address: 127.0.0.4
+#          tac: 26000
+#        - address: 127.0.2.4
+#          tac: [25000, 27000, 28000]
+#
+#  o SMF selection by e_cell_id(28bit)
+#   (either single or multiple e_cell_id, HEX representation)
+#  gtpc:
+#    client:
+#      smf:
+#        - address: 127.0.0.4
+#          e_cell_id: abcde01
+#        - address: 127.0.2.4
+#          e_cell_id: [12345, a9413, 98765]
+#
+#  o One SGSN is defined.
+#    If prefer_ipv4 is not true, [fd69:f21d:873c:fa::2] is selected.
+#  gtpc:
+#    client:
+#      sgsn:
+#        - address:
+#          - 127.0.0.3
+#          - fd69:f21d:873c:fa::2
+#          routes:
+#          - rai:
+#              lai:
+#                plmn_id:
+#                  mcc: 001
+#                  mnc: 01
+#                lac: 43690
+#              rac: 187
+#            ci: 1223
+#
+#
+#  o Two SGSNs are defined. Last one is used by default if no
+#    matching RAI+CI route is found.
+#  gtpc:
+#    client:
+#      sgsn:
+#        - address:
+#          - 127.0.0.3
+#          - fd69:f21d:873c:fa::2
+#          routes:
+#          - rai:
+#              lai:
+#                plmn_id:
+#                  mcc: 001
+#                  mnc: 01
+#                lac: 43690
+#              rac: 187
+#            ci: 1223
+#        - name: sgsn3.open5gs.org
+#          default_route: true
+#
+################################################################################
+# SGaAP Server
+################################################################################
+#  o MSC/VLR
+#  sgsap:
+#    server:
+#      - address: 127.0.0.2
+#        map:
+#          tai:
+#            plmn_id:
+#              mcc: 001
+#              mnc: 01
+#            tac: 4131
+#          lai:
+#            plmn_id:
+#              mcc: 001
+#              mnc: 01
+#            lac: 43691
+#        map:
+#          tai:
+#            plmn_id:
+#              mcc: 002
+#              mnc: 02
+#            tac: 4132
+#          lai:
+#            plmn_id:
+#              mcc: 002
+#              mnc: 02
+#            lac: 43692
+#      - address: msc.open5gs.org
+#        map:
+#          tai:
+#            plmn_id:
+#              mcc: 001
+#              mnc: 01
+#            tac: 4133
+#          lai:
+#            plmn_id:
+#              mcc: 002
+#              mnc: 02
+#            lac: 43693
+#
+################################################################################
+# 3GPP Specification
+################################################################################
+#  o GUMMEI
+#  gummei:
+#    - plmn_id:
+#        mcc: 001
+#        mnc: 01
+#      mme_gid: 2
+#      mme_code: 1
+#    - plmn_id:
+#        - mcc: 002
+#          mnc: 02
+#        - mcc: 003
+#          mnc: 03
+#      mme_gid: [3, 4]
+#      mme_code:
+#        - 2
+#        - 3
+#
+#  o TAI
+#  tai:
+#    - plmn_id:
+#        mcc: 001
+#        mnc: 01
+#      tac: [1, 3, 5]
+#  tai:
+#    - plmn_id:
+#        mcc: 002
+#        mnc: 02
+#      tac: [6-10, 15-18]
+#  tai:
+#    - plmn_id:
+#        mcc: 003
+#        mnc: 03
+#      tac: 20
+#    - plmn_id:
+#        mcc: 004
+#        mnc: 04
+#      tac: 21
+#  tai:
+#    - plmn_id:
+#        mcc: 005
+#        mnc: 05
+#      tac: [22, 28]
+#    - plmn_id:
+#        mcc: 006
+#        mnc: 06
+#      tac: [30-32, 34, 36-38, 40-42, 44, 46, 48]
+#    - plmn_id:
+#        mcc: 007
+#        mnc: 07
+#      tac: 50
+#    - plmn_id:
+#        mcc: 008
+#        mnc: 08
+#      tac: 60
+#    - plmn_id:
+#        mcc: 009
+#        mnc: 09
+#      tac: [70, 80]
+#
+#  o Access Control
+#  access_control:
+#    - default_reject_cause: 13
+#    - plmn_id:
+#        reject_cause: 15
+#        mcc: 001
+#        mnc: 01
+#    - plmn_id:
+#        mcc: 002
+#        mnc: 02
+#    - plmn_id:
+#        mcc: 999
+#        mnc: 70
+#
+#  o Relative Capacity
+#  relative_capacity: 100

open5gs/conf/nrf.yaml

@@ -0,0 +1,70 @@
+logger:
+  file:
+    path: /var/log/open5gs/nrf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+nrf:
+  serving:  # 5G roaming requires PLMN in NRF
+    - plmn_id:
+        mcc: 999
+        mnc: 70
+  sbi:
+    server:
+      - address: 10.0.1.10
+        port: 7777
+
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-nrf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/nrf.key
+#        cert: /etc/open5gs/tls/nrf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/nrf.key
+#        cert: /etc/open5gs/tls/nrf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/nrf.key
+#        client_cert: /etc/open5gs/tls/nrf.crt
+#  sbi:
+#    server:
+#      - address: nrf.localdomain

open5gs/conf/nssf.yaml

@@ -0,0 +1,136 @@
+logger:
+  file:
+    path: /var/log/open5gs/nssf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+nssf:
+  sbi:
+    server:
+      - address: 10.0.1.14
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+      nsi:
+        - uri: http://10.0.1.10:7777
+          s_nssai:
+            sst: 1
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-nssf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Network Slice Instance(NSI)
+#   1. NRF[http://::1:7777/nnrf-nfm/v1/nf-instances]
+#      S-NSSAI[SST:1]
+#   2. NRF[http://127.0.0.19:7777/nnrf-nfm/v1/nf-instances]
+#      NSSAI[SST:1, SD:000080]
+#   3. NRF[http://127.0.0.10:7777/nnrf-nfm/v1/nf-instances]
+#      NSSAI[SST:1, SD:009000]
+#
+#  sbi:
+#    client:
+#      nsi:
+#        - uri: http://[::1]:7777
+#          s_nssai:
+#            sst: 1
+#        - uri: http://127.0.0.19:7777
+#          s_nssai:
+#            sst: 1
+#            sd: 000080
+#        - uri: http://127.0.0.10:7777
+#          s_nssai:
+#            sst: 1
+#            sd: 009000
+#
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/nssf.key
+#        cert: /etc/open5gs/tls/nssf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: nssf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#      nsi:
+#        - uri: https://nrf.localdomain
+#          s_nssai:
+#            sst: 1
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/nssf.key
+#        cert: /etc/open5gs/tls/nssf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/nssf.key
+#        client_cert: /etc/open5gs/tls/nssf.crt
+#  sbi:
+#    server:
+#      - address: nssf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#      nsi:
+#        - uri: https://nrf.localdomain
+#          s_nssai:
+#            sst: 1

open5gs/conf/pcf.yaml

@@ -0,0 +1,228 @@
+db_uri: mongodb://localhost/open5gs
+logger:
+  file:
+    path: /var/log/open5gs/pcf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+pcf:
+  sbi:
+    server:
+      - address: 10.0.1.13
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+  metrics:
+    server:
+      - address: 10.0.1.13
+        port: 9090
+
+################################################################################
+# Locally configured policy
+# - The PCF in the VPLMN uses locally configured policies
+#   according to the roaming agreement with the HPLMN operator
+#   as input for PCC Rule generation.
+################################################################################
+#
+#  o You don't have to use MongoDB if you use the policy configuration as below.
+#
+#  policy:
+#    - plmn_id:
+#        mcc: 999
+#        mnc: 70
+#      slice:
+#        - sst: 1  # 1,2,3,4
+#          default_indicator: true
+#          session:
+#            - name: internet
+#              type: 3  # 1:IPv4, 2:IPv6, 3:IPv4v6
+#              ambr:
+#                downlink:
+#                  value: 1
+#                  unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                uplink:
+#                  value: 1
+#                  unit: 3
+#              qos:
+#                index: 9  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#                arp:
+#                  priority_level: 8  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#                  pre_emption_vulnerability: 1  # 1: Disabled, 2:Enabled
+#                  pre_emption_capability: 1  # 1: Disabled, 2:Enabled
+#            - name: ims
+#              type: 3  # 1:IPv4, 2:IPv6, 3:IPv4v6
+#              ambr:
+#                downlink:
+#                  value: 1
+#                  unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                uplink:
+#                  value: 1
+#                  unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#              qos:
+#                index: 5  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#                arp:
+#                  priority_level: 1  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#                  pre_emption_vulnerability: 1  # 1: Disabled, 2:Enabled
+#                  pre_emption_capability: 1  # 1: Disabled, 2:Enabled
+#              pcc_rule:
+#                - qos:
+#                    index: 1  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#                    arp:
+#                      priority_level: 1  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#                      pre_emption_vulnerability: 1   # 1: Disabled, 2:Enabled
+#                      pre_emption_capability: 1   # 1: Disabled, 2:Enabled
+#                    mbr:
+#                      downlink:
+#                        value: 82
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                      uplink:
+#                        value: 82
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                    gbr:
+#                      downlink:
+#                        value: 82
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                      uplink:
+#                        value: 82
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                  flow:
+#                    - direction: 2
+#                      description: "permit out icmp from any to assigned"
+#                    - direction: 1
+#                      description: "permit out icmp from any to assigned"
+#                    - direction: 2
+#                      description: "permit out udp from 10.200.136.98/32 23455 to assigned 1-65535"
+#                    - direction: 1
+#                      description: "permit out udp from 10.200.136.98/32 1-65535 to assigned 50021"
+#                - qos:
+#                    index: 2  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#                    arp:
+#                      priority_level: 4  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#                      pre_emption_vulnerability: 2   # 1: Disabled, 2:Enabled
+#                      pre_emption_capability: 2   # 1: Disabled, 2:Enabled
+#                    mbr:
+#                      downlink:
+#                        value: 802
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                      uplink:
+#                        value: 802
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                    gbr:
+#                      downlink:
+#                        value: 802
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                      uplink:
+#                        value: 802
+#                        unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#    - plmn_id:
+#        mcc: 001
+#        mnc: 01
+#      slice:
+#        - sst: 1  # 1,2,3,4
+#          sd: 000001
+#          default_indicator: true
+#          session:
+#            - name: internet
+#              type: 3  # 1:IPv4, 2:IPv6, 3:IPv4v6
+#              ambr:
+#                downlink:
+#                  value: 1
+#                  unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#                uplink:
+#                  value: 1
+#                  unit: 3
+#              qos:
+#                index: 9  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#                arp:
+#                  priority_level: 8  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#                  pre_emption_vulnerability: 1  # 1: Disabled, 2:Enabled
+#                  pre_emption_capability: 1  # 1: Disabled, 2:Enabled
+#
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-pcf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/pcf.key
+#        cert: /etc/open5gs/tls/pcf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: pcf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/pcf.key
+#        cert: /etc/open5gs/tls/pcf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/pcf.key
+#        client_cert: /etc/open5gs/tls/pcf.crt
+#  sbi:
+#    server:
+#      - address: pcf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain

open5gs/conf/pcrf.yaml

@@ -0,0 +1,101 @@
+db_uri: mongodb://localhost/open5gs
+logger:
+  file:
+    path: /var/log/open5gs/pcrf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+pcrf:
+  freeDiameter: /etc/freeDiameter/pcrf.conf
+
+################################################################################
+# Locally configured policy
+################################################################################
+#
+#  o You don't have to use MongoDB if you use the policy configuration as below.
+#
+#  session:
+#    - name: internet
+#      type: 3  # 1:IPv4, 2:IPv6, 3:IPv4v6
+#      ambr:
+#        downlink:
+#          value: 1
+#          unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#        uplink:
+#          value: 1
+#          unit: 3
+#      qos:
+#        index: 9  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#        arp:
+#          priority_level: 8  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#          pre_emption_vulnerability: 1  # 1: Disabled, 2:Enabled
+#          pre_emption_capability: 1  # 1: Disabled, 2:Enabled
+#    - name: ims
+#      type: 3  # 1:IPv4, 2:IPv6, 3:IPv4v6
+#      ambr:
+#        downlink:
+#          value: 1
+#          unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#        uplink:
+#          value: 1
+#          unit: 3  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#      qos:
+#        index: 5  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#        arp:
+#          priority_level: 1  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#          pre_emption_vulnerability: 1  # 1: Disabled, 2:Enabled
+#          pre_emption_capability: 1  # 1: Disabled, 2:Enabled
+#      pcc_rule:
+#        - qos:
+#            index: 1  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#            arp:
+#              priority_level: 1  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#              pre_emption_vulnerability: 1   # 1: Disabled, 2:Enabled
+#              pre_emption_capability: 1   # 1: Disabled, 2:Enabled
+#            mbr:
+#              downlink:
+#                value: 82
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#              uplink:
+#                value: 82
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#            gbr:
+#              downlink:
+#                value: 82
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#              uplink:
+#                value: 82
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#          flow:
+#            - direction: 2
+#              description: "permit out icmp from any to assigned"
+#            - direction: 1
+#              description: "permit out icmp from any to assigned"
+#            - direction: 2
+#              description: "permit out udp from 10.200.136.98/32 23455 to assigned 1-65535"
+#            - direction: 1
+#              description: "permit out udp from 10.200.136.98/32 1-65535 to assigned 50021"
+#        - qos:
+#            index: 2  # 1, 2, 3, 4, 65, 66, 67, 75, 71, 72, 73, 74, 76, 5, 6, 7, 8, 9, 69, 70, 79, 80, 82, 83, 84, 85, 86
+#            arp:
+#              priority_level: 4  # 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15
+#              pre_emption_vulnerability: 2   # 1: Disabled, 2:Enabled
+#              pre_emption_capability: 2   # 1: Disabled, 2:Enabled
+#            mbr:
+#              downlink:
+#                value: 802
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#              uplink:
+#                value: 802
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#            gbr:
+#              downlink:
+#                value: 802
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#              uplink:
+#                value: 802
+#                unit: 1  # 0:bps, 1:Kbps, 2:Mbps, 3:Gbps, 4:Tbps
+#

open5gs/conf/scp.yaml

@@ -0,0 +1,127 @@
+logger:
+  file:
+    path: /var/log/open5gs/scp.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+scp:
+  sbi:
+    server:
+      - address: 10.0.1.200
+        port: 7777
+    client:
+      nrf:
+        - uri: http://10.0.1.10:7777
+
+################################################################################
+# SCP Info
+################################################################################
+#  o SCP port number(s) WITHOUT SCP Domain
+#   - If no SCP port information is present in ScpInfo or
+#     in ScpDomainInfo for a specific SCP domain,
+#     the HTTP client shall use the default HTTP port number,
+#     i.e. TCP port 80 for "http" URIs or TCP port 443
+#     for "https" URIs as specified in IETF RFC 7540 [9]
+#     when sending a request to the SCP within the specific SCP domain.
+#  info:
+#    port:
+#      http: 7777
+#      https: 8888
+#
+#  o SCP port number(s) WITH SCP Domain
+#   - If this attribute is present,
+#     it has precedence over the scpPorts attribute of ScpInfo.
+#  info:
+#    domain:
+#      - name: SCP_Domain_1
+#        fqdn: scp.localdomain
+#        port:
+#          http: 7777
+#          https: 8888
+#
+#  o Complex Example
+#  info:
+#    port:
+#      http: 7777
+#      https: 8888
+#    domain:
+#      - name: SCP_Domain_1
+#        fqdn: scp.hplmndomain
+#        port:
+#          http: 3333
+#          https: 4444
+#      - name: SCP_Domain_2
+#        fqdn: scp.vplmndomain
+#        port:
+#          http: 5555
+#          https: 6666
+#
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-scp.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/scp.key
+#        cert: /etc/open5gs/tls/scp.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: scp.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/scp.key
+#        cert: /etc/open5gs/tls/scp.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/scp.key
+#        client_cert: /etc/open5gs/tls/scp.crt
+#  sbi:
+#    server:
+#      - address: scp.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain

open5gs/conf/sepp1.yaml

@@ -0,0 +1,255 @@
+logger:
+  file:
+    path: /var/log/open5gs/sepp1.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+sepp:
+  default:
+    tls:
+      server:
+        private_key: /etc/open5gs/tls/sepp1.key
+        cert: /etc/open5gs/tls/sepp1.crt
+      client:
+        cacert: /etc/open5gs/tls/ca.crt
+  sbi:
+    server:
+      - address: 10.0.1.250
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+  n32:
+    server:
+      - sender: sepp1.localdomain
+        scheme: https
+        address: 10.0.1.251
+        port: 7777
+        n32f:
+          scheme: https
+          address: 10.0.1.252
+          port: 7777
+    client:
+      sepp:
+        - receiver: sepp2.localdomain
+          uri: https://sepp2.localdomain:7777
+          resolve: 10.0.1.251
+          n32f:
+            uri: https://sepp2.localdomain:7777
+            resolve: 10.0.1.252
+
+################################################################################
+# SEPP Info
+################################################################################
+#  o SEPP port number(s) for HTTP and/or HTTPS
+#   - This attribute shall be present if the SEPP uses non-default HTTP and/or
+#     HTTPS ports. When present, it shall contain the HTTP and/or HTTPS ports.
+#     (Minimum: 0 Maximum: 65535)
+#  info:
+#    port:
+#      http: 7777
+#      https: 8888
+#
+################################################################################
+# No TLS - N32 Server/Client
+################################################################################
+#  o SEPP uses the same interface that other NFs(NRF, AMF, ...) use.
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: http://127.0.2.250:7777
+#
+#  o SEPP uses a separate interface
+#    that is different from those used by other NFs.
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#        address: 127.0.1.251
+#        port: 7777
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: http://127.0.2.251:7777
+#
+#  o Not only SEPP but also the N32 forwarding uses a separate interface
+#    that is different from those used by other NFs.
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#        address: 127.0.1.251
+#        port: 7777
+#        n32f:
+#          address: 127.0.1.252
+#          port: 7777
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: http://127.0.2.251:7777
+#          n32f:
+#            uri: http://127.0.2.252:7777
+#
+################################################################################
+# HTTPS scheme with TLS - N32 Server/Client
+################################################################################
+#
+#  o Only N32 uses HTTPS with TLS, while other NFs use HTTP without TLS.
+#  default:
+#    tls:
+#      server:
+#        private_key: /etc/open5gs/tls/sepp1.key
+#        cert: /etc/open5gs/tls/sepp1.crt
+#      client:
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#        scheme: https
+#        address: 127.0.1.251
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: https://sepp2.localdomain
+#          resolve: 127.0.2.251
+#
+#  o Add client TLS verification to N32 interface
+#  default:
+#    tls:
+#      server:
+#        private_key: /etc/open5gs/tls/sepp1.key
+#        cert: /etc/open5gs/tls/sepp1.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/sepp1.key
+#        client_cert: /etc/open5gs/tls/sepp1.crt
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#        scheme: https
+#        address: 127.0.1.251
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: https://sepp2.localdomain
+#          resolve: 127.0.2.251
+#
+#  o Both SEPP and N32 forwarding also uses HTTPS with TLS,
+#    while other NFs use HTTP without TLS.
+#  default:
+#    tls:
+#      server:
+#        private_key: /etc/open5gs/tls/sepp1.key
+#        cert: /etc/open5gs/tls/sepp1.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/sepp1.key
+#        client_cert: /etc/open5gs/tls/sepp1.crt
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#        scheme: https
+#        address: 127.0.1.251
+#        n32f:
+#          scheme: https
+#          address: 127.0.1.252
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: https://sepp2.localdomain
+#          resolve: 127.0.2.251
+#          n32f:
+#            uri: https://sepp2.localdomain
+#            resolve: 127.0.2.252
+#
+#  o N32 control and N32 forwarding interface use different key/certificate.
+#  sbi:
+#    server:
+#      - address: 127.0.1.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp1.localdomain
+#        scheme: https
+#        address: 127.0.1.251
+#        private_key: /etc/open5gs/tls/sepp1.key
+#        cert: /etc/open5gs/tls/sepp1.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#        n32f:
+#          scheme: https
+#          address: 127.0.1.252
+#          private_key: /etc/open5gs/tls/sepp1-n32f.key
+#          cert: /etc/open5gs/tls/sepp1-n32f.crt
+#          verify_client: true
+#          verify_client_cacert: /etc/open5gs/tls/ca.crt
+#    client:
+#      sepp:
+#        - receiver: sepp2.localdomain
+#          uri: https://sepp2.localdomain
+#          resolve: 127.0.2.251
+#          cacert: /etc/open5gs/tls/ca.crt
+#          client_private_key: /etc/open5gs/tls/sepp1.key
+#          client_cert: /etc/open5gs/tls/sepp1.crt
+#          n32f:
+#            uri: https://sepp2.localdomain
+#            resolve: 127.0.2.252
+#            cacert: /etc/open5gs/tls/ca.crt
+#            client_private_key: /etc/open5gs/tls/sepp1-n32f.key
+#            client_cert: /etc/open5gs/tls/sepp1-n32f.crt

open5gs/conf/sepp2.yaml

@@ -0,0 +1,255 @@
+logger:
+  file:
+    path: /var/log/open5gs/sepp2.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+sepp:
+  default:
+    tls:
+      server:
+        private_key: /etc/open5gs/tls/sepp2.key
+        cert: /etc/open5gs/tls/sepp2.crt
+      client:
+        cacert: /etc/open5gs/tls/ca.crt
+  sbi:
+    server:
+      - address: 10.0.1.250
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+  n32:
+    server:
+      - sender: sepp2.localdomain
+        scheme: https
+        address: 10.0.1.251
+        port: 7777
+        n32f:
+          scheme: https
+          address: 10.0.1.252
+          port: 7777
+    client:
+      sepp:
+        - receiver: sepp1.localdomain
+          uri: https://sepp1.localdomain:7777
+          resolve: 10.0.1.251
+          n32f:
+            uri: https://sepp1.localdomain:7777
+            resolve: 10.0.1.252
+
+################################################################################
+# SEPP Info
+################################################################################
+#  o SEPP port number(s) for HTTP and/or HTTPS
+#   - This attribute shall be present if the SEPP uses non-default HTTP and/or
+#     HTTPS ports. When present, it shall contain the HTTP and/or HTTPS ports.
+#     (Minimum: 0 Maximum: 65535)
+#  info:
+#    port:
+#      http: 7777
+#      https: 8888
+#
+################################################################################
+# No TLS - N32 Server/Client
+################################################################################
+#  o SEPP uses the same interface that other NFs(NRF, AMF, ...) use.
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: http://127.0.1.250:7777
+#
+#  o SEPP uses a separate interface
+#    that is different from those used by other NFs.
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#        address: 127.0.2.251
+#        port: 7777
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: http://127.0.1.251:7777
+#
+#  o Not only SEPP but also the N32 forwarding uses a separate interface
+#    that is different from those used by other NFs.
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#        address: 127.0.2.251
+#        port: 7777
+#        n32f:
+#          address: 127.0.2.252
+#          port: 7777
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: http://127.0.1.251:7777
+#          n32f:
+#            uri: http://127.0.1.252:7777
+#
+################################################################################
+# HTTPS scheme with TLS - N32 Server/Client
+################################################################################
+#
+#  o Only N32 uses HTTPS with TLS, while other NFs use HTTP without TLS.
+#  default:
+#    tls:
+#      server:
+#        private_key: /etc/open5gs/tls/sepp2.key
+#        cert: /etc/open5gs/tls/sepp2.crt
+#      client:
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#        scheme: https
+#        address: 127.0.2.251
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: https://sepp1.localdomain
+#          resolve: 127.0.1.251
+#
+#  o Add client TLS verification to N32 interface
+#  default:
+#    tls:
+#      server:
+#        private_key: /etc/open5gs/tls/sepp2.key
+#        cert: /etc/open5gs/tls/sepp2.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/sepp2.key
+#        client_cert: /etc/open5gs/tls/sepp2.crt
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#        scheme: https
+#        address: 127.0.2.251
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: https://sepp1.localdomain
+#          resolve: 127.0.1.251
+#
+#  o Both SEPP and N32 forwarding also uses HTTPS with TLS,
+#    while other NFs use HTTP without TLS.
+#  default:
+#    tls:
+#      server:
+#        private_key: /etc/open5gs/tls/sepp2.key
+#        cert: /etc/open5gs/tls/sepp2.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/sepp2.key
+#        client_cert: /etc/open5gs/tls/sepp2.crt
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#        scheme: https
+#        address: 127.0.2.251
+#        n32f:
+#          scheme: https
+#          address: 127.0.2.252
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: https://sepp1.localdomain
+#          resolve: 127.0.1.251
+#          n32f:
+#            uri: https://sepp1.localdomain
+#            resolve: 127.0.1.252
+#
+#  o N32 control and N32 forwarding interface use different key/certificate.
+#  sbi:
+#    server:
+#      - address: 127.0.2.250
+#        port: 7777
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  n32:
+#    server:
+#      - sender: sepp2.localdomain
+#        scheme: https
+#        address: 127.0.2.251
+#        private_key: /etc/open5gs/tls/sepp2.key
+#        cert: /etc/open5gs/tls/sepp2.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#        n32f:
+#          scheme: https
+#          address: 127.0.2.252
+#          private_key: /etc/open5gs/tls/sepp2-n32f.key
+#          cert: /etc/open5gs/tls/sepp2-n32f.crt
+#          verify_client: true
+#          verify_client_cacert: /etc/open5gs/tls/ca.crt
+#    client:
+#      sepp:
+#        - receiver: sepp1.localdomain
+#          uri: https://sepp1.localdomain
+#          resolve: 127.0.1.251
+#          cacert: /etc/open5gs/tls/ca.crt
+#          client_private_key: /etc/open5gs/tls/sepp2.key
+#          client_cert: /etc/open5gs/tls/sepp2.crt
+#          n32f:
+#            uri: https://sepp1.localdomain
+#            resolve: 127.0.1.252
+#            cacert: /etc/open5gs/tls/ca.crt
+#            client_private_key: /etc/open5gs/tls/sepp2-n32f.key
+#            client_cert: /etc/open5gs/tls/sepp2-n32f.crt

open5gs/conf/service_control.sh

@@ -0,0 +1,6 @@
+#!/bin/sh
+cmd="${1:-status}" 
+set -ex
+systemctl $cmd open5gs-amfd open5gs-ausfd open5gs-bsfd open5gs-hssd open5gs-mmed open5gs-nrfd open5gs-nssfd open5gs-pcfd open5gs-pcrfd open5gs-sgwcd open5gs-sgwud open5gs-smfd open5gs-udmd open5gs-udrd open5gs-upfd open5gs-scpd open5gs-seppd
+
+

open5gs/conf/sgwc.yaml

@@ -0,0 +1,70 @@
+logger:
+  file:
+    path: /var/log/open5gs/sgwc.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+sgwc:
+  gtpc:
+    server:
+      - address: 10.0.1.3
+  pfcp:
+    server:
+      - address: 10.0.1.3
+    client:
+      sgwu:
+        - address: 10.0.1.6
+
+################################################################################
+# GTP-C Server
+################################################################################
+#  o Listen on IPv4 and IPv6
+#  gtpc:
+#    server:
+#      - address: 127.0.0.3
+#      - address: fd69:f21d:873c:fa::2
+#
+################################################################################
+# PFCP Server
+################################################################################
+#  o Override PFCP address to be advertised to SGW-U in PFCP association
+#  pfcp:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-sgwc.svc.local
+#
+################################################################################
+# PFCP Client
+################################################################################
+#  o SGWU selection by eNodeB TAC
+#   (either single TAC or multiple TACs, DECIMAL representation)
+#  pfcp:
+#    client:
+#      sgwu:
+#        - address: 127.0.0.6
+#          tac: 1
+#        - address: 127.0.0.12
+#          tac: [3,5,8]
+#
+#  o SGWU selection by UE's APN (either single APN or multiple APNs)
+#  pfcp:
+#    client:
+#      sgwu:
+#        - address: 127.0.0.6
+#          apn: ims
+#        - address: 127.0.0.12
+#          apn: [internet, web]
+#
+#  o SGWU selection by CellID(e_cell_id: 28bit)
+#   (either single e_cell_id or multiple e_cell_id, HEX representation)
+#  pfcp:
+#    client:
+#      sgwu:
+#        - address: 127.0.0.6
+#          e_cell_id: 463
+#        - address: 127.0.0.12
+#          e_cell_id: [123456789, 9413]

open5gs/conf/sgwu.yaml

@@ -0,0 +1,52 @@
+logger:
+  file:
+    path: /var/log/open5gs/sgwu.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+sgwu:
+  pfcp:
+    server:
+      - address: 10.0.1.6
+    client:
+#      sgwc:    # SGW-U PFCP Client try to associate SGW-C PFCP Server
+#        - address: 127.0.0.3
+  gtpu:
+    server:
+      - address: 10.0.1.6
+
+################################################################################
+# PFCP Server
+################################################################################
+#  o Override PFCP address to be advertised to SGW-C in PFCP association
+#  pfcp:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-sgwu.svc.local
+#
+################################################################################
+# GTP-U Server
+################################################################################
+#  o Override SGW-U GTP-U address to be advertised inside S1AP messages 
+#  gtpu:
+#    server:
+#      - dev: ens3
+#        advertise: sgw1.epc.mnc001.mcc001.3gppnetwork.org
+#
+#  o User Plane IP Resource information
+#  gtpu:
+#    server:
+#      - address: 127.0.0.6
+#        teid_range_indication: 4
+#        teid_range: 10
+#        network_instance: internet
+#        source_interface: 0
+#      - address: 127.0.10.4
+#        teid_range_indication: 4
+#        teid_range: 5
+#        network_instance: ims
+#        source_interface: 1

open5gs/conf/smf.yaml

@@ -0,0 +1,362 @@
+logger:
+  file:
+    path: /var/log/open5gs/smf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+smf:
+  sbi:
+    server:
+      - address: 10.0.1.4
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+  pfcp:
+    server:
+      - address: 10.0.1.4
+    client:
+      upf:
+        - address: 10.0.1.7
+  gtpc:
+    server:
+      - address: 10.0.1.4
+  gtpu:
+    server:
+      - address: 10.0.1.4
+  metrics:
+    server:
+      - address: 10.0.1.4
+        port: 9090
+  session:
+    - subnet: 10.45.0.0/16
+      gateway: 10.45.0.1
+    - subnet: 2001:db8:cafe::/48
+      gateway: 2001:db8:cafe::1
+  dns:
+    - 8.8.8.8
+    - 8.8.4.4
+    - 2001:4860:4860::8888
+    - 2001:4860:4860::8844
+  mtu: 1400
+#  p-cscf:
+#    - 127.0.0.1
+#    - ::1
+#  ctf:
+#    enabled: auto   # auto(default)|yes|no
+  freeDiameter: /etc/freeDiameter/smf.conf
+
+################################################################################
+# SMF Info
+################################################################################
+#  <SMF Selection - 5G Core only>
+#  1. SMF sends SmfInfo(S-NSSAI, DNN, TAI) to the NRF
+#  2. NRF responds to AMF with SmfInfo during NF-Discovery.
+#  3. AMF selects SMF based on S-NSSAI, DNN and TAI in SmfInfo.
+#
+#  Note that if there is no SmfInfo, any AMF can select this SMF.
+#
+#  o S-NSSAI[SST:1] and DNN[internet] - At least 1 DNN is required in S-NSSAI
+#  info:
+#    - s_nssai:
+#        - sst: 1
+#          dnn:
+#            - internet
+#
+#  o S-NSSAI[SST:1 SD:009000] and DNN[internet or ims]
+#  info:
+#    - s_nssai:
+#        - sst: 1
+#          sd: 009000
+#          dnn:
+#            - internet
+#            - ims
+#
+#  o S-NSSAI[SST:1] and DNN[internet] and TAI[PLMN-ID:99970 TAC:1]
+#  info:
+#    - s_nssai:
+#        - sst: 1
+#          dnn:
+#            - internet
+#      tai:
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac: 1
+#
+#  o If any of conditions below are met:
+#   - S-NSSAI[SST:1] and DNN[internet] and TAI[PLMN-ID:99970 TAC:1-9]
+#   - S-NSSAI[SST:2 SD:000080] and DNN[internet or ims]
+#   - S-NSSAI[SST:4] and DNN[internet] and TAI[PLMN-ID:99970 TAC:10-20,30-40]
+#  info:
+#    - s_nssai:
+#        - sst: 1
+#          dnn:
+#            - internet
+#      tai:
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac:
+#            - 1-9
+#    - s_nssai:
+#        - sst: 2
+#          sd: 000080
+#          dnn:
+#            - internet
+#            - ims
+#    - s_nssai:
+#        - sst: 4
+#          dnn:
+#            - internet
+#      tai:
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac:
+#            - 10-20
+#            - 30-40
+#
+#  o Complex Example
+#  info:
+#    - s_nssai:
+#        - sst: 1
+#          dnn:
+#            - internet
+#        - sst: 1
+#          sd: 000080
+#          dnn:
+#            - internet
+#            - ims
+#        - sst: 1
+#          sd: 009000
+#          dnn:
+#            [internet, ims]
+#        - sst: 2
+#          dnn:
+#            - internet
+#        - sst: 3
+#          sd: 123456
+#          dnn:
+#            - internet
+#      tai:
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac: [1, 2, 3]
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac: 4
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac:
+#            - 5
+#            - 6
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac:
+#            - 100-200
+#            - 300-400
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac:
+#            - 500-600
+#            - 700-800
+#            - 900-1000
+#    - s_nssai:
+#        - sst: 4
+#          dnn:
+#            - internet
+#      tai:
+#        - plmn_id:
+#            mcc: 999
+#            mnc: 70
+#          tac: 99
+#
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-smf.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/smf.key
+#        cert: /etc/open5gs/tls/smf.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: smf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/smf.key
+#        cert: /etc/open5gs/tls/smf.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/smf.key
+#        client_cert: /etc/open5gs/tls/smf.crt
+#  sbi:
+#    server:
+#      - address: smf.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+################################################################################
+# PFCP Server
+################################################################################
+#  o Override PFCP address to be advertised to UPF in PFCP association
+#  pfcp:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-smf.svc.local
+#
+################################################################################
+# PFCP Client
+################################################################################
+#  o UPF selection by eNodeB TAC
+#   (either single TAC or multiple TACs, DECIMAL representation)
+#  pfcp:
+#    client:
+#      upf:
+#        - address: 127.0.0.7
+#          tac: 1
+#        - address: 127.0.0.12
+#          tac: [3,5,8]
+#
+#  o UPF selection by UE's DNN/APN (either single DNN/APN or multiple DNNs/APNs)
+#  pfcp:
+#    client:
+#      upf:
+#        - address: 127.0.0.7
+#          dnn: ims
+#        - address: 127.0.0.12
+#          dnn: [internet, web]
+#
+#  o UPF selection by CellID(e_cell_id: 28bit, nr_cell_id: 36bit)
+#    (either single enb_id or multiple enb_ids, HEX representation)
+#  pfcp:
+#    client:
+#      upf:
+#        - address: 127.0.0.7
+#          e_cell_id: 463
+#        - address: 127.0.0.12
+#          nr_cell_id: [123456789, 9413]
+#
+################################################################################
+# GTP-C Server
+################################################################################
+#  o Listen on IPv4 and IPv6
+#  gtpc:
+#    server:
+#      - address: 127.0.0.4
+#      - address: fd69:f21d:873c:fa::3
+#
+################################################################################
+# GTP-U Server
+################################################################################
+#  o Listen on IPv4 and IPv6
+#  gtpu:
+#    server:
+#      - address: 127.0.0.4
+#      - address: ::1
+#
+################################################################################
+# 3GPP Specification
+################################################################################
+#  o Specific DNN/APN(e.g 'ims') uses 10.46.0.1/16, 2001:db8:babe::1/48
+#   (If the UE has unknown DNN/APN(not internet/ims), SMF/UPF will crash.)
+#  session:
+#    - subnet: 10.45.0.0/16
+#      gateway: 10.45.0.1
+#      dnn: internet
+#    - subnet: 2001:db8:cafe::/48
+#      dnn: internet
+#    - subnet: 10.46.0.0/16
+#      gateway: 10.46.0.1
+#      dnn: ims
+#    - subnet: 2001:db8:babe::/48
+#      dnn: ims
+#
+#  o Pool Range
+#  session:
+#    - subnet: 10.45.0.0/16
+#      gateway: 10.45.0.1
+#      range:
+#        - 10.45.0.100-10.45.0.200
+#        - 10.45.1.100-
+#        - -10.45.0.200
+#    - subnet: 2001:db8:cafe::/48
+#      range:
+#        - 2001:db8:cafe:a0::0-2001:db8:cafe:b0::0
+#        - 2001:db8:cafe:c0::0-2001:db8:cafe:d0::0
+#
+#  o Security Indication(5G Core only)
+#  security_indication:
+#    integrity_protection_indication: required|preferred|not-needed
+#    confidentiality_protection_indication: required|preferred|not-needed
+#    maximum_integrity_protected_data_rate_uplink: bitrate64kbs|maximum-UE-rate
+#    maximum_integrity_protected_data_rate_downlink: bitrate64kbs|maximum-UE-rate

open5gs/conf/udm.yaml

@@ -0,0 +1,162 @@
+logger:
+  file:
+    path: /var/log/open5gs/udm.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+udm:
+  hnet:
+    - id: 1
+      scheme: 1
+      key: /etc/open5gs/hnet/curve25519-1.key
+    - id: 2
+      scheme: 2
+      key: /etc/open5gs/hnet/secp256r1-2.key
+    - id: 3
+      scheme: 1
+      key: /etc/open5gs/hnet/curve25519-3.key
+    - id: 4
+      scheme: 2
+      key: /etc/open5gs/hnet/secp256r1-4.key
+    - id: 5
+      scheme: 1
+      key: /etc/open5gs/hnet/curve25519-5.key
+    - id: 6
+      scheme: 2
+      key: /etc/open5gs/hnet/secp256r1-6.key
+  sbi:
+    server:
+      - address: 10.0.1.12
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+
+#
+################################################################################
+# Home Network Public Key
+################################################################################
+#  o Generate the private key as below.
+#  $ openssl genpkey -algorithm X25519 -out /etc/open5gs/hnet/curve25519-1.key
+#  $ openssl ecparam -name prime256v1 -genkey -conv_form compressed -out /etc/open5gs/hnet/secp256r1-2.key
+#
+#  o The private and public keys can be viewed with the command.
+#    The public key is used when creating the SIM.
+#  $ openssl pkey -in /etc/open5gs/hnet/curve25519-1.key -text
+#  $ openssl ec -in /etc/open5gs/hnet/secp256r1-2.key -conv_form compressed -text
+#
+#  o Home network public key identifier(PKI) value : 1
+#    Protection scheme identifier : ECIES scheme profile A
+#  hnet:
+#    - id: 1
+#      scheme: 1
+#      key: /etc/open5gs/hnet/curve25519-1.key
+#
+#  o Home network public key identifier(PKI) value : 2
+#    Protection scheme identifier : ECIES scheme profile B
+#  hnet:
+#    - id: 2
+#      scheme: 2
+#      key: /etc/open5gs/hnet/secp256r1-2.key
+#
+#  o Home network public key identifier(PKI) value : 3
+#    Protection scheme identifier : ECIES scheme profile A
+#  hnet:
+#    - id: 3
+#      scheme: 1
+#      key: /etc/open5gs/hnet/curve25519-1.key
+#
+#  o Home network public key identifier(PKI) value : 4
+#    Protection scheme identifier : ECIES scheme profile B
+#  hnet:
+#    - id: 4
+#      scheme: 2
+#      key: /etc/open5gs/hnet/secp256r1-2.key
+#
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-udm.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/udm.key
+#        cert: /etc/open5gs/tls/udm.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: udm.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/udm.key
+#        cert: /etc/open5gs/tls/udm.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/udm.key
+#        client_cert: /etc/open5gs/tls/udm.crt
+#  sbi:
+#    server:
+#      - address: udm.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain

open5gs/conf/udr.yaml

@@ -0,0 +1,103 @@
+db_uri: mongodb://localhost/open5gs
+logger:
+  file:
+    path: /var/log/open5gs/udr.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+udr:
+  sbi:
+    server:
+      - address: 10.0.1.20
+        port: 7777
+    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+      scp:
+        - uri: http://10.0.1.200:7777
+
+################################################################################
+# SBI Server
+################################################################################
+#  o Override SBI address to be advertised to NRF
+#  sbi:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-udr.svc.local
+#
+#  sbi:
+#    server:
+#      - address: localhost
+#        advertise:
+#          - 127.0.0.99
+#          - ::1
+#
+################################################################################
+# SBI Client
+################################################################################
+#  o Direct communication with NRF interaction
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#
+#  o Indirect communication with delegated discovery
+#  sbi:
+#    client:
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#
+#  o Indirect communication without delegated discovery
+#  sbi:
+#    client:
+#      nrf:
+#        - uri: http://127.0.0.10:7777
+#      scp:
+#        - uri: http://127.0.0.200:7777
+#  discovery:
+#    delegated: no
+#
+################################################################################
+# HTTPS scheme with TLS
+################################################################################
+#  o Set as default if not individually set
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/udr.key
+#        cert: /etc/open5gs/tls/udr.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#  sbi:
+#    server:
+#      - address: udr.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain
+#
+#  o Add client TLS verification
+#  default:
+#    tls:
+#      server:
+#        scheme: https
+#        private_key: /etc/open5gs/tls/udr.key
+#        cert: /etc/open5gs/tls/udr.crt
+#        verify_client: true
+#        verify_client_cacert: /etc/open5gs/tls/ca.crt
+#      client:
+#        scheme: https
+#        cacert: /etc/open5gs/tls/ca.crt
+#        client_private_key: /etc/open5gs/tls/udr.key
+#        client_cert: /etc/open5gs/tls/udr.crt
+#  sbi:
+#    server:
+#      - address: udr.localdomain
+#    client:
+#      nrf:
+#        - uri: https://nrf.localdomain

open5gs/conf/upf.yaml

@@ -0,0 +1,88 @@
+logger:
+  file:
+    path: /var/log/open5gs/upf.log
+#  level: info   # fatal|error|warn|info(default)|debug|trace
+
+global:
+  max:
+    ue: 1024  # The number of UE can be increased depending on memory size.
+#    peer: 64
+
+upf:
+  pfcp:
+    server:
+      - address: 10.0.1.7
+    client:
+#      smf:     #  UPF PFCP Client try to associate SMF PFCP Server
+#        - address: 127.0.0.4
+  gtpu:
+    server:
+      - address: 10.0.1.7
+  session:
+    - subnet: 10.45.0.0/16
+      gateway: 10.45.0.1
+    - subnet: 2001:db8:cafe::/48
+      gateway: 2001:db8:cafe::1
+  metrics:
+    server:
+      - address: 10.0.1.7
+        port: 9090
+
+################################################################################
+# PFCP Server
+################################################################################
+# o Override PFCP address to be advertised to SMF in PFCP association
+#  pfcp:
+#    server:
+#      - dev: eth0
+#        advertise: open5gs-upf.svc.local
+#
+################################################################################
+# GTP-U Server
+################################################################################
+#  o Override SGW-U GTP-U address to be advertised inside S1AP messages 
+#  gtpu:
+#    server:
+#      - dev: ens3
+#        advertise: upf1.5gc.mnc001.mcc001.3gppnetwork.org
+#
+#  o User Plane IP Resource information
+#  gtpu:
+#    server:
+#      - address:
+#        - 127.0.0.7
+#        - ::1
+#        teid_range_indication: 4
+#        teid_range: 10
+#        network_instance: internet
+#        source_interface: 0
+#      - address: 127.0.10.4
+#        teid_range_indication: 4
+#        teid_range: 5
+#        network_instance: ims
+#        source_interface: 1
+#
+################################################################################
+# 3GPP Specification
+################################################################################
+#
+#  o Specific DNN/APN(e.g 'ims') uses 10.46.0.1/16, 2001:db8:babe::1/48
+#  $ sudo ip addr add 10.45.0.1/16 dev ogstun
+#  $ sudo ip addr add 2001:db8:cafe::1/48 dev ogstun2
+#  $ sudo ip addr add 10.46.0.1/16 dev ogstun3
+#  $ sudo ip addr add 2001:db8:babe::1/48 dev ogstun3
+#
+#  session:
+#    - subnet: 10.45.0.0/16
+#      gateway: 10.45.0.1
+#      dnn: internet
+#    - subnet: 2001:db8:cafe::/48
+#      dnn: internet
+#      dev: ogstun2
+#    - subnet: 10.46.0.0/16
+#      gateway: 10.46.0.1
+#      dnn: ims
+#      dev: ogstun3
+#    - subnet: 2001:db8:babe::/48
+#      dnn: ims
+#      dev: ogstun3