-
Notifications
You must be signed in to change notification settings - Fork 2
/
omni_config
executable file
·189 lines (144 loc) · 6.33 KB
/
omni_config
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
# This is a sample Omni config file
# It tells Omni how to talk to various Clearinghouses.
# And by extension, which Experimenter credentials to use.
# Omni looks for this file in 4 locations, using the first found
# 1) The location given by the -c command line arg - as a full path
# 2) The -c command line arg as a file relative to ~/.gcf
# 3) omni_config in the current directory
# 4) ~/.gcf/omni_config
# Any given instance of omni makes calls to a framework
# (e.g., SFA, ProtoGENI, etc..) to create slices, get slice
# credentials, and to find a list of authorized aggregates.
# This file specifies the control frameworks that you are
# a member of and the users that you want to be able to login
# to your allocated resources (e.g., virtual machines)
[omni]
# The default control framework for omni to use.
# Override on the commandline with -f argument.
# This should be the name of a section that you define below
# Note you could have multiple instances of the same type
# configured, EG for different MyPLC instances.
default_cf = my_gcf
# The slice_users argument in "CreateSliver". It uploads
# names and public ssh keys to allocated resources for login.
# Details on users should be defined in sections below
users = omniuser
# Omni will by default contact every Aggregate Manager listed
# by your control framework's registry/clearinghouse. If you would
# like to provide a specific list of aggregates to contact, do so
# here in a comma delimited list of of urls.
# e.g., a PL in Princeton AM, a PG in Utah AM, a test GCF AM, and
# an OpenFlow/Expedient AM in the GPO lab would be:
# aggregates = http://www.planet-lab.org:12347/, \
# https://www.emulab.net/protogeni/xmlrpc/am, \
# http://myplc2.gpolab.bbn.com:8001/, \
# https://masada.gpolab.bbn.com:443/openflow/gapi/
# You can also tell Omni a single aggregate URL to contact, with the -a
# argument. In addition, rather than remembering the URL, you can define a
# nickname for the aggregate here. This is completely optional.
#------AM nicknames
# Format :
# Nickname=URN, URL
# URN is optional
[aggregate_nicknames]
gram=,https://mycontroller:8001
#ProtoGENI AMs
pg-gpo1=,https://pgeni.gpolab.bbn.com/protogeni/xmlrpc/am/1.0
pg-gpo=,https://pgeni.gpolab.bbn.com/protogeni/xmlrpc/am/2.0
pg-utah1=,https://www.emulab.net/protogeni/xmlrpc/am/1.0
pg-utah=,https://www.emulab.net/protogeni/xmlrpc/am/2.0
pg-ky1=,https://www.uky.emulab.net/protogeni/xmlrpc/am/1.0
pg-ky=,https://www.uky.emulab.net/protogeni/xmlrpc/am/2.0
#Plublic PlanetLab AM
plc=,https://www.planet-lab.org:12346
# Private myplc installations
pl-gpo=,http://myplc.gpolab.bbn.com:12346/
pl-clemson=,http://myplc.clemson.edu:12346/
pl-stanford=,https://myplc.stanford.edu:12346/
pl-wisconsin=,https://wings-openflow-1.wail.wisc.edu:12346/
pl-washington=,https://of.cs.washington.edu:12346/
pl-rutgers=,https://plc.orbit-lab.org:12346/
pl-indiana=,https://myplc.grnoc.iu.edu:12346/
pl-gatech=,https://myplc.cip.gatech.edu:12346/
# OpenFlow AMs
of-gpo=,https://foam.gpolab.bbn.com:3626/foam/gapi/1
of-stanford=,https://openflow4.stanford.edu:3626/foam/gapi/1
of-clemson=,https://foam.clemson.edu:3626/foam/gapi/1
of-wisconsin=,https://foam.wail.wisc.edu:3626/foam/gapi/1
of-rutgers=,https://nox.orbit-lab.org:3626/foam/gapi/1
of-indiana=,https://foam.noc.iu.edu:3626/foam/gapi/1
of-gatech=,https://foam.oflow.cip.gatech.edu:3626/foam/gapi/1
of-nlr=,https://foam.nlr.net:3626/foam/gapi/1
of-i2=,https://foam.net.internet2.edu:3626/foam/gapi/1
#Exogeni AMs include OpenFlow ExoGENI AMs
eg-gpo=,https://bbn-hn.exogeni.net:11443/orca/xmlrpc
eg-renci=,https://rci-hn.exogeni.net:11443/orca/xmlrpc
eg-sm=,https://geni.renci.org:11443/orca/xmlrpc
eg-of-gpo=,https://bbn-hn.exogeni.net:3626/foam/gapi/1
eg-of-renci=,https://rci-hn.exogeni.net:3626/foam/gapi/1
#InstaGENI AMs, include OpenFlow InstaGENI AMs
ig-utah1=,http://utah.geniracks.net/protogeni/xmlrpc/am
ig-utah=,http://utah.geniracks.net/protogeni/xmlrpc/am/2.0
ig-of-utah=,https://foam.utah.geniracks.net:3626/foam/gapi/1
# ==================================
# Configure Control Frameworks here
# At least one framework section (sfa/pg/gcf) needs to be filled out
# and pointed to by default_cf
[my_sfa]
# Most of these fields can be found in an SFI configuration
# See: http://svn.planet-lab.org/wiki/SFAConfigurationGuide#ConfiguringSFITools
# The framework type (either sfa, pg, or gcf)
type=sfa
# HRN of your MyPLC or PLC (e.g., plc.princeton) site
# Available in the Issuer CN of your user cert in some form
authority=plc.bbn
# Your planetlab username
user=plc.bbn.jkarlin
# Your PL certificate (omni will offer to download it here if needed)
cert=~/.gcf/jkarlin.gid
# Your planetlab private key
key=~/.gcf/id_rsa_planetlab
# URLs of your PL registry and slice manager
# Be sure these are reachable
registry=http://www.planet-lab.org:12345
slicemgr=http://www.planet-lab.org:12347
[my_gcf]
type=gcf
# Authority part of the control frameworks URN
authority=geni:gpo:gcf
# Where the gcf-ch server is listening
ch=https://mycontroller:8000
cert=~/.gcf/alice-cert.pem
key=~/.gcf/alice-key.pem
[my_pg]
type=pg
# For debugging
verbose=false
# The address of the PG clearinghouse. Here we use tha main CH in Utah,
# with authority name: emulab.net
ch=https://www.emulab.net:443/protogeni/xmlrpc/ch
# The address of the PG slice authority. Here for comparison we show
# using a different slice authority for the PG authority
# pgeni.gpolab.bbn.com
sa=https://boss.pgeni.gpolab.bbn.com:443/protogeni/xmlrpc/sa
# When you log in to PG you can download your cert and key in 1 file.
# That combined .pem file can be used as both cert and key here.
cert=~/.gcf/encrypted.pem
key=~/.gcf/pgcert.pem
# ===================================
# Define users here.
# Per above, these are the users of the slices, to tell
# aggregates who care who will be logging in and how.
# See the CreateSliver API call.
[omniuser]
# The URN given to Alice by her control framework
# EG run openssl x509 -in [user cert file] -text and
# look at the Subject Alternative Name URI.
# Take the bit after "URI:" and before the comma.
urn=urn:publicid:IDN+geni:gpo:gcf+user+alice
# The SSH public keys to install for Alice to allow
# Alice to log in to the allocated resource.
# Comma delimited list of SSH public key file names.
# Note that these could be keys for a list of collaborators,
# all of whom will get to log in to the same account.
keys=~/.ssh/vmkey.pub