This document outlines the hardware and software requirements for deploying the SESTEK Voice Biometrics (VB) solution. Please ensure all the specifications are met to avoid performance issues.
Acronyms and Abbreviations
DB: Database
NFS: Network File System
VB: Voice Biometrics
VM: Virtual Machine
Important Notes
- The requirements outlined are optimized for deployment on Openshift and Kubernetes platforms.
- Hardware specifications, such as CPU and memory, are based on default system configurations. These may vary depending on the topology, enabled features, and concurrent service loads.
- It is critical to provision the exact hardware specified, as resource scaling after deployment may not be possible, potentially leading to performance issues.
- Resources dedicated to SESTEK Biometrics must be allocated exclusively for its services.
- If deployed on VMs, ensure the host physical servers provide at least the same number of logical cores as the VM cores.
- The license server must run on Windows Server 2016 or newer.
- A minimum network connection speed of 100Mb/s is required for optimal performance.
Database and Storage Notes
- The main database should be named VoiceBiometrics, and the logging database should be named VoiceBiometricsLogs.
- PostgreSQL versions 12, 13, and 14 are supported. If using MSSQL, it must be MS Server 2016 or later.
- A dedicated MS SQL Server database user must be created and granted db_owner privileges on the target database. Please note that SESTEK products do not support Windows Authentication for MS SQL Server.
- For English language deployments, use the collation SQL_Latin1_General_CP1_CI_AS. For Turkish or Arabic implementations, use Turkish_CI_AS.
- Database maintenance, including backups and replication, should be managed by the customer's database team.
- Access permissions should allow full access to the databases for the SESTEK Biometrics service.
- Supported storage options include MinIO, Amazon S3, and NFS-mountable physical storage systems compatible with Kubernetes clusters.
Additional Considerations
- Ensure SESTEK Biometrics services are hosted on dedicated VMs to avoid conflicts or performance degradation.
- Replication and redundancy strategies should be discussed based on the specific deployment environment.
- For any deployment requiring custom configurations, please consult with SESTEK before implementation to ensure compatibility.
Communication Matrix
| Source Cluster/Network | Source Service Name | Target Cluster/Network | Target Service Name | Port |
|---|---|---|---|---|
| Internet | Clients | SESTEK VB Cluster | Votg Notification Service | 443 (TCP) |
| Internet | Clients | SESTEK VB Cluster | VB Web Server | 443 (TCP) |
| Internet | Clients | SESTEK VB Cluster | Votg Notification Service | 443 (TCP) |
| SESTEK Core Cluster | DataFlow Service | SESTEK VB Cluster | VB API Service | 443 (TCP) |
| SESTEK Core Cluster | DataFlow Service | SESTEK VB Cluster | SESTEK VB Identity | 443 (TCP) |
| FalconStreamer | FalconStreamer | SESTEK VB Cluster | Votg Adapter Service | 443 (TCP) |
| FalconStreamer | FalconStreamer | SESTEK VB Cluster | SESTEK VB Identity | 443 (TCP) |
| Genesys Cloud | Genesys Cloud | SESTEK VB Cluster | Votg Adapter Service | 443 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | SESTEK VB Identity | 80 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | VB Worker | 80 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | VB Fraud | 80 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK Core Cluster | SR Service | 443 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK Core Cluster | DataFlow Service | 443 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK License Server | SESTEK License Service | 30113 (TCP) |
| SESTEK VB Cluster | VB API Service | LDM Cloud | LDM Service | 443 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | MinIO | 9000 (TCP) |
| SESTEK VB Cluster | VB API Service | Object Storage | S3 compatible object storage | 443 (TCP) |
| SESTEK VB Cluster | VB Management API | SESTEK VB Cluster | SESTEK VB Identity | 80 (TCP) |
| SESTEK VB Cluster | Votg Adapter Service | SESTEK VB Cluster | SESTEK VB Identity | 80 (TCP) |
| SESTEK VB Cluster | Votg Notification Service | SESTEK VB Cluster | SESTEK VB Identity | 80 (TCP) |
| SESTEK VB Cluster | VB API Service | Database Cluster | Database | 5432 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | RabbitMQ | 5672 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | VB API Service | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
| SESTEK VB Cluster | VB Worker | SESTEK VB Cluster | RabbitMQ | 5672 (TCP) |
| SESTEK VB Cluster | VB Worker | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | VB Worker | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
| SESTEK VB Cluster | VB Fraud | SESTEK VB Cluster | RabbitMQ | 5672 (TCP) |
| SESTEK VB Cluster | VB Fraud | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | VB Fraud | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
| SESTEK VB Cluster | Votg Notification Service | Database Cluster | Database | 5432 (TCP) |
| SESTEK VB Cluster | Votg Notification Service | SESTEK VB Cluster | RabbitMQ | 5672 (TCP) |
| SESTEK VB Cluster | Votg Notification Service | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | Votg Notification Service | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
| SESTEK VB Cluster | Votg Adapter Service | Database Cluster | Database | 5432 (TCP) |
| SESTEK VB Cluster | Votg Adapter Service | SESTEK VB Cluster | RabbitMQ | 5672 (TCP) |
| SESTEK VB Cluster | Votg Adapter Service | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | Votg Adapter Service | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
| SESTEK VB Cluster | Votg Adapter Service | SESTEK VB Cluster | VB API Service | 80 (TCP) |
| SESTEK VB Cluster | VB Management API | Database Cluster | Database | 5432 (TCP) |
| SESTEK VB Cluster | VB Management API | SESTEK VB Cluster | RabbitMQ | 5672 (TCP) |
| SESTEK VB Cluster | VB Management API | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | VB Management API | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
| SESTEK VB Cluster | VB Management API | SESTEK VB Cluster | VB API Service | 80 (TCP) |
| SESTEK VB Cluster | SESTEK VB Identity | Database Cluster | Database | 5432 (TCP) |
| SESTEK VB Cluster | SESTEK VB Identity | SESTEK VB Cluster | Redis | 6379 (TCP) |
| SESTEK VB Cluster | SESTEK VB Identity | SESTEK VB Cluster | Elasticsearch | 9200 (TCP) |
Terms Glossary
| Term | Definition |
|---|---|
| Node | A physical or virtual machine that runs the services required for the SESTEK Biometrics solution. |
| Pod | A small, scalable unit of deployment in Kubernetes that contains one or more containers. |
| VM | A virtual machine that can host SESTEK Biometrics services when the system is not running directly on physical hardware. |
| Cluster | A set of nodes or VMs configured to work together to provide scalability and redundancy. |
| vCPU | Virtual CPU assigned to the VM or container running SESTEK Biometrics services. |
| vCPU Request | The minimum CPU capacity allocated to the service within a container to ensure a smooth operation. |
| vCPU Limit | The maximum CPU capacity that a container can use. It ensures that the service does not overconsume resources, impacting other services on the node. |