status-im
/
infra-nimbus
mirror of https://github.com/status-im/infra-nimbus.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,156 Commits 11 Branches 0 Tags 30 MiB
Commit Graph

551 Commits

Author SHA1 Message Date
Siddarth Kumar 87df0834d8
vault: migrate consul and host secrets 2024-11-04 13:15:14 +05:30
Siddarth Kumar 5019c50a78
eth1: deploy EL, BN for becnhmarking 2024-10-28 13:41:36 +05:30
Anton Iakimov e6518f0a02
mainnet: change layout 
TODO:
- https://github.com/status-im/infra-nimbus/issues/211
- https://github.com/status-im/infra-nimbus/issues/212
 2024-10-23 16:27:30 +02:00
Jakub Sokołowski e755ec67ae
all: replace old naming of hq.metrics fleet 
https://github.com/status-im/infra-hq/issues/158

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-10-18 10:18:39 +02:00
markoburcul c07788fa76 eth1: migrate to nftables 
Referenced issue: https://github.com/status-im/infra-misc/issues/301

Signed-off-by: markoburcul <marko@status.im>
 2024-10-10 18:00:30 +02:00
markoburcul daa4469823 fluffy: migrate to nftables 
Referenced issue: https://github.com/status-im/infra-misc/issues/301

Signed-off-by: markoburcul <marko@status.im>
 2024-10-10 17:57:44 +02:00
Vedran Mendelski 27b10bd710 geth: switch to nftables 2024-10-10 17:21:08 +02:00
Vedran Mendelski b4414336ab holesky: switch to nftables 2024-10-09 10:51:45 +02:00
markoburcul 5dfd60e614 dash-nimbus: Migrate to nftables 
Referenced issue: https://github.com/status-im/infra-misc/issues/301

Signed-off-by: markoburcul <marko@status.im>
 2024-10-08 09:41:37 +02:00
markoburcul e0b5b78720 logs: Migrate to nftables 
Referenced issue: https://github.com/status-im/infra-misc/issues/301

Signed-off-by: markoburcul <marko@status.im>
 2024-10-08 09:41:17 +02:00
Jakub Sokołowski e52fb7a928
mainnet: fix formatting of firewall rules 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-09-25 21:29:09 +02:00
Jakub Sokołowski dd218622e3
logs.nimbus: specify json.msg as default query field 
This avoids errors like this:
```
failed to create query: field expansion matches too many fields, limit: 1024, got: 1046
```
Which is caused by default being a wildcard, that causes querying of
available fields, which in case of Nimbus logs is more than 1024.

This could be fixed by increasing `max_clasue_count`, but a cleaner
solution is simply limiting queries without a field specified to `json.msg`.

https://www.elastic.co/guide/en/elasticsearch/reference/7.17/index-modules.html#dynamic-index-settings
https://www.elastic.co/guide/en/kibana/7.17/upgrade-assistant-api-default-field.html

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-09-25 14:33:00 +02:00
Vedran Mendelski 8c61563acc mainnet: switch to nftables 2024-09-25 14:12:48 +02:00
Jakub Sokołowski d44e790c0e
redirect-ports: migrate to using NFTables 
https://github.com/status-im/infra-misc/issues/301

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-09-18 17:59:20 +02:00
Jakub Sokołowski 7f3f50d381
nimbus.sepolia: fix formatting of open ports rules 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-09-18 16:50:43 +02:00
Siddarth Kumar c2227a8d07
sepolia: switch from iptables to nftables 2024-09-18 19:36:00 +05:30
Alexis Pentori d50928f7f0
sepolia: allow unprotected txs on geth for waku RLN 
Signed-off-by: Alexis Pentori <alexis@status.im>
 2024-09-17 17:42:55 +02:00
markoburcul c38dc75f7f
ansible: Change hostname to inventory_hostname 
Due to the change caused by updated terraform script, we need to change
usage of variable `hostname` to `inventory_hostname`.

Signed-off-by: markoburcul <marko@status.im>
 2024-09-16 08:10:36 +02:00
Anton Iakimov c49ba92c83
mainnet: removed unused variable 2024-08-26 15:04:28 +02:00
Anton Iakimov 58bc405b84
holesky: switch geth-07 to mev-boost builder with titan relay 
Needed for mev-commit network, see:
See: https://github.com/status-im/infra-nimbus/issues/188
 2024-08-26 12:42:38 +02:00
markoburcul 38ff3c35c2 kibana: Moved from Github to Keycloak auth 
Allowed access to Kibana dashboard to anyone with an account in Keycloak realm `logos-co`.
Updated values in Bitwarden for client id and secret.

Referenced issue: https://github.com/status-im/infra-misc/issues/285

Signed-off-by: markoburcul <marko@status.im>
 2024-08-21 08:05:51 +00:00
Siddarth Kumar 0c26a3a8f1 sepolia: add geth exporter 2024-07-30 20:58:06 +05:30
Jakub Sokołowski b55f23af5a
holesky: drop override of nim_commit to version-2-0 
It caused sync issues on all nodes with it enabled:
https://github.com/status-im/nimbus-eth2/issues/6433

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-07-18 16:15:44 +02:00
Jakub Sokołowski d677afcd40
nimbus.fluffy: fix off by one error in port increments 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-07-05 10:30:22 +02:00
Jakub Sokołowski d2d277a0f1
fluffy: make all nodes use the same port 9100 
Will make it easier to debug them:
https://github.com/status-im/infra-nimbus/issues/186

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-07-04 16:50:06 +02:00
Jakub Sokołowski 567e95314b
fluffy: use separate IPv4 addresses for each node 
https://github.com/status-im/infra-nimbus/issues/186

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-07-04 16:49:30 +02:00
Jakub Sokołowski 17d767c59d
fluffy: deploy portal-bridge instance 
And use `linux-02` from `nimbus.mainnet` for EL.

https://github.com/status-im/infra-nimbus/issues/182

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-28 13:56:39 +02:00
Jakub Sokołowski 8f62939e54
mainnet,sepolia,holesky: open Nginx ports for ERA files 
It appears the rules were lost at some point:
https://github.com/status-im/infra-nimbus/issues/187

And yes, not all hosts need this port open, but will in the future and
there's currently no harm in it, it's just dev fleets.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-20 16:17:43 +02:00
Jakub Sokołowski ee4db9e740
mainnet: build ncli_db for ERA files generation 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-18 12:26:39 +02:00
Jakub Sokołowski 44d0271816
holesky: use public_api flag to determin remapped port 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-18 12:03:08 +02:00
Jakub Sokołowski 9fa3af9a37
mainnet,sepolia,holesky: disable checks on public API nodes 
Flakiness of REST API when abused by exposure to the internet makes
these healthchecks useless. They essentially produce noise.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-14 19:46:54 +02:00
Jakub Sokołowski f8c12213f8
holesky: lower sensitivity for public API endpoints 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-13 10:49:50 +02:00
Jakub Sokołowski 06a2d56d5f
nimbus.holesy: recover healthchecks after one hour 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-13 08:52:48 +02:00
Jakub Sokołowski 0ac7766cb1
mainnet,sepolia,holesky: fix format of extra_flags 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-12 01:17:43 +02:00
Jakub Sokołowski 3d961e404d
all: drop obsolete nim build flags 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-11 17:42:13 +02:00
Jakub Sokołowski b551423ea1
sepolia: drop firewall rules for wakuv2.test fleet 
It no longer exists.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-11 08:57:52 +02:00
Jakub Sokołowski 82b65e6918
miannet,sepolia,holesky: run update jobs every 2 hours 
Otherwise we get a massive CPU load spike that makes nodes unavailable.

Also fix nim flags variable names.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-11 08:37:36 +02:00
Jakub Sokołowski 04399f4e60
sepolia: fix ERA file generation by building ncli_db 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-28 10:28:29 +02:00
Jakub Sokołowski 0f9ca492ee
holesky: add hosting of holesky.era.nimbus.team 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-22 20:34:46 +02:00
kdeme 85fad5e860
fluffy: change network to mainnet, renamed from testnet0 
Can also get rid of nimbus_fluffy_network_nice_name now in the process.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-22 17:28:02 +02:00
Jakub Sokołowski e1b9f8d867
mainnet: remove unnecessary commented line 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-22 17:27:19 +02:00
Alexis Pentori 29c93910b3
nimbus-eth1: switching tesnet to holesky 
Signed-off-by: Alexis Pentori <alexis@status.im>
 2024-05-22 16:47:46 +02:00
Anton Iakimov ee741f17e4
nimbus.mainnet: simplify success_before_passing logic 2024-05-22 16:10:38 +02:00
Anton Iakimov e4b080274b
mainnet: set public testing endpoint check to recover faster 2024-05-20 16:39:22 +02:00
Jakub Sokołowski be2528f250
nimbus.sepolia: dynamic public API port 
Also fix distribution of validators.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-09 16:50:28 +02:00
Jakub Sokołowski 290335c75b
all: remove SSH access from Zahary 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-06 11:00:28 +02:00
Jakub Sokołowski 56933830f9
all: remove SSH access for ujscale 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-06 10:40:01 +02:00
Jakub Sokołowski 60dd11a88e
holesky,mainnet,sepolia: lower consul sensitivity 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-04-24 08:25:36 +02:00
Jakub Sokołowski d1d762a686
nimbus.fluffy: lower sensitivity for consul checks 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-04-23 12:49:37 +02:00
Jakub Sokołowski 29e7870a8b
nimbus.prater: decomission last two remaining hosts 
The testnet is dead, and keeping it around is not necessary.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-04-19 10:13:23 +02:00