Jakub Sokołowski
1ffbb8d351
requirements: bump windows, increase check timeouts
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-24 20:46:31 +01:00
Jakub Sokołowski
85d4b054be
requirements: update --log-format flag, bootstrap
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-24 19:54:46 +01:00
Jakub Sokołowski
5d5857928d
pyrmont: expose REST API at insecura.nimbus.team
...
Inteded for tests of public insecure API access for Jacek.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-22 15:36:56 +01:00
Jakub Sokołowski
968f56f7ed
update SSH credentials
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-18 17:44:08 +01:00
Jakub Sokołowski
871ece2a3f
fix for renamed --log-stdout flag to --log-format
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-10 18:47:55 +01:00
Jakub Sokołowski
6c3384b8ba
ugprade Rocketpool to 1.0.0
...
https://github.com/status-im/infra-rocketpool/issues/2
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-08 13:35:37 +01:00
Jakub Sokołowski
f334b8917f
rocketpool: upgrade to v1.0.0-pre4
...
https://github.com/status-im/infra-role-rocketpool/issues/1
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-03 14:02:57 +01:00
Jakub Sokołowski
2fd016d36d
requirements: add support for --log-stdout flag
...
Necessary to keep logs in JSON format.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-11-03 10:14:16 +01:00
Jakub Sokołowski
a4877e9b28
upgrade ELK stack to 7.14.2
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-28 19:29:15 +02:00
Jakub Sokołowski
edfcf0b621
nimbus.eth1: update rocketpool setup to new layout
...
https://github.com/status-im/infra-rocketpool/issues/1
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-27 20:38:59 +02:00
Jakub Sokołowski
9fddf38791
geth: open mainnet ports for rocket.prod fleet
...
https://github.com/status-im/infra-rocketpool/issues/1
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-26 15:37:00 +02:00
Jakub Sokołowski
8e19a929d3
restart.yml: add playbook to restart all nodes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-26 13:21:18 +02:00
Jakub Sokołowski
db178fc217
rebuild.yml: add playbook to rebuild all nodes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-26 13:21:14 +02:00
Jakub Sokołowski
9887cdbfc9
requirements: udpate to use new rocketpool role name
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-26 13:08:29 +02:00
Jakub Sokołowski
6be2fc03e9
mainnet: add two libp2p nodes on 05 and 06 hosts
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-25 14:30:22 +02:00
Jakub Sokołowski
bcc297b796
prater: move libp2p nodes from AWS to Hetzner
...
It will lower costs of Prater fleet. I've discussed this with Tanguy and
he's fine with it. I'm also addin two nodes without validators.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-25 12:58:59 +02:00
Jakub Sokołowski
b5684f018e
drop prater 02 AWS nodes, rename stable one
...
The renaming of:
`stable-large-01.aws-eu-central-1a.nimbus.prater`
to
`testing-large-01.aws-eu-central-1a.nimbus.prater`
Was done because the host was a Prater bootstrap node and it could not
be lost. The node key and the ports remained unchanged.
https://github.com/status-im/infra-nimbus/issues/60
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-22 18:23:22 +02:00
Jakub Sokołowski
961756674c
nimbus.prater: move validators to new MacOS host
...
https://github.com/status-im/infra-nimbus/issues/60
https://github.com/status-im/infra-role-dist-validators/commit/f5e6c306
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-22 17:56:20 +02:00
Jakub Sokołowski
5f04e4b15a
nimbus.prater: lower max peers on macos to fix file limit
...
It's a temporary fix until we apply a proper solution which involves
calling `setrlimit()` at startup to raise the soft limit:
https://github.com/status-im/nimbus-eth2/issues/2984
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-22 14:07:38 +02:00
Jakub Sokołowski
c5a3c9fd91
terrafomr: change instance_type variable to just type
...
https://github.com/status-im/infra-tf-amazon-web-services/commit/36571309
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-20 12:45:32 +02:00
Jakub Sokołowski
556a495c68
prater: fix bootstrap node ports to be 9100
...
Since we published their addresses with ports being 9100:
https://github.com/eth2-clients/eth2-networks/commit/463d414c
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-19 15:48:34 +02:00
Jakub Sokołowski
1dfba96dec
nimbus.eth1: sync goerli instad of mainnet
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-14 13:05:29 +02:00
Jakub Sokołowski
f10eab7ed7
requirements: update to fix Hetzner data volumes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-13 20:27:57 +02:00
Jakub Sokołowski
7aa5d2d420
add all users to admin group on MacOS hosts
...
This fixes SSH access issue, since only admin group members can have
remote access to the host:
https://www.vinnie.work/blog/2020-12-26-why-so-hard-osx-ssh-access/
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-13 13:34:56 +02:00
Jakub Sokołowski
8c69a70ccd
requirements: deploy Netdata to MacOS host
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-12 17:33:23 +02:00
Jakub Sokołowski
5d828108b0
combine three bootstrap playbooks into one
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-12 17:16:22 +02:00
Jakub Sokołowski
6c67bcabdc
get-geth-web3-urls: support windows and deploy
...
Fixes sync issues described in:
https://github.com/status-im/infra-nimbus/issues/75
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-12 13:52:13 +02:00
Jakub Sokołowski
bd6ed56d74
deploy Consul and WireGuard to MacOS host
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-06 22:24:06 +02:00
Jakub Sokołowski
67c7eff430
nimbus.prater: deploy Consul agent on MacOS host
...
https://github.com/status-im/infra-role-bootstrap-macos/pull/1
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-06 13:57:33 +02:00
Jakub Sokołowski
454796a885
pin ports for mainnet bootstrap nodes
...
We have published their addresses with these ports
therefore they cannot be changed.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 21:37:04 +02:00
Jakub Sokołowski
3585f5615a
mainnet/prater: block libp2p ports for select nodes
...
As part of experiment in how nodes behave in restrictive networks.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 18:28:08 +02:00
Jakub Sokołowski
6ed5081087
nimbus.prater: move validators from 03 nodes to metal-02
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 15:46:13 +02:00
Jakub Sokołowski
6df0c868df
nimbus.prater: fix naming of libp2p services
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 14:51:49 +02:00
Jakub Sokołowski
89cbff6b52
switch back to original 3 branch layout of nodes
...
Since with release of `1.5.0` the `stable` branch has all the necessary changes:
https://github.com/status-im/nimbus-eth2/releases/tag/v1.5.0
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 12:43:51 +02:00
Jakub Sokołowski
61e573d40a
nimbus.mainnet: add 2GB swap file for all hosts
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 12:08:14 +02:00
Jakub Sokołowski
b78c5421b5
nimbus.prater: create testing.prater.beacon-api endpoint
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-05 10:38:12 +02:00
Jakub Sokołowski
8a91646bfe
nimbus.prater: deploy nodes to metal-02
...
Without validators for now.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 23:45:19 +02:00
Jakub Sokołowski
49a964ed29
add metal-02.he-eu-hel1.nimbus.prater
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 22:47:26 +02:00
Jakub Sokołowski
9a8fbd88f8
nimbus.pyrmont: refactor node layout configuration
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 22:36:29 +02:00
Jakub Sokołowski
7eb4c4749c
nimbus.prater: refactor node layout configuration
...
This is necessary to support multiple hosts with multiple nodes.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 21:59:25 +02:00
Jakub Sokołowski
018e1f3b78
enable beacon_node_rpc_enabled for all hosts
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 17:53:07 +02:00
Jakub Sokołowski
4a911d1ccc
add unstable.prater.beacon-api.nimbus.team endpoint
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 16:54:43 +02:00
Jakub Sokołowski
5f06c39644
nimbus.mainnet: add two public Beacon API endpoints
...
These nodes are intended for testing by Community.
https://ethereum.github.io/beacon-APIs/
https://github.com/status-im/infra-nimbus/issues/66
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 13:42:33 +02:00
Jakub Sokołowski
6c7e3384e5
nimbus.mainnet: deploy 6 nodes on new Hetzner hosts
...
https://github.com/status-im/infra-nimbus/issues/66
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 12:08:58 +02:00
Jakub Sokołowski
81bd269610
nimbus.mainnet: add new 6 hetzner hosts
...
https://github.com/status-im/infra-nimbus/issues/66
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-04 12:08:49 +02:00
Jakub Sokołowski
e7e457395a
nimbus.eth1: deploy eth1 node with infra-role-nimbus-eth1
...
https://github.com/status-im/infra-nimbus/issues/72
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-10-01 14:32:09 +02:00
Jakub Sokołowski
f59c8d8f43
macos: add bootstrap role, add hostname fix
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-30 17:21:23 +02:00
Jakub Sokołowski
c56a7cee04
nimbus.prater: switch to using systemd services
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-29 19:38:30 +02:00
Jakub Sokołowski
c8f539dd89
beacon-node-builds: drop building docker containers
...
All Linux hosts will be migrated to using systemd services.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-29 19:34:24 +02:00
Jakub Sokołowski
0c60f0ad09
beacon-node-builds: move some builds to testing-large-02
...
This should spread out disk space usage a bit more.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-29 11:26:47 +02:00
Jakub Sokołowski
c4e0f20fa1
beacon-node-builds: keep only 3 days worth of builds
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-29 11:21:15 +02:00
Jakub Sokołowski
879a15b91f
update requirements, change order of prater tasks
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-24 21:35:05 +02:00
Arthur Koziel
7f80f68804
add macos beacon nodes
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-09-24 12:29:28 +02:00
Jakub Sokołowski
e2eb049cbb
move deployment of beacon-node-builds to the bottom
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-22 16:40:51 +02:00
Zahary Karadjov
813c40adec
Switch back to the unstable branch on all nodes
2021-09-22 16:52:41 +03:00
Zahary Karadjov
597dbb2b79
Increase the number of peers on Pyrmont and Prater
2021-09-21 21:29:16 +03:00
Jakub Sokołowski
7f5fd21829
nimbus.mainnet: set branch to use to stable
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-21 18:37:59 +02:00
Jakub Sokołowski
0bfc961817
update requirements to include logging fixes
...
They make linux systemd service not send logs to Journald store.
Issue:
https://github.com/status-im/infra-role-bootstrap-linux/issues/24
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-21 17:59:47 +02:00
Zahary Karadjov
3a02974e3a
A/B testing for the taskpool implementation
...
The `stable` hosts will run with the taskpool code reverted, the
testing hosts will employ multiple cores.
2021-09-21 16:45:10 +03:00
Jakub Sokołowski
3673ff3577
bootstrap: add zahary to extra users
...
Instead of adding him via default users:
https://github.com/status-im/infra-role-bootstrap-linux/commit/d6a6c129
This fixes addition to Windows host as well.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-20 16:21:09 +02:00
Zahary Karadjov
e58d1f7abc
Reduce the number of peers on Prater and Pyrmont nodes
...
This is a test of the recently developed subnet walking functionality
2021-09-14 19:55:21 +03:00
Jakub Sokołowski
e8317de1a4
beacon-node-builds: add nim-libp2p-auto-bump builds
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-08 18:51:02 +02:00
Jakub Sokołowski
ca46d0fc54
fix restarting of systemd services
...
Only one `sudoers` file was being modified by multiple roles:
https://github.com/status-im/infra-role-beacon-node-linux/commit/ff400bfb
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-07 15:47:25 +02:00
Jakub Sokołowski
d7e0530d97
log-dash: fix ES LB access to log-store nodes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-02 13:15:08 +02:00
Jakub Sokołowski
437d9e034f
temproarily switch nodes to run unstable for Altair
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-09-02 08:14:34 +02:00
Zahary Karadjov
4be33a288d
Specify the correct web3_url for the Rocket Pool node on nimbus.eth1
2021-08-26 21:27:41 +03:00
Jakub Sokołowski
7064ed2f2d
drop nimbus.rayonism host, replaced by nimbus.eth1
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-26 20:21:00 +02:00
Jakub Sokołowski
28b69ccc69
fix bootstrap root password secret, bump roles
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-26 20:19:00 +02:00
Zahary Karadjov
15f7c9ea9b
Deploy RocketPool on the new nimbus.eth1 hetzner host
2021-08-26 19:49:38 +02:00
Zahary Karadjov
3e69657de8
Bump RocketPool to v1.0.0-RC7
2021-08-26 20:38:42 +03:00
Jakub Sokołowski
345ceb8050
add metal-01.he-eu-hel1.nimbus.eth1 host
...
https://github.com/status-im/infra-nimbus/issues/70
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-26 15:52:16 +02:00
Jakub Sokołowski
abe15b05db
geth: explicitly open RPC and WebSocket ports to VPN
...
Since geth role now defaults to using `localhost` for both.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-25 15:26:42 +02:00
Jakub Sokołowski
0a143764f0
geth-goerli: adjust VPN firewall comments
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-25 15:08:30 +02:00
Zahary Karadjov
7a2120c8cb
Explicitly enable the RPC service on Pyrmont and Prater hosts
2021-08-25 15:05:29 +02:00
Zahary Karadjov
8f01241bc8
Experimental deployment of RocketPool on the Rayonism host
2021-08-25 15:05:29 +02:00
Jakub Sokołowski
9f5bc6be6a
upgrade Geth to 1.10.8 to fix CVE-2021-39137
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-25 13:11:43 +02:00
Jakub Sokołowski
2a781d70e8
firewall: remove obsolete settings for open-ports
...
We now call `open-ports` role inside of `beacon-node` roles.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-23 16:51:26 +02:00
Jakub Sokołowski
e0d70f46f3
prater/pyrmont: add config for REST API port
...
https://github.com/status-im/infra-role-beacon-node-linux/pull/1
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-23 16:46:05 +02:00
Jakub Sokołowski
ecdaa70356
geth: open WebSocket port for Nimbus fleets
...
This worked before due to connections being already established.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-19 15:32:59 +02:00
Jakub Sokołowski
4f05e2f40d
beacon-node-builds: drop targets, move to prater host
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-18 12:43:51 +02:00
Jakub Sokołowski
e08baf3861
pyrmont: temporarily switch to running altair branch
...
Necessary for Eth2 2 hard-fork that is going to happen on Pyrmont.
Will revert back to the other branches once changes reach them.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-18 11:49:17 +02:00
Jakub Sokołowski
b785e3e862
firewall: open ElasticSearch port to log-aggr.hq
...
Fixes logs redirection from Logstash hosts to Nimbus ES cluster.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-13 22:31:39 +02:00
Jakub Sokołowski
a21ac2fe8c
port rest of fleet secrets to BitWarden
...
https://github.com/status-im/infra-docs/issues/9
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-13 22:25:19 +02:00
Jakub Sokołowski
5d36d3ad3e
firewall: use new IP sets and iptables chains
...
https://github.com/status-im/infra-hq/issues/69
https://github.com/status-im/infra-role-bootstrap-linux/commit/92d8923b
https://github.com/status-im/infra-role-wireguard/commit/8394639e
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-11 19:54:36 +02:00
Jakub Sokołowski
1ff378d392
update WireGuard config files layout
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-29 18:57:45 +02:00
Jakub Sokołowski
95261d2d10
ansible/cleanup: drop removing backups, remove nginx logs
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-29 18:57:42 +02:00
Jakub Sokołowski
6375725d87
deploy rpc.sh wrapper for windows beacon nodes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-29 09:32:12 +02:00
Jakub Sokołowski
4384f62e5f
rename infra-role-bootstrap-linux, upgrde consul
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-28 12:29:01 +02:00
Jakub Sokołowski
3e32ec1ba9
migrate bootstrap secrets to BitWarden
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-28 12:02:03 +02:00
Jakub Sokołowski
c3a8883662
upgrade Geth to 1.10.6 for the London hard-fork
...
https://github.com/ethereum/go-ethereum/releases/tag/v1.10.6
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-22 19:44:24 +02:00
Jakub Sokołowski
8943576ddf
remove 3 Prater hosts that donated validators to windows
...
https://github.com/status-im/infra-nimbus/issues/59
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-19 17:11:20 +02:00
Jakub Sokołowski
4a7ab275a5
move validators from 04 Pyrmont hosts to one windows host
...
https://github.com/status-im/infra-nimbus/issues/59
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-19 16:48:08 +02:00
Jakub Sokołowski
a3ae9a36ee
remove unused Pyrmont fleet host_vars files
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-19 16:44:31 +02:00
Jakub Sokołowski
c8c1b4faa8
pyrmont: fix duplicate dist-validators variable
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-19 16:44:04 +02:00
Jakub Sokołowski
7c1199f4c0
decomission old AWS Pyrmont hosts
...
https://github.com/status-im/infra-nimbus/issues/65
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-19 13:04:05 +02:00
Jakub Sokołowski
32baf5e4b7
migrate Pyrmont fleet to Hetzner metal hosts
...
https://github.com/status-im/infra-nimbus/issues/65
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-19 12:33:23 +02:00
Jakub Sokołowski
87d23f8fa1
deploy 3 beacon nodes on all Pyrmont metal hosts
...
https://github.com/status-im/infra-nimbus/issues/59
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-15 20:15:58 +02:00
Jakub Sokołowski
df96f214cd
add 4 metal Hetzner hosts for Pyrmont migration
...
https://github.com/status-im/infra-nimbus/issues/65
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-15 13:51:41 +02:00
Jakub Sokołowski
4fc3ac2689
beacon-node-builds: fix nightly tag clobbering issue
...
Using single_branch:true avoids cloning other tags/branches.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-14 16:19:52 +02:00
Jakub Sokołowski
eb1fea5716
upgrade deploy-eth2-prod image to v1.4.1
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-14 15:37:45 +02:00
Jakub Sokołowski
8f05a0191c
prater: add service user pass and facts path for windows
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-14 14:59:40 +02:00
Jakub Sokołowski
7d76f4b39e
drop all 05 prater nodes in favor of Hetzner host
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-30 22:50:29 +02:00
Jakub Sokołowski
b5f75078f3
move validators from prater 05 hosts to Hetzner host
...
https://github.com/status-im/infra-nimbus/issues/52
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-30 22:48:36 +02:00
Jakub Sokołowski
bdab0a2f8b
deploy prater nodes on hetzner node
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 21:30:00 +02:00
Jakub Sokołowski
a9dfaa12a3
give extra users admin rights on the windows hosts
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 18:02:45 +02:00
Jakub Sokołowski
f0f5f32e8a
drop group_vars files in favor of generating container tags
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 17:32:00 +02:00
Jakub Sokołowski
a99a6d0fc6
refactor to distribute validators via beacon-node role
...
This way we can deploy multiple nodes on the same host.
https://github.com/status-im/infra-nimbus/issues/52
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 16:43:27 +02:00
Jakub Sokołowski
5122d41a99
move distribute-validators role to a separate repo
...
https://github.com/status-im/infra-role-dist-validators
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 16:40:48 +02:00
Jakub Sokołowski
432623b74d
rename Hetzner host to just metal-01
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 16:39:45 +02:00
Jakub Sokołowski
054c5c2d26
ansible/requirements: update bootstrap and winsw
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 09:52:38 +02:00
Jakub Sokołowski
db456f7f5c
upgrade Terraform to 1.0, upgrade all providers
...
https://www.terraform.io/upgrade-guides/0-15.html
https://www.terraform.io/upgrade-guides/1-0.html
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-23 11:48:43 +02:00
cheatfate
3a3d52a156
Add cheatfate's SSH account.
2021-06-22 13:02:33 +02:00
Arthur Koziel
0a75a69a09
Deploy mainnet beacon nodes on hetzner server
...
This will run multiple mainnet beacon nodes on the hetzner server. It
will use the `infra-role-beacon-node-linux` to build and run `stable`,
`unstable` and `testing` on the machine.
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-22 12:29:01 +02:00
Jakub Sokołowski
31232a0b2c
beacon-node-builds: upgrade eth2 fleet to 1.4.0
...
https://github.com/status-im/nimbus-eth2/releases/tag/v1.4.0
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-22 11:53:20 +02:00
Jakub Sokołowski
3d522beb2f
windows: use non-core image with full GUI for debugging
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-21 19:36:11 +02:00
Jakub Sokołowski
13b27db54d
windows: configure running multiple beacon nodes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-16 15:41:50 +02:00
Jakub Sokołowski
ddc91ed233
beacon-node-builds: make build failures just a warning
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-16 10:50:52 +02:00
Jakub Sokołowski
23af824b2b
ansible/requirements.yml: add fix for consul handler errors
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-14 17:20:50 +02:00
Jakub Sokołowski
f24c714b49
beacon-node-builds: fix apt-get stdout redirection
...
The & character breaks the command in /bin/sh shell.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-14 16:09:46 +02:00
Jakub Sokołowski
133a30c1b6
deploy 4GB SWAP files to build hosts
...
We've been seeing build failures due to OOM killer.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-14 10:17:33 +02:00
Jakub Sokołowski
fcb8db90fd
add missing password for nimbus windows user
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-11 16:52:26 +02:00
Jakub Sokołowski
f4a20bc128
fix password format used for root
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-11 11:18:10 +02:00
Tanguy Cizain
cae0195d03
add tanguy's key
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-11 11:15:35 +02:00
Jakub Sokołowski
8468615f7d
deploy one Nimbus Prater node on Windows host
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-10 18:09:05 +02:00
Jakub Sokołowski
809c4ce355
ansible/inventory/test: add windows-01 host
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-09 23:04:13 +02:00
Jakub Sokołowski
b5cbe7fa4d
provision windows-01.gc-us-central1-a.nimbus.prater
...
https://github.com/status-im/infra-nimbus/issues/59
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-02 14:37:32 +02:00
Jakub Sokołowski
39f9b71dff
beacon-node-builds: add vim: ft=sh for buils.sh
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-01 21:26:42 +02:00
Jakub Sokołowski
38745d0495
ansible/requirements: bump bootstrap so watchtower fixes containers
...
We've added flags so that containers are fixed even when stuck in `Restarting...`:
https://github.com/status-im/infra-role-bootstrap/commit/c9bdc2ba
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-26 11:50:02 +02:00
Jakub Sokołowski
47f500e1ad
beacon-node-builds: refactor to rebuild after failures
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-21 00:38:03 +02:00
Jakub Sokołowski
ee9f8a74b7
bump beacon-node role and others to use WireGuard
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-19 23:03:14 +02:00
Jakub Sokołowski
fd9c93a5f7
deploy-eth2-prod: bump to v1.3.0
...
https://github.com/status-im/nimbus-eth2/releases/tag/v1.3.0
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-19 18:33:19 +02:00
Jakub Sokołowski
e3171c98a9
use WireGuard instead of Tinc VPN for metrics
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-19 14:12:47 +02:00
Arthur Koziel
fb2ab82f6d
Add hetzner dedicated server ( #56 )
...
add stable-metal-01.he-eu-hel1.nimbus.mainnet
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-05-19 18:04:12 +08:00
Arthur Koziel
04648b6465
Scan all DC's for Geth nodes ( #57 )
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-05-19 17:54:46 +08:00
Jakub Sokołowski
2047fe1702
ansible/requirements: bump origin-certs role
...
https://github.com/status-im/infra-role-origin-certs/commit/586d81d6
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-13 10:53:51 +02:00
Jakub Sokołowski
0a38a4642d
rayonism: increase Geth node verbosity to detail
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-12 14:35:16 +02:00
Jakub Sokołowski
9bf2e03137
move secrets from service to services
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 15:37:45 +02:00
Jakub Sokołowski
87695af8bc
rayonism: disable discovery and add --networkid=5
...
No idea why.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 12:23:41 +02:00
Jakub Sokołowski
6c0b62a6a8
rayonism: adjust location of rpc.sh wrapper
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 12:23:28 +02:00
Jakub Sokołowski
f933dd0df8
rayonism: put Geth config in the same folder as Beacon node
...
This way we create both as part of the same Docker network.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 11:59:34 +02:00
Jakub Sokołowski
23dc761b41
rayonism: use WebSocket instead of HTTp for RPC
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 11:33:31 +02:00
Jakub Sokołowski
e20bbb1c48
rayonism: replace steklo testnet with nocturne
...
Changes done according to:
https://github.com/status-im/infra-nimbus/issues/54
For more details see:
https://github.com/protolambda/nocturne
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 10:42:11 +02:00
Jakub Sokołowski
c6c7159e94
distribute-validators: create container folder if missing
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 10:41:52 +02:00
Jakub Sokołowski
d7930a8437
ansible/requirements: bump bootstrap and elasticsearch roles
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 10:31:33 +02:00
Jakub Sokołowski
657e8a098f
ansible: add meta requirements target, add check to bootstrap
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-10 15:29:38 +02:00
Jakub Sokołowski
e50e7f7764
drop legacy beacon_node_web3_url variable
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-06 15:40:38 +02:00
Jakub Sokołowski
1283cec6ee
ansible/requirements: update oauth-proxy rol
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-06 11:17:56 +02:00
Jakub Sokołowski
02b70ee6f0
rayonism: un-comment validators layout
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-30 14:16:49 +02:00
Jakub Sokołowski
6d832ae5c3
rayonism: set debug log level for geth node
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-30 11:33:53 +02:00
Jakub Sokołowski
518726e5f6
rayonism: use http:// instead of ws:// for web3 url
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-30 11:29:31 +02:00
Jakub Sokołowski
1b54f4e1ca
rayonism: update image, enable consensus API module
...
https://github.com/status-im/infra-nimbus/issues/53
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 19:29:14 +02:00
Jakub Sokołowski
97db7ea804
rayonism: deploy beacon node for steklo testnet
...
https://github.com/status-im/infra-nimbus/issues/53
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 15:14:25 +02:00
Jakub Sokołowski
6b8245ad63
rayonism: add build configuration for quick-merge-v1 branch
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 14:42:54 +02:00
Jakub Sokołowski
1ce2b2c7fb
rayonism: deploy Geth node for steklo testnet
...
https://github.com/status-im/infra-nimbus/issues/53
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 14:35:06 +02:00
Jakub Sokołowski
ba8644873b
deploy qmerge-large-01.aws-eu-central-1a.nimbus.rayonism
...
For more details see:
https://github.com/status-im/infra-nimbus/issues/53
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 13:53:43 +02:00
Jakub Sokołowski
04f9fe30ca
add stable-hetzner-01.he-hel1.nimbus.prater to inventory
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 12:14:38 +02:00
Jakub Sokołowski
3147311722
bump deploy-eth2-prod build to 1.2.1
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-20 20:13:41 +02:00
Jakub Sokołowski
65d8302527
implement Eth1 Web3 URL fallbacks
...
Related:
https://github.com/status-im/infra-role-beacon-node/commit/92f740e0
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-19 20:27:52 +02:00
Jakub Sokołowski
762f4e3457
requirements: bump bootstrap role version
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-14 16:18:03 +02:00
Zahary Karadjov
8e26b95157
Use the default slashing DB kind
2021-04-14 15:37:05 +02:00
Arthur Koziel
65dca92c13
update ansible for libp2p-stable/unstable
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-04-13 16:17:13 +08:00
Jakub Sokołowski
45241a5a15
beacon-node-builds: drop use of -d:insecure
...
No longer necessary due to new secure HTTP backend:
https://github.com/status-im/nimbus-eth2/releases/tag/v1.1.0
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-13 08:07:49 +02:00
Jakub Sokołowski
757b097c81
add versioncheck.py script to verify Ansible role versions
...
Since Ansible or Ansible Galaxy doesn't actually check role versions
itself, we have to do it ourselves. This script goes through contents of
`ansible/requirements.txt` and verifies each role is installed and has
correct version.
It also checks the version of Ansible itself.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-13 08:07:26 +02:00
Jakub Sokołowski
3c0fe9e8fb
beacon-node-builds: fix systemd timer service group not existing
...
Fixes:
Failed to determine group credentials: No such process
Failed at step GROUP spawning /data/beacon-node-builds/unstable-small/build.sh: No such process
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-07 09:23:50 +02:00
Arthur Koziel
d9c21f7d5b
add terraform module for libp2p-unstable
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-04-02 15:00:02 +08:00
Arthur Koziel
6d9fcf4a20
rename prater-libp2p to prater-unstable-libp2p-stable
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-04-02 11:42:10 +08:00
Arthur Koziel
91c03ecb80
rename build for libp2p-stable, add libp2p-unstable build
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-04-01 18:48:48 +08:00
Arthur Koziel
0e7fd54d09
rename host libp2p-large to u-libp2p-s-large
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-04-01 18:46:32 +08:00
Arthur Koziel
fe3ed92b98
fix ws url for goerli
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-04-01 18:28:53 +08:00
Jakub Sokołowski
dd6bcc515d
geth-goerli: increase container memory limit to 80%
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-30 18:52:39 +02:00
Jakub Sokołowski
dbce2ffc5d
deploiy new Docker Compose setup for Geth nodes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-29 13:42:06 +02:00
Jakub Sokołowski
6afc2bfa97
ansible/cleanup.yml: add cleanup of docker images
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-25 21:45:06 +01:00
Zahary Karadjov
b03dbdb5c6
Increase the --max-peers count on all fleet nodes
...
This setting is recommended due to the high-number of validators
attached to each node which requires maintaining healthy peer
counts on a larger number of gossip topics. For now, we don't
bother specifying a lower value on the servers running a lower
number of validators in order to simplify the implementation.
2021-03-23 17:53:58 +08:00
Arthur Koziel
2088c0c92b
set beacon_node_subscribe_all and beacon_node_netkey for prater bootnodes
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-03-23 17:44:55 +08:00
Arthur Koziel
48e2766741
build libp2p-large docker image on pyrmont testing-large-01
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-03-23 13:50:24 +08:00
Jakub Sokołowski
ff48a961b5
update inventory with prater hosts
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-22 15:38:54 +01:00
Jakub Sokołowski
db5ec2f497
bootstrap: provide Consul encryption key from infra-pass
...
Related: https://github.com/status-im/infra-role-bootstrap/commit/0d40f81d
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-22 11:12:49 +01:00
Arthur Koziel
662e456d06
add config for prater testnet
...
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-03-19 16:18:16 +08:00
Jakub Sokołowski
c07aca5aa3
beacon-node-builds: upgrade eth2 to v1.0.10
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-11 17:28:17 +01:00
Jakub Sokołowski
a0b0fa87d3
enable --subscribe-all-subnets for Mainnet bootnodes
...
https://github.com/status-im/infra-nimbus/issues/38
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-08 15:10:16 +01:00
Jakub Sokołowski
d88c8b44fc
beacon-node-builds: relax the sudoers regex for systemctl
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-03 08:46:37 +01:00
Jakub Sokołowski
9153bb02f1
logclean-job: fix bug in script that deletes newer first
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-27 15:37:49 +01:00
Jakub Sokołowski
b1ad100a50
logclean-job: increase timer timeout to 5 minutes
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-27 15:26:53 +01:00
Jakub Sokołowski
d31094d85c
logclean-job: reduce kept ES indices to 20
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-27 15:24:34 +01:00
Jakub Sokołowski
aee3b5eff5
beacon-node-builds: allow for repo updates for select builds
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 21:37:38 +01:00
Jakub Sokołowski
f931c3cde1
upgrade eth2 image to 1.0.8
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 17:55:20 +01:00
Jakub Sokołowski
dd70e0652d
beacon-node-builds: add commit to labels
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 16:05:56 +01:00
Jakub Sokołowski
a269c3e490
distribute-validators: add --delete for rsyncing secrets
...
Also drop some debug messages, comment out ignore_errors.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 15:49:05 +01:00
Jakub Sokołowski
73bde9a51a
add any_errors_fatal:true to avoid duplicate validators
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 15:48:51 +01:00
Zahary Karadjov
4668266eb6
Specify the double-checking slashing DB mode on all large servers
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 15:16:47 +01:00
Zahary Karadjov
f887391f04
More varied validator assignments
2021-02-22 15:14:16 +01:00
Jakub Sokołowski
8dfe06a9bd
change testing branch build to 6am
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 15:09:28 +01:00
Jakub Sokołowski
a40c0ab49c
geth-goerli: increase cache size from default 1GB to 2GB
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-12 23:06:04 +01:00
Jakub Sokołowski
bb1e3ff3ba
bump size of Goerli Geth node to t3a.large
...
It keeps hitting memory limits and failing to sync.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-12 22:58:42 +01:00
Jakub Sokołowski
a5a950bb91
set become=false in ansible.cfg, set it to true in playbooks
...
See: https://github.com/status-im/nimbus-private/pull/9
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-09 20:27:13 +01:00
Jakub Sokołowski
0e82fa7c03
beacon-node-builds: don't update git branch when deploying
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-09 18:35:32 +01:00
Jakub Sokołowski
4cdd5f01ce
increase Goerli container memory limit to 80%
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-09 18:32:11 +01:00
Jakub Sokołowski
d8b643fd74
add SSH users to systemd-journal group
...
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-08 12:36:14 +01:00
Jakub Sokołowski
f96fe517e7
beacon-node-builds: allow staff group membets to start builds
...
I was thinking of defining the jobs as nimbus user systemd units, but
that would not work unless nimbus user logged in at least once.
And Systemd services have no functionality for allowing non-root users
to start/stop/restart system services, so sudo is the simplest way.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-08 12:36:02 +01:00
Jakub Sokołowski
8e0966fb0e
beacon-node-builds: don't fetch if we're on a detached head
...
Causes failures when a tag is checked out, nothing to fetch.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-04 23:48:26 +01:00