Commit Graph

85 Commits

Author SHA1 Message Date
Jakub Sokołowski cb69ed19f0
use infra-role-open-ports, open metrics for metrics.hq
https://github.com/status-im/infra-hq/issues/69

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-08-12 17:04:07 +02:00
Jakub Sokołowski 1edf2629a7
update use of dist-validators to supply user
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-07-16 15:08:10 +02:00
Jakub Sokołowski 992c8a43a4
rafactor to make use of infra-role-dist-validators
This way we can handle hosts with multiple nodes in different folders.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-06-28 16:23:21 +02:00
Jakub Sokołowski a14c9afe02
switch to using WireGuard VPN instead of Tinc
https://github.com/status-im/infra-hq/issues/58

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-19 22:16:07 +02:00
Jakub Sokołowski 37f8a3ab06
support multiple docker-compose*.yml files
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 11:54:40 +02:00
Jakub Sokołowski 3f6ef25470
add beacon_node_valid_network_names, move to tasks/checks.yml
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-05-11 10:39:20 +02:00
Jakub Sokołowski 75c58e72ba
add steklo as a valid network name
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-29 15:14:05 +02:00
Jakub Sokołowski 92f740e089
support multiple Web3 URLs with beacon_node_web3_urls
The first URL is the default, and the rest are fallbacks.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-04-19 19:23:36 +02:00
Jakub Sokołowski 0a57ff8b29
disable RPC healthcheck due to timeouts caused by one thread
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-24 11:26:31 +01:00
Jakub Sokołowski 96bd1688b4
set 10s timeout and 60s interval for rpc healthcheck
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-24 11:20:45 +01:00
Jakub Sokołowski d80c9c4b1c
use rpc.sh script to add an RPC node healthcheck
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-24 09:40:47 +01:00
Jakub Sokołowski 3cd399520c
add rpc.sh wrapper script for calling JSON RPC
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-24 09:26:28 +01:00
Arthur Koziel 20c12a644b
add prater as a valid network name
Signed-off-by: Arthur Koziel <arthur@arthurkoziel.com>
2021-03-17 12:25:03 +08:00
Jakub Sokołowski 691c1347fa
move docker compose file to tempaltes for nicer formatting
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-03-08 15:07:26 +01:00
Jakub Sokołowski 0d2b610c45
use docker_compose Ansible task instead of command
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-22 21:02:27 +01:00
Zahary Karadjov 1110eef44a Specify the --slashing-db-kind parameter 2021-02-22 15:17:21 +01:00
Jakub Sokołowski 4de9cb8357
re-enable metrics check and disable TCP check on libp2p port
Mostly likely the fact we dropped docker-proxy/userland-proxy from our
configuration has revealed the fact that currently Nimbus limits the
number of connections it accepts, and once that limit is reached it just
stops accepting new TCP connections.

For more details see:
https://github.com/status-im/infra-nimbus/issues/35#issuecomment-778503016

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-13 00:05:43 +01:00
Jakub Sokołowski ba913704d6
use consul_beacon_node.json for consul service file by defaul
This avoids issues with re-naming containers causing duplicate metrics.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-08 08:40:29 +01:00
Jakub Sokołowski ef9ba2889b
don't open metrics port on the firewall
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-02-01 13:43:44 +01:00
Jakub Sokołowski b4e3c32af0
add beacon_node_netkey to be able to deploy node private key
This is used by Nimbus Eth2 bootnodes.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2021-01-29 13:25:59 +01:00
Jakub Sokołowski 5eecc0ae6f
allow for customizing Consul service name
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-12-01 16:24:08 +01:00
Jakub Sokołowski e48761352b
mount secrets subfolder as read-only volume to protect them
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-30 17:35:31 +01:00
Jakub Sokołowski fbfb216910
update valid network names
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-25 15:58:27 +01:00
Jakub Sokołowski ea00ca1795
make container auto-updates optional
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-25 15:58:26 +01:00
Jakub Sokołowski 809326c802
recreate container if compose changed
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-20 16:39:19 +01:00
Jakub Sokołowski 598bb9a933
drop infura web3 url from repo
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-19 22:59:32 +01:00
Jakub Sokołowski 7301c02cee
add beacon_node_cont_entrypoint to control compose entrypoint
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-17 13:38:23 +01:00
kdeme 7556671433 Store and re-use network key data for nodes in our fleet 2020-11-17 12:26:04 +01:00
Jakub Sokołowski 746f040618
drop repo url and branch, add beacon_node_cont_tag
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-10 15:38:48 +01:00
Jakub Sokołowski 2faa953f4a
drop beacon_node_shared_testnet, use beacon_node_network
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-10 11:08:45 +01:00
Jakub Sokołowski d9b14cd3cb
re-enable node healthcheck
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-09 00:59:35 +01:00
Jakub Sokołowski 4dc6c9e97f
enable watchtower image updates
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-08 22:40:48 +01:00
Jakub Sokołowski 54fcaaa887
drop rebuild timer for every host
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-06 11:11:14 +01:00
Jakub Sokołowski 4560b10a0c
remove conditional for container creation
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-05 13:24:45 +01:00
Jakub Sokołowski 0b1d579b7d
use a DUMMY argument for Dockerfiel to reduce build time
Not a perfect solution, but should reduce build time to 20 minutes.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-05 12:47:55 +01:00
Jakub Sokołowski 06f261b548
add shebang to timer script, adjust format
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-03 18:48:43 +01:00
Jakub Sokołowski 970c326b9e
build images ofr nimbus-eth2 locally from a Dockerfile
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-11-03 14:58:09 +01:00
Ștefan Talpalaru df5a311ed6
cron: restart container once a day 2020-10-26 18:15:16 +01:00
Jakub Sokołowski 759e60db22
specify mode for data folder as 0750
Fixes errors about too broad folder permissions:
{
  "lvl": "FAT",
  "ts": "2020-10-15 09:00:33.189+00:00",
  "msg": "Data folder has insecure permissions",
  "tid": 1,
  "file": "keystore_management.nim:59",
  "data_dir": "build/data/shared_medalla_0",
  "insecure_permissions": "{OtherRead, OtherExec}",
  "current_permissions": "0755 (rwxr-xr-x)",
  "required_permissions": "0750 (rwxr-x---)"
}

Signed-off-by: Jakub Sokołowski <jakub@status.im>
2020-10-15 11:02:59 +02:00
Ștefan Talpalaru fbaa24de60
cron.yml: change container restart interval 2020-10-02 01:23:00 +02:00
Ștefan Talpalaru 233c03bcff docker-compose.yml: apply mem limits without Swarm
Turns out that the version 3 syntax only works with Docker Swarm
deployments, which we do not use, so go back to version 2 to get those
memory limits enforced.
2020-09-16 14:50:40 +02:00
Ștefan Talpalaru bd0bfbba14
cron: delete any hanging *-build-run image 2020-08-19 16:54:15 +02:00
Ștefan Talpalaru 5767de09c8
Medalla nodes (#6) 2020-08-04 12:44:32 +02:00
Ștefan Talpalaru 8237011e22
use the default (more aggressive) container restart policy 2020-07-10 19:11:15 +02:00
Ștefan Talpalaru afe9faf5af
put container restarts under the "cont_restart" flag
Had to gave up on `docker-compose up --no-start` because it still
stopped the running container image before pulling and creating a new
one.

Further more, we can now handle containers being restarted automatically
on our Altona servers.
2020-07-06 22:53:29 +02:00
Ștefan Talpalaru a415b4c187
docker-compose.yml: change command syntax 2020-06-28 22:13:30 +02:00
Ștefan Talpalaru 9ebad060dc
add cron job 2020-06-28 22:13:10 +02:00
Ștefan Talpalaru c46700f889
remove CPU limits 2020-06-27 02:57:34 +02:00
Ștefan Talpalaru 750964a91f
fix it again 2020-06-26 23:21:17 +02:00
Ștefan Talpalaru 26cad49f60
syntax and CLI fixes
There's some weirdness in the interaction between Jinja2 directives and
YAML syntax.

Also, `--detach` cannot be used with `--no-start` for docker-compose.
2020-06-26 22:57:50 +02:00