Quick links:
- Chiado testnet
This repository is a minimal set of playbooks and inventories required to set up the merge devnets consisting of execution and consensus nodes.
- General folder structure: All testnet relevant configs are under the testnet names. Generic config variables are set under
<name>-testnet/inventory/group_vars/all.yaml. Client specific variables are set under e.g<name>-testnet/inventory/group_vars/eth2client_xxxxxx.yaml. The client specific variables also contains the commands used to start the docker image with. - All the config files,
genesis.sszand other variables needed for the testnet are placed under<name>-testnet/custom_config_data.
- Clone this repository
- Ensure
dockeranddocker-composeis installed:docker-compose --versionanddocker --version - Change directories with
cd consensus-deployment-ansible/scripts/quick-run/<testnet-type> - Create the required directories for persistent data with
mkdir -p execution_data beacon_data - Find your IP address(public IP) and add it to the
<testnet-name>.varsfile file located inconsensus-deployment-ansible/scripts/quick-run/, this is just to ensure easy peering
5.1curl ifconfig.meor visit https://whatismyipaddress.com
5.2 Replace IP in config file with your own IP address: https://i.imgur.com/xnNqN6h.png - Run your chosen execution engine, e.g:
docker-compose --env-file <testnet-name>.vars -f docker-compose.geth.yml up -d - Run your chosen consensus engine, e.g:
docker-compose --env-file <testnet-name>.vars -f docker-compose.lighthouse.yml up -d - Check your logs to confirm that they are up and syncing, e.g
docker logs lighthouse_beacon -f --tail=20 - To stop the clients, run
docker-compose -f <insert file name you used earlier here> down
- Clone this repository
- Ensure
ansibleis installed - Make changes in the required variable, e.g: Change the
pithos-testnet/inventory/group_vars/eth1client_ethereumjs.yamlwith the new docker image or theexecution_start_argsfor commands to run the container with - The
update_execution_beacon_and_validator.ymlwill stop the execution, beacon and validator containers and restart them with the new configurations specified as variables. Please use thelimit=eth1/2_xxxxflag to limit the playbook execution to just update the nodes you have access to (otherwise it won't change the config on the others, but will show a lot of errors). Run this playbook with:ansible-playbook -i pithos-testnet/inventory/inventory.ini playbooks/update_execution_beacon_and_validator.yml --limit=eth1client_ethereumjs - If you just want to update an execution node without touching the other docker containers use the
tasks, e.g to restart execution node with the new parameters use,
ansible-playbook -i pithos-testnet/inventory/inventory.ini playbooks/tasks/stop_execution_node.yml --limit=eth1client_ethereumjs
ansible-playbook -i pithos-testnet/inventory/inventory.ini playbooks/tasks/start_execution_node.yml --limit=eth1client_ethereumjsBy default the docker daemon collects logs using the json-file driver. While this is useful for most of the cases, there could be some specific scenarios where another logging driver should be used.
If so, just specify the variables common_log_driver and common_log_options in the all.yml config file (it will use json-file by default).
Accepted values are the ones from the official docker documentation
Please note that if you are changing the logging driver of an already running container, there might need for a restart of the container in order to have docker get the latest config changes.
There's a ready-to-use playbook which takes care of installing the fluentd logs collector.
Just set the following variables in all.yml or on your secrets.yml file:
logging_host=URL To Logs Collectorlogging_auth_user=User With Permissions to push logslogging_auth_password=User Password
Sample logging driver configurations:
## JSON file
common_log_driver: json-file
common_log_options:
max-file: "10"
max-size: 500m
mode: non-blocking
max-buffer-size: 4m
## Fluentd
common_log_driver: fluentd
common_log_options: {}
That can be either an ElasticSearch or OpenSearch URL.
This repo uses ansible-vault to manage secrets. The secrets of each inventory are committed separately as a secrets.yaml file. This contains variables such as
remote_write_username: ***********
remote_write_password: ***********
explorer_postgres_password: ***********
nethermind_seq_api_key: ***********
secret_keys: ***********To have good UX working with secrets, do the following:
- Get the vault secret from @dapplion
- Write the vault secret in
./.vault_pass - Add this two lines in your
~/.bashrcfile to read the password automatically on each run (remember to also apply on current terminal)
# Specify editor for ansible vault
export EDITOR=nano
# Automatically read vault pass for ansible-vault
export ANSIBLE_VAULT_PASSWORD_FILE=./.vault_pass
To add new secrets just do
ansible-vault edit gc-merge-devnet-3/inventory/group_vars/secrets.yaml
1. Provision
Provision instances and allocate hosts in $testnet/inventory/inventory.ini
$network-$eth2client-$eth1client-1 ansible_host=159.223.195.87 mnemonic={{mnemonic_0}} indexes=2000..3000Create a mnemonic with https://iancoleman.io/bip39/ and set it in a hidden secrets.yml, for example:
mnemonic_0: "giant issue aisle success illegal bike spike question tent bar rely arctic volcano long crawl hungry vocal artwork sniff fantasy very lucky have athlete"2. Deploy
Note: By default the docker daemon collects logs using the
json-filedriver, check this section out if you want to ship logs using a custom provider:Use docker logs with custom logging drivers.
Execute the following playbooks only if you want to make Dockerd collect logs using a custom logging driver, e.g. fluentd (make sure to check-out the requirements in Use docker logs with custom logging drivers).
Note: AuRa does not handle well starting with multiple validating nodes. Set a single
mining_keyi=0on first deployment. Then after some blocks (enough to sync), edit inventory to add more validating nodes and re-deploy execution.
ansible-playbook -i $network/inventory/inventory.ini playbooks/full_setup.yml
3. Set bootnodes
Grab execution node's endoes with command below and paste some of them into $network/inventory/group_vars/all.yaml to act as bootnodes in variable execution_bootnode_enode
ansible-playbook -i $network/inventory/inventory.ini playbooks/tasks/collect_enodes.yml
Grab beacon node's ENRs with command below and paste some of them into $network/inventory/group_vars/all.yaml to act as bootnodes in variable bootnode_enrs
ansible-playbook -i $network/inventory/inventory.ini playbooks/collect_enrs.yml
Then re-deploy execution and beacon nodes to connect them
ansible-playbook -i $network/inventory/inventory.ini playbooks/start_beacon.yml
ansible-playbook -i $network/inventory/inventory.ini playbooks/start_execution.yml
- 6. Extra tooling
- Deploy eth1 explorer
- Deploy eth2 explorer
- Deploy ethstats
- Deploy faucet
- Deploy landing page
- 7. Metrics Interpretation
beacon_head_slot
MIN_GENESIS_TIME is the moment when the beacon chain will start, by this time all the beacon node shows latest logs, ideally all the beacon node should be nearly behind the maximum one and following. Until the genesis the head slot should be 0 after that should increase linearly. clock * 5 metrics shows how many seconds are left until genesis will happen. Beacon started up if after genesis time the head slot increases, clock is increasing until 0.
libp2p_peers
amount of peers connected to the specific beacon chain, it is important that as much as possible peers get connected. If you do not have peers it means that beacon nodes are not communicating, in our case 12 is good 0 is bad.
nethermind_blocks
should increase nearly linearly, we expect the blockchain to produce one block each 5 seconds based on our configs. Blocks should keep increasing to demonstrate that the execution layer is working properly.
nethermind_sync_peers
every execution layer node must be peered and not lose connection.
participation_rate
it measures how effectively the beacon validators, those that validates transactions (not nodes, nodes just keeps the status of the blockchain) are participating in the consensus process, a good partecipation rate is between 90% and 100%.
- 8. beacon API docs
https://ethereum.github.io/beacon-APIs/#/Node
ansible -i denver/inventory/inventory.ini beacon -m shell -a "curl -s localhost:4000/eth/v1/beacon/headers/head | jq '.data.header.message.slot, .data.root'"
Print current head of each node, slot + root
denver-lighthouse-nethermind-05 | CHANGED | rc=0 >>
"476"
"0x2b29f765768332bebfd09c87d757bc0ccab0ec21c536583f4fe048c4fb33a62e"
denver-explorer-lighthouse-nethermind | CHANGED | rc=0 >>
"476"
"0x2b29f765768332bebfd09c87d757bc0ccab0ec21c536583f4fe048c4fb33a62e"
denver-lighthouse-nethermind-04 | CHANGED | rc=0 >>
"476"
"0x2b29f765768332bebfd09c87d757bc0ccab0ec21c536583f4fe048c4fb33a62e"
ansible -i $ANSIBLE_INVENTORY execution -m shell -a "curl -s -X POST --data '{\"jsonrpc\":\"2.0\",\"method\":\"eth_getBlockByNumber\",\"params\":[\"latest\"],\"id\":0}' http://localhost:8545 | jq '.result.number, .result.hash'"
Print current head of each node, slot + root
denver-lighthouse-nethermind-12 | CHANGED | rc=0 >>
"0x0"
"0x203e164cf3b6f6765abf2f0355a4d09e5eaf6a777243bc4407b569431cd95cb3"
denver-lighthouse-nethermind-11 | CHANGED | rc=0 >>
"0x0"
"0x203e164cf3b6f6765abf2f0355a4d09e5eaf6a777243bc4407b569431cd95cb3"
- Pick a TTD value at some time in the future. Set in
gc-shadow-fork-3/custom_config_data/config.yaml:17andgc-shadow-fork-3/inventory/group_vars/all.yaml:66. Must allow enough time for nodes to sync mainnet. - Change
beacon_network_namevalue
When working on a network for a while set the inventory file as an env to not have to -i chiado/inventory/inventory.ini every time
export ANSIBLE_INVENTORY=chiado/inventory/inventory.ini
Ref https://docs.ansible.com/ansible/latest/reference_appendices/config.html#envvar-ANSIBLE_INVENTORY