diff --git a/bkk06 b/bkk06 index d55fd66..b4ca438 100644 --- a/bkk06 +++ b/bkk06 @@ -16,63 +16,45 @@ polkadot [routers] bkk50 +[haproxy] +haproxy-bkk06 + [hydration] hdx26 +rpc-hydration-polkadot-01 [polkadot] -dot14 -dot26 -ksm14 -ksm26 -pso06 -pso16 -pso26 -wnd14 -wnd26 +rpc-polkadot-01 +rpc-westend-01 +rpc-paseo-01 +rpc-kusama-01 [cumulus] ; rpc -boot-asset-hub-paseo -kbr13 -kbr26 -kcore16 -kcore26 -kppl16 -kppl26 -mine14 -mine26 -mint14 -mint26 -pbr13 -pbr26 -pch16 -pch26 rpc-asset-hub-polkadot-01 +rpc-asset-hub-kusama-01 rpc-asset-hub-westend-01 rpc-asset-hub-paseo-01 -rpc-bridge-hub-paseo-01 rpc-bridge-hub-polkadot-01 +rpc-bridge-hub-kusama-01 rpc-bridge-hub-westend-01 +rpc-bridge-hub-paseo-01 rpc-coretime-paseo-01 +rpc-coretime-polkadot-01 +rpc-coretime-kusama-01 +rpc-coretime-westend-01 rpc-collectives-polkadot-01 rpc-collectives-westend-01 rpc-people-paseo-01 rpc-people-polkadot-01 -wbr13 -wbr26 -wch13 -wch26 -wcore16 -wcore26 -wmint14 -wmint26 -wppl16 -wppl26 +rpc-people-kusama-01 +rpc-people-westend-01 [kilt] rpc-kilt-polkadot-01 [encointer] +rpc-encointer-kusama-01 enc14 enc26 diff --git a/bkk07 b/bkk07 index a316353..061edc0 100644 --- a/bkk07 +++ b/bkk07 @@ -11,6 +11,18 @@ routers polkadot hydration cumulus +kilt + +[prometheus] +ibp-bkk07 + +[haproxy] +haproxy-bkk07 + +[misc-container] +build-node-07 +dockers +proxy-bkk07 [proxmox_vms:children] taloswrkr @@ -27,8 +39,15 @@ talosctl0701 bkk50 [hydration] +rpc-hydration-polkadot-02 hdx27 +[kilt] +rpc-kilt-polkadot-02 + +[penumbra] +penumbra-02 + [polkadot] rpc-polkadot-02 rpc-kusama-02 @@ -57,18 +76,18 @@ rpc-coretime-kusama-02 rpc-asset-hub-paseo-02 rpc-asset-hub-polkadot-02 rpc-asset-hub-westend-02 -rpc-asset-hub-kusama-01 +rpc-asset-hub-kusama-02 rpc-bridge-hub-paseo-02 rpc-bridge-hub-polkadot-02 rpc-bridge-hub-westend-02 -rpc-bridge-hub-kusama-01 +rpc-bridge-hub-kusama-02 rpc-collectives-polkadot-02 rpc-collectives-westend-02 [encointer] -rpc-encointer-kusama-01 +rpc-encointer-kusama-02 [services] monitor @@ -82,6 +101,14 @@ bkk07 bkk07 [referrence_nodes] +rpc-kusama-02 +rpc-paseo-02 +rpc-polkadot-02 +rpc-westend-02 +rpc-kusama-01 +rpc-paseo-01 +rpc-polkadot-01 +rpc-westend-01 dot14 ksm14 wnd14 diff --git a/group_vars/all/all.yaml b/group_vars/all/all.yaml index a88f670..cf93f86 100644 --- a/group_vars/all/all.yaml +++ b/group_vars/all/all.yaml @@ -154,13 +154,10 @@ proxmox_defaults: api_user: "{{ proxmox_default_admin_account }}" api_token_id: "{{ proxmox_default_admin_token }}-{{ inventory_hostname }}" api_token_secret: "{{ ansible_local.proxmox.api.token | unvault(default_passphrase) }}" + #ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKB5Gd/uGkKr2c9Kv/F5dUzyFPooHNX90UBLhrfzZKWa proxy@rotko.net pubkey: | ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAPBgdF5W2e5iMFt1iiLRuRdz7RxJzmj9v30nn9vZTYP user@pc02 ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBIrOT9g9BblH6u28wAQGmpqA/sH+EiKdhrqrfuDdZu2 hq@rotko.net - # pubkey: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBIrOT9g9BblH6u28wAQGmpqA/sH+EiKdhrqrfuDdZu2 hq@rotko.net" - # pubkeys: - # - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAPBgdF5W2e5iMFt1iiLRuRdz7RxJzmj9v30nn9vZTYP user@pc02" - # - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBIrOT9g9BblH6u28wAQGmpqA/sH+EiKdhrqrfuDdZu2 hq@rotko.net" node: "{{ host_name.split('.')[0] }}" timeout: 1200 @@ -185,3 +182,4 @@ service_users: unique: "unique" polimec: "polimec" ajuna: "ajuna" + penumbra: "penumbra" diff --git a/group_vars/cumulus.yaml b/group_vars/cumulus.yaml index b86231d..d870cf4 100644 --- a/group_vars/cumulus.yaml +++ b/group_vars/cumulus.yaml @@ -1,15 +1,19 @@ +--- default_base_path: /opt/cumulus -default_chain_spec_dl_url: https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/{{ +default_chain_spec_dl_url: + https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/{{ default_network }}.json -default_client_version: polkadot-stable2409-5 +default_client_version: polkadot-stable2412 default_database: paritydb -default_database_path: '{{ default_base_path }}/chains' +default_database_path: "{{ default_base_path }}/chains" default_download_base_url: https://github.com/paritytech/polkadot-sdk/releases/download/ -default_download_url: '{{ default_download_base_url }}{{ default_client_version }}/polkadot-parachain' -default_group: '{{ service_users[''cumulus''] }}' +default_download_url: "{{ default_download_base_url }}{{ default_client_version }}/polkadot-parachain" +default_group: "{{ service_users['cumulus'] }}" +default_in_peers: 32 default_log_level: info default_network: asset-hub-polkadot default_node_type: bootnode +default_out_peers: 16 default_p2p_port: 30433 default_p2p_port_ws: 30434 default_p2p_port_wss: 30435 @@ -17,7 +21,7 @@ default_prom_port: 7400 default_rpc_port: 9400 default_secure_rpc_port: 42400 default_service: cumulus -default_storage: '{{ default_base_path }}/chains' +default_storage: "{{ default_base_path }}/chains" default_telemetry_url: wss://telemetry-backend.w3f.community/submit/ 1 -default_user: '{{ service_users[''cumulus''] }}' +default_user: "{{ service_users['cumulus'] }}" zabbix_ext_port: 10400 diff --git a/group_vars/hydration.yaml b/group_vars/hydration.yaml index 3b311df..c7f0daa 100644 --- a/group_vars/hydration.yaml +++ b/group_vars/hydration.yaml @@ -1,23 +1,23 @@ --- default_base_path: /opt/hydration -default_client_version: v28.0.0 +default_client_version: v32.0.0 default_database: paritydb -default_database_path: '{{ default_base_path }}/chains' +default_database_path: "{{ default_base_path }}/chains" default_download_base_url: https://github.com/galacticcouncil/Hydration-node/releases/download/ -default_download_url: '{{ default_download_base_url }}{{ - default_client_version }}/hydration' -default_group: '{{ service_users[''hydration''] }}' +default_download_url: "{{ default_download_base_url }}{{ default_client_version }}/hydradx" +default_group: "{{ service_users['hydration'] }}" default_log_level: info default_network: hydration default_node_type: endpoint -default_p2p_port: 33800 -default_p2p_port_ws: 34800 -default_p2p_port_wss: 35800 -default_prom_port: 7800 -default_rpc_port: 9800 +default_p2p_port_ws: 30434 +default_p2p_port_wss: 30435 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 +default_prom_port: 7400 +default_rpc_port: 9400 default_secure_rpc_port: 42800 default_service: hydration -default_storage: '{{ default_base_path }}/chains' +default_storage: "{{ default_base_path }}/chains" default_telemetry_url: wss://telemetry-backend.w3f.community/submit/ 1 -default_user: '{{ service_users[''hydration''] }}' +default_user: "{{ service_users['hydration'] }}" zabbix_ext_port: 10800 diff --git a/group_vars/kilt.yaml b/group_vars/kilt.yaml index d7bbf48..6d48f7d 100644 --- a/group_vars/kilt.yaml +++ b/group_vars/kilt.yaml @@ -2,7 +2,7 @@ default_base_path: /opt/kilt default_src_path: "{{ default_base_path }}/src" # kilt version -default_client_version: 1.14.3 +default_client_version: 1.14.5 # database default_database: rocksdb default_database_path: "{{ default_base_path }}/chains" @@ -17,9 +17,10 @@ default_service: kilt default_storage: "{{ default_base_path }}/chains" default_telemetry_url: wss://telemetry-backend.w3f.community/submit/ 1 default_user: "{{ service_users['kilt'] }}" -default_p2p_port: 33400 -default_p2p_port_ws: 34400 -default_p2p_port_wss: 35400 +default_p2p_port_ws: 30434 +default_p2p_port_wss: 30435 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 default_prom_port: 7400 default_rpc_port: 9400 default_secure_rpc_port: 42400 diff --git a/group_vars/penumbra.yaml b/group_vars/penumbra.yaml index 0811af2..8e0096c 100644 --- a/group_vars/penumbra.yaml +++ b/group_vars/penumbra.yaml @@ -1,18 +1,22 @@ --- # penumbra version -penumbra_version: "0.73.1" +penumbra_version: "0.81.0" penumbra_chain_id: "" +cometbft_version: "0.37.14" +polkachu_version: "2681688" # dl locations +default_git_repo: "https://github.com/penumbra-zone/penumbra" penumbra_download_pcli_url: "https://github.com/penumbra-zone/penumbra/releases/download/v{{ penumbra_version }}/pcli-installer.sh" penumbra_download_pd_url: "https://github.com/penumbra-zone/penumbra/releases/download/v{{ penumbra_version }}/pd-installer.sh" penumbra_download_pclientd_url: "https://github.com/penumbra-zone/penumbra/releases/download/v{{ penumbra_version }}/pclientd-installer.sh" - -default_git_repo: "https://github.com/penumbra-zone/penumbra" +cometbft_download_url: "https://github.com/cometbft/cometbft/releases/download/v{{ cometbft_version }}/cometbft_{{ cometbft_version }}_linux_amd64.tar.gz" +#polkachu_download_cmd: "wget -O penumbra_{{ polkachu_version }}.tar.lz4 https://snapshots.polkachu.com/snapshots/penumbra/penumbra_{{ polkachu_version }}.tar.lz4 --inet4-only" # service/user -penumbra_service: "penumbra" -penumbra_user: "{{ service_users['penumbra'] }}" +default_service: "penumbra" +default_user: "{{ service_users['penumbra'] }}" +default_group: "{{ service_users['penumbra'] }}" # paths default_home_path: "/opt/penumbra" @@ -21,6 +25,8 @@ default_storage_path: "{{ default_home_path }}/data" default_config_path: "{{ default_home_path }}/config" default_log_path: "{{ default_home_path }}/logs" default_script_path: "{{ default_home_path }}/scripts" +default_database_path: "{{ default_home_path }}/network_data" +default_installation_path: "/home/{{ default_user }}/.cargo/bin" default_network: "penumbra" default_node_type: "validator" diff --git a/group_vars/polkadot.yaml b/group_vars/polkadot.yaml index 4c0101d..7a6f642 100644 --- a/group_vars/polkadot.yaml +++ b/group_vars/polkadot.yaml @@ -1,20 +1,17 @@ +--- default_auxiliary_binary_path: /usr/libexec default_base_path: /opt/polkadot -default_chain_spec: '{{ default_base_path }}/{{ default_network }}.json' -default_chain_spec_dl_url: https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/polkadot/node/service/chain-specs/{{ - default_network }}.json -default_client_version: polkadot-stable2409-5 +default_chain_spec: "{{ default_base_path }}/{{ default_network }}.json" +default_chain_spec_dl_url: https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/polkadot/node/service/chain-specs/{{ default_network }}.json +default_client_version: polkadot-stable2412 default_database: paritydb default_database_path: /opt/polkadot/chains default_download_base_url: https://github.com/paritytech/polkadot-sdk/releases/download/ -default_download_polkadotSHA256: https://github.com/paritytech/polkadot-sdk/releases/download/{{ - default_client_version }}/polkadot.sha256 -default_download_url: '{{ default_download_base_url }}{{ default_client_version }}/polkadot' -default_download_url_execute: '{{ default_download_base_url }}{{ default_client_version - }}/polkadot-execute-worker' -default_download_url_prepare: '{{ default_download_base_url }}{{ default_client_version - }}/polkadot-prepare-worker' -default_group: '{{ service_users[''polkadot''] }}' +default_download_polkadotSHA256: https://github.com/paritytech/polkadot-sdk/releases/download/{{ default_client_version }}/polkadot.sha256 +default_download_url: "{{ default_download_base_url }}{{ default_client_version }}/polkadot" +default_download_url_execute: "{{ default_download_base_url }}{{ default_client_version }}/polkadot-execute-worker" +default_download_url_prepare: "{{ default_download_base_url }}{{ default_client_version }}/polkadot-prepare-worker" +default_group: "{{ service_users['polkadot'] }}" default_inet_p2p_port: 30333 default_inet_p2p_port_ws: 30334 default_log_level: info @@ -26,9 +23,11 @@ default_p2p_port_wss: 30335 default_prom_port: 7090 default_rpc_para_port: 9955 default_secure_rpc_port: 42100 +default_in_peers: 32 +default_out_peers: 16 default_service: polkadot default_telemetry_url: wss://telemetry-backend.w3f.community/submit/ 1 -default_user: '{{ service_users[''polkadot''] }}' +default_user: "{{ service_users['polkadot'] }}" inet_p2p_port: 30333 inet_p2p_port_ws: 30334 inet_rpc_port: 9944 diff --git a/group_vars/prometheus.yaml b/group_vars/prometheus.yaml new file mode 100644 index 0000000..b24091a --- /dev/null +++ b/group_vars/prometheus.yaml @@ -0,0 +1,5 @@ +--- +prometheus_version: 2.55.1 +default_download_url: "https://github.com/prometheus/prometheus/releases/download/v{{ prometheus_version }}/prometheus-{{ prometheus_version }}.linux-amd64.tar.gz" +alertmanager_version: 0.27.0 +default_alertmanager_download_url: "https://github.com/prometheus/alertmanager/releases/download/v{{ alertmanager_version }}/alertmanager-{{ alertmanager_version }}.linux-amd64.tar.gz" diff --git a/host_vars/bkk06.yaml b/host_vars/bkk06.yaml index 17bc6f4..cc0e96d 100644 --- a/host_vars/bkk06.yaml +++ b/host_vars/bkk06.yaml @@ -1227,12 +1227,6 @@ lxc_nodes: # - from_port: "{{ hostvars['rpc-people-polkadot-01']['zabbix_ext_port'] }}" # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-people-polkadot-01']['default_p2p_port'] }}" - # to_host: "{{ hostvars['rpc-people-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-people-polkadot-01']['default_p2p_port'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-people-polkadot-01']['default_p2p_port_wss'] }}" - # to_host: "{{ hostvars['rpc-people-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-people-polkadot-01']['default_p2p_port_wss'] }}" - # protocol: "tcp" # - host: "rpc-bridge-hub-paseo-01" # proxmox_config: # vmid: "340201" @@ -1555,145 +1549,497 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-collectives-westend-01']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-collectives-westend-01']['container_ip'] }}:{{ hostvars['rpc-collectives-westend-01']['default_p2p_port'] }}" protocol: "tcp" -# -# TODO: new relays -# - host: "rpc-polkadot-01" -# proxmox_config: -# vmid: "310001" -# hostname: "{{ hostvars['rpc-polkadot-01']['host_name'] }}" -# ostemplate: "local:vztmpl/{{ default_container_template }}" -# netif: "{{ hostvars['rpc-polkadot-01']['netif'] }}" -# cores: 4 -# memory: 16384 -# swap: 8192 -# password: "{{ default_password }}" -# disk: "{{ zfs_storage }}:20" -# mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-polkadot-01"]["default_database_path"] }}"}' -# onboot: True -# unprivileged: True -# validate_certs: False -# description: "{{ hostvars['rpc-polkadot-01']['default_network'] }} {{ hostvars['rpc-polkadot-01']['default_node_type'] }}: {{ hostvars['rpc-polkadot-01']['host_name'] }}" -# state: present -# features: -# - nesting=1 -# port_forwards: -# - from_port: "{{ hostvars['rpc-polkadot-01']['ansible_port'] }}" -# to_host: "{{ hostvars['rpc-polkadot-01']['container_ip'] }}:22" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-polkadot-01']['zabbix_ext_port'] }}" -# to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-polkadot-01']['default_p2p_port'] }}" -# to_host: "{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_p2p_port'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-polkadot-01']['default_p2p_port_ws'] }}" -# to_host: "{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_p2p_port_ws'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-polkadot-01']['default_p2p_port_wss'] }}" -# to_host: "{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_p2p_port_wss'] }}" -# protocol: "tcp" -# - host: "rpc-kusama-01" -# proxmox_config: -# vmid: "320001" -# hostname: "{{ hostvars['rpc-kusama-01']['host_name'] }}" -# ostemplate: "local:vztmpl/{{ default_container_template }}" -# netif: "{{ hostvars['rpc-kusama-01']['netif'] }}" -# cores: 4 -# memory: 16384 -# swap: 8192 -# password: "{{ default_password }}" -# disk: "{{ zfs_storage }}:20" -# mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-kusama-01"]["default_database_path"] }}"}' -# onboot: True -# unprivileged: True -# validate_certs: False -# description: "{{ hostvars['rpc-kusama-01']['default_network'] }} {{ hostvars['rpc-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-kusama-01']['host_name'] }}" -# state: present -# features: -# - nesting=1 -# port_forwards: -# - from_port: "{{ hostvars['rpc-kusama-01']['ansible_port'] }}" -# to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:22" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-kusama-01']['zabbix_ext_port'] }}" -# to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-kusama-01']['default_p2p_port'] }}" -# to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_p2p_port'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-kusama-01']['default_p2p_port_ws'] }}" -# to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_p2p_port_ws'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-kusama-01']['default_p2p_port_wss'] }}" -# to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_p2p_port_wss'] }}" -# protocol: "tcp" -# - host: "rpc-westend-01" -# proxmox_config: -# vmid: "330001" -# hostname: "{{ hostvars['rpc-westend-01']['host_name'] }}" -# ostemplate: "local:vztmpl/{{ default_container_template }}" -# netif: "{{ hostvars['rpc-westend-01']['netif'] }}" -# cores: 4 -# memory: 16384 -# swap: 8192 -# password: "{{ default_password }}" -# disk: "{{ zfs_storage }}:20" -# mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-westend-01"]["default_database_path"] }}"}' -# onboot: True -# unprivileged: True -# validate_certs: False -# description: "{{ hostvars['rpc-westend-01']['default_network'] }} {{ hostvars['rpc-westend-01']['default_node_type'] }}: {{ hostvars['rpc-westend-01']['host_name'] }}" -# state: present -# features: -# - nesting=1 -# port_forwards: -# - from_port: "{{ hostvars['rpc-westend-01']['ansible_port'] }}" -# to_host: "{{ hostvars['rpc-westend-01']['container_ip'] }}:22" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-westend-01']['zabbix_ext_port'] }}" -# to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-westend-01']['default_p2p_port'] }}" -# to_host: "{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_p2p_port'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-westend-01']['default_p2p_port_ws'] }}" -# to_host: "{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_p2p_port_ws'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-westend-01']['default_p2p_port_wss'] }}" -# to_host: "{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_p2p_port_wss'] }}" -# protocol: "tcp" -# - host: "rpc-paseo-01" -# proxmox_config: -# vmid: "340001" -# hostname: "{{ hostvars['rpc-paseo-01']['host_name'] }}" -# ostemplate: "local:vztmpl/{{ default_container_template }}" -# netif: "{{ hostvars['rpc-paseo-01']['netif'] }}" -# cores: 4 -# memory: 16384 -# swap: 8192 -# password: "{{ default_password }}" -# disk: "{{ zfs_storage }}:20" -# mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-paseo-01"]["default_database_path"] }}"}' -# onboot: True -# unprivileged: True -# validate_certs: False -# description: "{{ hostvars['rpc-paseo-01']['default_network'] }} {{ hostvars['rpc-paseo-01']['default_node_type'] }}: {{ hostvars['rpc-paseo-01']['host_name'] }}" -# state: present -# features: -# - nesting=1 -# port_forwards: -# - from_port: "{{ hostvars['rpc-paseo-01']['ansible_port'] }}" -# to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:22" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-paseo-01']['zabbix_ext_port'] }}" -# to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-paseo-01']['default_p2p_port'] }}" -# to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_p2p_port'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-paseo-01']['default_p2p_port_ws'] }}" -# to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_p2p_port_ws'] }}" -# protocol: "tcp" -# - from_port: "{{ hostvars['rpc-paseo-01']['default_p2p_port_wss'] }}" -# to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_p2p_port_wss'] }}" -# protocol: "tcp" + # + # TODO: new relays + - host: "rpc-polkadot-01" + proxmox_config: + vmid: "31001" + hostname: "{{ hostvars['rpc-polkadot-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-polkadot-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-polkadot-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-polkadot-01']['default_network'] }} {{ hostvars['rpc-polkadot-01']['default_node_type'] }}: {{ hostvars['rpc-polkadot-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-polkadot-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-polkadot-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-polkadot-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_p2p_port'] }}" + protocol: "tcp" + - host: "rpc-westend-01" + proxmox_config: + vmid: "33001" + hostname: "{{ hostvars['rpc-westend-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-westend-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-westend-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-westend-01']['default_network'] }} {{ hostvars['rpc-westend-01']['default_node_type'] }}: {{ hostvars['rpc-westend-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-westend-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-westend-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-westend-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_p2p_port'] }}" + protocol: "tcp" + - host: "haproxy-bkk06" + proxmox_config: + vmid: "9916" + hostname: "{{ hostvars['haproxy-bkk06']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['haproxy-bkk06']['netif'] }}" + cores: 8 + memory: 4000 + swap: 256 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:60" + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['haproxy-bkk06']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['haproxy-bkk06']['ansible_port'] }}" + to_host: "{{ hostvars['haproxy-bkk06']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['haproxy-bkk06']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - host: "rpc-coretime-kusama-01" + proxmox_config: + vmid: "32051" + hostname: "{{ hostvars['rpc-coretime-kusama-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-coretime-kusama-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-coretime-kusama-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-coretime-kusama-01']['default_network'] }} {{ hostvars['rpc-coretime-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-coretime-kusama-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-coretime-kusama-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-coretime-kusama-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-kusama-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-kusama-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-coretime-kusama-01']['container_ip'] }}:{{ hostvars['rpc-coretime-kusama-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-kusama-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-coretime-kusama-01']['container_ip'] }}:{{ hostvars['rpc-coretime-kusama-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-coretime-kusama-01']['container_ip'] }}:{{ hostvars['rpc-coretime-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-coretime-kusama-01']['container_ip'] }}:{{ hostvars['rpc-coretime-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-coretime-westend-01" + proxmox_config: + vmid: "33051" + hostname: "{{ hostvars['rpc-coretime-westend-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-coretime-westend-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-coretime-westend-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-coretime-westend-01']['default_network'] }} {{ hostvars['rpc-coretime-westend-01']['default_node_type'] }}: {{ hostvars['rpc-coretime-westend-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-coretime-westend-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-coretime-westend-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-westend-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-westend-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-coretime-westend-01']['container_ip'] }}:{{ hostvars['rpc-coretime-westend-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-westend-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-coretime-westend-01']['container_ip'] }}:{{ hostvars['rpc-coretime-westend-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-westend-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-coretime-westend-01']['container_ip'] }}:{{ hostvars['rpc-coretime-westend-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-coretime-westend-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-coretime-westend-01']['container_ip'] }}:{{ hostvars['rpc-coretime-westend-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-people-kusama-01" + proxmox_config: + vmid: "32041" + hostname: "{{ hostvars['rpc-people-kusama-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-people-kusama-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-people-kusama-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-people-kusama-01']['default_network'] }} {{ hostvars['rpc-people-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-people-kusama-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-people-kusama-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-people-kusama-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-kusama-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-kusama-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-people-kusama-01']['container_ip'] }}:{{ hostvars['rpc-people-kusama-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-kusama-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-people-kusama-01']['container_ip'] }}:{{ hostvars['rpc-people-kusama-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-people-kusama-01']['container_ip'] }}:{{ hostvars['rpc-people-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-people-kusama-01']['container_ip'] }}:{{ hostvars['rpc-people-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-people-westend-01" + proxmox_config: + vmid: "33041" + hostname: "{{ hostvars['rpc-people-westend-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-people-westend-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-people-westend-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-people-westend-01']['default_network'] }} {{ hostvars['rpc-people-westend-01']['default_node_type'] }}: {{ hostvars['rpc-people-westend-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-people-westend-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-people-westend-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-westend-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-westend-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-people-westend-01']['container_ip'] }}:{{ hostvars['rpc-people-westend-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-westend-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-people-westend-01']['container_ip'] }}:{{ hostvars['rpc-people-westend-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-westend-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-people-westend-01']['container_ip'] }}:{{ hostvars['rpc-people-westend-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-people-westend-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-people-westend-01']['container_ip'] }}:{{ hostvars['rpc-people-westend-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-paseo-01" + proxmox_config: + vmid: "34001" + hostname: "{{ hostvars['rpc-paseo-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-paseo-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:300,mp={{ hostvars["rpc-paseo-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-paseo-01']['default_network'] }} {{ hostvars['rpc-paseo-01']['default_node_type'] }}: {{ hostvars['rpc-paseo-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-paseo-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-paseo-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-paseo-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-paseo-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-paseo-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-paseo-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-kusama-01" + proxmox_config: + vmid: "32001" + hostname: "{{ hostvars['rpc-kusama-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-kusama-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:4000,mp={{ hostvars["rpc-kusama-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-kusama-01']['default_network'] }} {{ hostvars['rpc-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-kusama-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-kusama-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-kusama-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-kusama-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-kusama-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-asset-hub-kusama-01" + proxmox_config: + vmid: "32011" + hostname: "{{ hostvars['rpc-asset-hub-kusama-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-asset-hub-kusama-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:250,mp={{ hostvars["rpc-asset-hub-kusama-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-asset-hub-kusama-01']['default_network'] }} {{ hostvars['rpc-asset-hub-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-asset-hub-kusama-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-bridge-hub-kusama-01" + proxmox_config: + vmid: "32021" + hostname: "{{ hostvars['rpc-bridge-hub-kusama-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-bridge-hub-kusama-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-bridge-hub-kusama-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-bridge-hub-kusama-01']['default_network'] }} {{ hostvars['rpc-bridge-hub-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-bridge-hub-kusama-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-encointer-kusama-01" + proxmox_config: + vmid: "32061" + hostname: "{{ hostvars['rpc-encointer-kusama-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-encointer-kusama-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-encointer-kusama-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-encointer-kusama-01']['default_network'] }} {{ hostvars['rpc-encointer-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-encointer-kusama-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-encointer-kusama-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-encointer-kusama-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-encointer-kusama-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-encointer-kusama-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-encointer-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-encointer-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" + - host: "rpc-hydration-polkadot-01" + proxmox_config: + vmid: "31261" + hostname: "{{ hostvars['rpc-hydration-polkadot-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-hydration-polkadot-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:150,mp={{ hostvars["rpc-hydration-polkadot-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-hydration-polkadot-01']['default_network'] }} {{ hostvars['rpc-hydration-polkadot-01']['default_node_type'] }}: {{ hostvars['rpc-hydration-polkadot-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-hydration-polkadot-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-hydration-polkadot-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-hydration-polkadot-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-hydration-polkadot-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-hydration-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-hydration-polkadot-01']['default_p2p_port'] }}" + protocol: "tcp" + - host: "rpc-asset-hub-paseo-01" + proxmox_config: + vmid: "34011" + hostname: "{{ hostvars['rpc-asset-hub-paseo-01']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-asset-hub-paseo-01']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:150,mp={{ hostvars["rpc-asset-hub-paseo-01"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-asset-hub-paseo-01']['default_network'] }} {{ hostvars['rpc-asset-hub-paseo-01']['default_node_type'] }}: {{ hostvars['rpc-asset-hub-paseo-01']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-asset-hub-paseo-01']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-paseo-01']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-paseo-01']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-paseo-01']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-paseo-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-paseo-01']['default_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-paseo-01']['transition_bootnode_p2p_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-paseo-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-paseo-01']['transition_bootnode_p2p_port'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-paseo-01']['transition_bootnode_p2p_port_ws'] }}" + to_host: "{{ hostvars['rpc-asset-hub-paseo-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-paseo-01']['transition_bootnode_p2p_port_ws'] }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-asset-hub-paseo-01']['transition_bootnode_p2p_port_wss'] }}" + to_host: "{{ hostvars['rpc-asset-hub-paseo-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-paseo-01']['transition_bootnode_p2p_port_wss'] }}" + protocol: "tcp" diff --git a/host_vars/bkk07.yaml b/host_vars/bkk07.yaml index 00e7777..f6b8a30 100644 --- a/host_vars/bkk07.yaml +++ b/host_vars/bkk07.yaml @@ -29,143 +29,108 @@ port_forwards: protocol: "tcp" lxc_nodes: - # - host: "rpc-polkadot-02" + # - host: "hdx27" # proxmox_config: - # vmid: "340202" - # hostname: "{{ hostvars['rpc-polkadot-02']['host_name'] }}" + # vmid: "837" + # hostname: "{{ hostvars['hdx27']['host_name'] }}" # ostemplate: "local:vztmpl/{{ default_container_template }}" - # netif: "{{ hostvars['rpc-polkadot-02']['netif'] }}" + # netif: "{{ hostvars['hdx27']['netif'] }}" + # cores: 8 + # memory: 16384 + # swap: 8192 + # password: "{{ default_password }}" + # disk: "{{ default_storage }}:20" + # mounts: '{"mp0":"{{ default_storage }}:150,mp={{ hostvars["hdx27"]["default_database_path"] }}"}' + # onboot: True + # unprivileged: True + # validate_certs: False + # description: "{{ hostvars['hdx27']['default_network'] }} {{ hostvars['hdx27']['default_node_type'] }}: {{ hostvars['hdx27']['host_name'] }}" + # state: present + # features: + # - nesting=1 + # port_forwards: + # - from_port: "{{ hostvars['hdx27']['ansible_port'] }}" + # to_host: "{{ hostvars['hdx27']['container_ip'] }}:22" + # protocol: "tcp" + # - from_port: "{{ hostvars['hdx27']['zabbix_ext_port'] }}" + # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" + # protocol: "tcp" + # - from_port: "{{ hostvars['hdx27']['default_p2p_port'] }}" + # to_host: "{{ hostvars['hdx27']['container_ip'] }}:{{ hostvars['hdx27']['default_p2p_port'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['hdx27']['default_p2p_port_ws'] }}" + # to_host: "{{ hostvars['hdx27']['container_ip'] }}:{{ hostvars['hdx27']['default_p2p_port_ws'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['hdx27']['default_p2p_port_wss'] }}" + # to_host: "{{ hostvars['hdx27']['container_ip'] }}:{{ hostvars['hdx27']['default_p2p_port_wss'] }}" + # protocol: "tcp" + # - host: "pso07" + # proxmox_config: + # vmid: "1007" + # hostname: "{{ hostvars['pso07']['host_name'] }}" + # ostemplate: "local:vztmpl/{{ default_container_template }}" + # netif: "{{ hostvars['pso07']['netif'] }}" # cores: 4 # memory: 16384 # swap: 8192 # password: "{{ default_password }}" - # disk: "{{ zfs_storage }}:20" - # mounts: '{"mp0":"{{ zfs_storage }}:2000,mp={{ hostvars["rpc-polkadot-02"]["default_database_path"] }}"}' + # disk: "{{ default_storage }}:20" + # mounts: '{"mp0":"{{ default_storage }}:200,mp={{ hostvars["pso07"]["default_base_path"] }}"}' # onboot: True # unprivileged: True # validate_certs: False - # description: "{{ hostvars['rpc-polkadot-02']['default_network'] }} {{ hostvars['rpc-polkadot-02']['default_node_type'] }}: {{ hostvars['rpc-polkadot-02']['host_name'] }}" + # description: "{{ hostvars['pso07']['default_network'] }} {{ hostvars['pso07']['default_node_type'] }}: {{ hostvars['pso07']['host_name'] }}" # state: present # features: # - nesting=1 # port_forwards: - # - from_port: "{{ hostvars['rpc-polkadot-02']['ansible_port'] }}" - # to_host: "{{ hostvars['rpc-polkadot-02']['container_ip'] }}:22" + # - from_port: "{{ hostvars['pso07']['ansible_port'] }}" + # to_host: "{{ hostvars['pso07']['container_ip'] }}:22" # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-polkadot-02']['zabbix_ext_port'] }}" + # - from_port: "{{ hostvars['pso07']['zabbix_ext_port'] }}" # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-polkadot-02']['default_p2p_port'] }}" - # to_host: "{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_p2p_port'] }}" + # - from_port: "{{ hostvars['pso07']['default_p2p_port'] }}" + # to_host: "{{ hostvars['pso07']['container_ip'] }}:{{ hostvars['pso07']['default_p2p_port'] }}" # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-polkadot-02']['default_p2p_port_ws'] }}" - # to_host: "{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_p2p_port_ws'] }}" + # - from_port: "{{ hostvars['pso07']['default_p2p_port_ws'] }}" + # to_host: "{{ hostvars['pso07']['container_ip'] }}:{{ hostvars['pso07']['default_p2p_port_ws'] }}" # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-polkadot-02']['default_p2p_port_wss'] }}" - # to_host: "{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_p2p_port_wss'] }}" + # - host: "kcore27" + # proxmox_config: + # vmid: "827" + # hostname: "{{ hostvars['kcore27']['host_name'] }}" + # ostemplate: "local:vztmpl/{{ default_container_template }}" + # netif: "{{ hostvars['kcore27']['netif'] }}" + # cores: 4 + # memory: 16384 + # swap: 8192 + # password: "{{ default_password }}" + # disk: "{{ default_storage }}:20" + # mounts: '{"mp0":"{{ default_storage }}:100,mp={{ hostvars["kcore27"]["default_database_path"] }}"}' + # onboot: True + # unprivileged: True + # validate_certs: False + # description: "{{ hostvars['kcore27']['default_network'] }} {{ hostvars['kcore27']['default_node_type'] }}: {{ hostvars['kcore27']['host_name'] }}" + # state: present + # features: + # - nesting=1 + # port_forwards: + # - from_port: "{{ hostvars['kcore27']['ansible_port'] }}" + # to_host: "{{ hostvars['kcore27']['container_ip'] }}:22" + # protocol: "tcp" + # - from_port: "{{ hostvars['kcore27']['zabbix_ext_port'] }}" + # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" + # protocol: "tcp" + # - from_port: "{{ hostvars['kcore27']['default_p2p_port'] }}" + # to_host: "{{ hostvars['kcore27']['container_ip'] }}:{{ hostvars['kcore27']['default_p2p_port'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['kcore27']['default_p2p_port_ws'] }}" + # to_host: "{{ hostvars['kcore27']['container_ip'] }}:{{ hostvars['kcore27']['default_p2p_port_ws'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['kcore27']['default_p2p_port_wss'] }}" + # to_host: "{{ hostvars['kcore27']['container_ip'] }}:{{ hostvars['kcore27']['default_p2p_port_wss'] }}" # protocol: "tcp" - - host: "hdx27" - proxmox_config: - vmid: "837" - hostname: "{{ hostvars['hdx27']['host_name'] }}" - ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['hdx27']['netif'] }}" - cores: 8 - memory: 16384 - swap: 8192 - password: "{{ default_password }}" - disk: "{{ default_storage }}:20" - mounts: '{"mp0":"{{ default_storage }}:150,mp={{ hostvars["hdx27"]["default_database_path"] }}"}' - onboot: True - unprivileged: True - validate_certs: False - description: "{{ hostvars['hdx27']['default_network'] }} {{ hostvars['hdx27']['default_node_type'] }}: {{ hostvars['hdx27']['host_name'] }}" - state: present - features: - - nesting=1 - port_forwards: - - from_port: "{{ hostvars['hdx27']['ansible_port'] }}" - to_host: "{{ hostvars['hdx27']['container_ip'] }}:22" - protocol: "tcp" - - from_port: "{{ hostvars['hdx27']['zabbix_ext_port'] }}" - to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" - protocol: "tcp" - - from_port: "{{ hostvars['hdx27']['default_p2p_port'] }}" - to_host: "{{ hostvars['hdx27']['container_ip'] }}:{{ hostvars['hdx27']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['hdx27']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['hdx27']['container_ip'] }}:{{ hostvars['hdx27']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['hdx27']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['hdx27']['container_ip'] }}:{{ hostvars['hdx27']['default_p2p_port_wss'] }}" - protocol: "tcp" - - host: "pso07" - proxmox_config: - vmid: "1007" - hostname: "{{ hostvars['pso07']['host_name'] }}" - ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['pso07']['netif'] }}" - cores: 4 - memory: 16384 - swap: 8192 - password: "{{ default_password }}" - disk: "{{ default_storage }}:20" - mounts: '{"mp0":"{{ default_storage }}:200,mp={{ hostvars["pso07"]["default_base_path"] }}"}' - onboot: True - unprivileged: True - validate_certs: False - description: "{{ hostvars['pso07']['default_network'] }} {{ hostvars['pso07']['default_node_type'] }}: {{ hostvars['pso07']['host_name'] }}" - state: present - features: - - nesting=1 - port_forwards: - - from_port: "{{ hostvars['pso07']['ansible_port'] }}" - to_host: "{{ hostvars['pso07']['container_ip'] }}:22" - protocol: "tcp" - - from_port: "{{ hostvars['pso07']['zabbix_ext_port'] }}" - to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" - protocol: "tcp" - - from_port: "{{ hostvars['pso07']['default_p2p_port'] }}" - to_host: "{{ hostvars['pso07']['container_ip'] }}:{{ hostvars['pso07']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['pso07']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['pso07']['container_ip'] }}:{{ hostvars['pso07']['default_p2p_port_ws'] }}" - protocol: "tcp" - - host: "kcore27" - proxmox_config: - vmid: "827" - hostname: "{{ hostvars['kcore27']['host_name'] }}" - ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['kcore27']['netif'] }}" - cores: 4 - memory: 16384 - swap: 8192 - password: "{{ default_password }}" - disk: "{{ default_storage }}:20" - mounts: '{"mp0":"{{ default_storage }}:100,mp={{ hostvars["kcore27"]["default_database_path"] }}"}' - onboot: True - unprivileged: True - validate_certs: False - description: "{{ hostvars['kcore27']['default_network'] }} {{ hostvars['kcore27']['default_node_type'] }}: {{ hostvars['kcore27']['host_name'] }}" - state: present - features: - - nesting=1 - port_forwards: - - from_port: "{{ hostvars['kcore27']['ansible_port'] }}" - to_host: "{{ hostvars['kcore27']['container_ip'] }}:22" - protocol: "tcp" - - from_port: "{{ hostvars['kcore27']['zabbix_ext_port'] }}" - to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" - protocol: "tcp" - - from_port: "{{ hostvars['kcore27']['default_p2p_port'] }}" - to_host: "{{ hostvars['kcore27']['container_ip'] }}:{{ hostvars['kcore27']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['kcore27']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['kcore27']['container_ip'] }}:{{ hostvars['kcore27']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['kcore27']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['kcore27']['container_ip'] }}:{{ hostvars['kcore27']['default_p2p_port_wss'] }}" - protocol: "tcp" # - host: "kppl27" # proxmox_config: # vmid: "857" @@ -201,76 +166,76 @@ lxc_nodes: # - from_port: "{{ hostvars['kppl27']['default_p2p_port_wss'] }}" # to_host: "{{ hostvars['kppl27']['container_ip'] }}:{{ hostvars['kppl27']['default_p2p_port_wss'] }}" # protocol: "tcp" - - host: "wcore27" - proxmox_config: - vmid: "937" - hostname: "{{ hostvars['wcore27']['host_name'] }}" - ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['wcore27']['netif'] }}" - cores: 4 - memory: 16384 - swap: 8192 - password: "{{ default_password }}" - disk: "{{ default_storage }}:20" - mounts: '{"mp0":"{{ default_storage }}:100,mp={{ hostvars["wcore27"]["default_database_path"] }}"}' - onboot: True - unprivileged: True - validate_certs: False - description: "{{ hostvars['wcore27']['default_network'] }} {{ hostvars['wcore27']['default_node_type'] }}: {{ hostvars['wcore27']['host_name'] }}" - state: present - features: - - nesting=1 - port_forwards: - - from_port: "{{ hostvars['wcore27']['ansible_port'] }}" - to_host: "{{ hostvars['wcore27']['container_ip'] }}:22" - protocol: "tcp" - - from_port: "{{ hostvars['wcore27']['zabbix_ext_port'] }}" - to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" - protocol: "tcp" - - from_port: "{{ hostvars['wcore27']['default_p2p_port'] }}" - to_host: "{{ hostvars['wcore27']['container_ip'] }}:{{ hostvars['wcore27']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['wcore27']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['wcore27']['container_ip'] }}:{{ hostvars['wcore27']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['wcore27']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['wcore27']['container_ip'] }}:{{ hostvars['wcore27']['default_p2p_port_wss'] }}" - protocol: "tcp" - - host: "wppl27" - proxmox_config: - vmid: "867" - hostname: "{{ hostvars['wppl27']['host_name'] }}" - ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['wppl27']['netif'] }}" - cores: 4 - memory: 16384 - swap: 8192 - password: "{{ default_password }}" - disk: "{{ default_storage }}:20" - mounts: '{"mp0":"{{ default_storage }}:100,mp={{ hostvars["wppl27"]["default_database_path"] }}"}' - onboot: True - unprivileged: True - validate_certs: False - description: "{{ hostvars['wppl27']['default_network'] }} {{ hostvars['wppl27']['default_node_type'] }}: {{ hostvars['wppl27']['host_name'] }}" - state: present - features: - - nesting=1 - port_forwards: - - from_port: "{{ hostvars['wppl27']['ansible_port'] }}" - to_host: "{{ hostvars['wppl27']['container_ip'] }}:22" - protocol: "tcp" - - from_port: "{{ hostvars['wppl27']['zabbix_ext_port'] }}" - to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" - protocol: "tcp" - - from_port: "{{ hostvars['wppl27']['default_p2p_port'] }}" - to_host: "{{ hostvars['wppl27']['container_ip'] }}:{{ hostvars['wppl27']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['wppl27']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['wppl27']['container_ip'] }}:{{ hostvars['wppl27']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['wppl27']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['wppl27']['container_ip'] }}:{{ hostvars['wppl27']['default_p2p_port_wss'] }}" - protocol: "tcp" + # - host: "wcore27" + # proxmox_config: + # vmid: "937" + # hostname: "{{ hostvars['wcore27']['host_name'] }}" + # ostemplate: "local:vztmpl/{{ default_container_template }}" + # netif: "{{ hostvars['wcore27']['netif'] }}" + # cores: 4 + # memory: 16384 + # swap: 8192 + # password: "{{ default_password }}" + # disk: "{{ default_storage }}:20" + # mounts: '{"mp0":"{{ default_storage }}:100,mp={{ hostvars["wcore27"]["default_database_path"] }}"}' + # onboot: True + # unprivileged: True + # validate_certs: False + # description: "{{ hostvars['wcore27']['default_network'] }} {{ hostvars['wcore27']['default_node_type'] }}: {{ hostvars['wcore27']['host_name'] }}" + # state: present + # features: + # - nesting=1 + # port_forwards: + # - from_port: "{{ hostvars['wcore27']['ansible_port'] }}" + # to_host: "{{ hostvars['wcore27']['container_ip'] }}:22" + # protocol: "tcp" + # - from_port: "{{ hostvars['wcore27']['zabbix_ext_port'] }}" + # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" + # protocol: "tcp" + # - from_port: "{{ hostvars['wcore27']['default_p2p_port'] }}" + # to_host: "{{ hostvars['wcore27']['container_ip'] }}:{{ hostvars['wcore27']['default_p2p_port'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['wcore27']['default_p2p_port_ws'] }}" + # to_host: "{{ hostvars['wcore27']['container_ip'] }}:{{ hostvars['wcore27']['default_p2p_port_ws'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['wcore27']['default_p2p_port_wss'] }}" + # to_host: "{{ hostvars['wcore27']['container_ip'] }}:{{ hostvars['wcore27']['default_p2p_port_wss'] }}" + # protocol: "tcp" + # - host: "wppl27" + # proxmox_config: + # vmid: "867" + # hostname: "{{ hostvars['wppl27']['host_name'] }}" + # ostemplate: "local:vztmpl/{{ default_container_template }}" + # netif: "{{ hostvars['wppl27']['netif'] }}" + # cores: 4 + # memory: 16384 + # swap: 8192 + # password: "{{ default_password }}" + # disk: "{{ default_storage }}:20" + # mounts: '{"mp0":"{{ default_storage }}:100,mp={{ hostvars["wppl27"]["default_database_path"] }}"}' + # onboot: True + # unprivileged: True + # validate_certs: False + # description: "{{ hostvars['wppl27']['default_network'] }} {{ hostvars['wppl27']['default_node_type'] }}: {{ hostvars['wppl27']['host_name'] }}" + # state: present + # features: + # - nesting=1 + # port_forwards: + # - from_port: "{{ hostvars['wppl27']['ansible_port'] }}" + # to_host: "{{ hostvars['wppl27']['container_ip'] }}:22" + # protocol: "tcp" + # - from_port: "{{ hostvars['wppl27']['zabbix_ext_port'] }}" + # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" + # protocol: "tcp" + # - from_port: "{{ hostvars['wppl27']['default_p2p_port'] }}" + # to_host: "{{ hostvars['wppl27']['container_ip'] }}:{{ hostvars['wppl27']['default_p2p_port'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['wppl27']['default_p2p_port_ws'] }}" + # to_host: "{{ hostvars['wppl27']['container_ip'] }}:{{ hostvars['wppl27']['default_p2p_port_ws'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['wppl27']['default_p2p_port_wss'] }}" + # to_host: "{{ hostvars['wppl27']['container_ip'] }}:{{ hostvars['wppl27']['default_p2p_port_wss'] }}" + # protocol: "tcp" - host: "rpc-asset-hub-paseo-02" proxmox_config: vmid: "340102" @@ -306,41 +271,41 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-asset-hub-paseo-02']['default_p2p_port_wss'] }}" to_host: "{{ hostvars['rpc-asset-hub-paseo-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-paseo-02']['default_p2p_port_wss'] }}" protocol: "tcp" - - host: "mint27" - proxmox_config: - vmid: "617" - hostname: "{{ hostvars['mint27']['host_name'] }}" - ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['mint27']['netif'] }}" - cores: 4 - memory: 16384 - swap: 8192 - password: "{{ default_password }}" - disk: "{{ lvm_storage }}:20" - mounts: '{"mp0":"{{ lvm_storage }}:100,mp={{ hostvars["mint27"]["default_database_path"] }}"}' - onboot: True - unprivileged: True - validate_certs: False - description: "{{ hostvars['mint27']['default_network'] }} {{ hostvars['mint27']['default_node_type'] }}: {{ hostvars['mint27']['host_name'] }}" - state: present - features: - - nesting=1 - port_forwards: - - from_port: "{{ hostvars['mint27']['ansible_port'] }}" - to_host: "{{ hostvars['mint27']['container_ip'] }}:22" - protocol: "tcp" - - from_port: "{{ hostvars['mint27']['zabbix_ext_port'] }}" - to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" - protocol: "tcp" - - from_port: "{{ hostvars['mint27']['default_p2p_port'] }}" - to_host: "{{ hostvars['mint27']['container_ip'] }}:{{ hostvars['mint27']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['mint27']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['mint27']['container_ip'] }}:{{ hostvars['mint27']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['mint27']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['mint27']['container_ip'] }}:{{ hostvars['mint27']['default_p2p_port_wss'] }}" - protocol: "tcp" + # - host: "mint27" + # proxmox_config: + # vmid: "617" + # hostname: "{{ hostvars['mint27']['host_name'] }}" + # ostemplate: "local:vztmpl/{{ default_container_template }}" + # netif: "{{ hostvars['mint27']['netif'] }}" + # cores: 4 + # memory: 16384 + # swap: 8192 + # password: "{{ default_password }}" + # disk: "{{ lvm_storage }}:20" + # mounts: '{"mp0":"{{ lvm_storage }}:100,mp={{ hostvars["mint27"]["default_database_path"] }}"}' + # onboot: True + # unprivileged: True + # validate_certs: False + # description: "{{ hostvars['mint27']['default_network'] }} {{ hostvars['mint27']['default_node_type'] }}: {{ hostvars['mint27']['host_name'] }}" + # state: present + # features: + # - nesting=1 + # port_forwards: + # - from_port: "{{ hostvars['mint27']['ansible_port'] }}" + # to_host: "{{ hostvars['mint27']['container_ip'] }}:22" + # protocol: "tcp" + # - from_port: "{{ hostvars['mint27']['zabbix_ext_port'] }}" + # to_host: "{{ hostvars['monitor']['container_ip'] }}:10050" + # protocol: "tcp" + # - from_port: "{{ hostvars['mint27']['default_p2p_port'] }}" + # to_host: "{{ hostvars['mint27']['container_ip'] }}:{{ hostvars['mint27']['default_p2p_port'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['mint27']['default_p2p_port_ws'] }}" + # to_host: "{{ hostvars['mint27']['container_ip'] }}:{{ hostvars['mint27']['default_p2p_port_ws'] }}" + # protocol: "tcp" + # - from_port: "{{ hostvars['mint27']['default_p2p_port_wss'] }}" + # to_host: "{{ hostvars['mint27']['container_ip'] }}:{{ hostvars['mint27']['default_p2p_port_wss'] }}" + # protocol: "tcp" - host: "rpc-people-polkadot-02" proxmox_config: vmid: "310602" @@ -632,12 +597,6 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-asset-hub-polkadot-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-asset-hub-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-polkadot-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-asset-hub-polkadot-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-asset-hub-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-polkadot-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-asset-hub-polkadot-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-asset-hub-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-polkadot-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "rpc-bridge-hub-polkadot-02" proxmox_config: vmid: "310202" @@ -667,12 +626,6 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-bridge-hub-polkadot-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-bridge-hub-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-polkadot-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-polkadot-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-polkadot-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-polkadot-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-polkadot-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "rpc-bridge-hub-westend-02" proxmox_config: vmid: "330202" @@ -702,12 +655,6 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-bridge-hub-westend-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-bridge-hub-westend-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-westend-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-westend-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-westend-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-westend-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-westend-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-westend-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-westend-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "rpc-collectives-polkadot-02" proxmox_config: vmid: "310702" @@ -737,12 +684,6 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-collectives-polkadot-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-collectives-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-collectives-polkadot-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-collectives-polkadot-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-collectives-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-collectives-polkadot-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-collectives-polkadot-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-collectives-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-collectives-polkadot-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "rpc-collectives-westend-02" proxmox_config: vmid: "330702" @@ -772,12 +713,6 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-collectives-westend-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-collectives-westend-02']['container_ip'] }}:{{ hostvars['rpc-collectives-westend-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-collectives-westend-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-collectives-westend-02']['container_ip'] }}:{{ hostvars['rpc-collectives-westend-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-collectives-westend-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-collectives-westend-02']['container_ip'] }}:{{ hostvars['rpc-collectives-westend-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "rpc-coretime-polkadot-02" proxmox_config: vmid: "310402" @@ -807,12 +742,6 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-coretime-polkadot-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-coretime-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-coretime-polkadot-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-coretime-polkadot-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-coretime-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-coretime-polkadot-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-coretime-polkadot-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-coretime-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-coretime-polkadot-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "rpc-coretime-westend-02" proxmox_config: vmid: "33052" @@ -900,140 +829,64 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-people-westend-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-people-westend-02']['container_ip'] }}:{{ hostvars['rpc-people-westend-02']['default_p2p_port'] }}" protocol: "tcp" - - host: "rpc-asset-hub-kusama-01" + - host: "rpc-asset-hub-kusama-02" proxmox_config: vmid: "32011" - hostname: "{{ hostvars['rpc-asset-hub-kusama-01']['host_name'] }}" + hostname: "{{ hostvars['rpc-asset-hub-kusama-02']['host_name'] }}" ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['rpc-asset-hub-kusama-01']['netif'] }}" + netif: "{{ hostvars['rpc-asset-hub-kusama-02']['netif'] }}" cores: 4 memory: 16384 swap: 8192 password: "{{ default_password }}" disk: "{{ zfs_storage }}:20" - mounts: '{"mp0":"{{ zfs_storage }}:250,mp={{ hostvars["rpc-asset-hub-kusama-01"]["default_database_path"] }}"}' + mounts: '{"mp0":"{{ zfs_storage }}:250,mp={{ hostvars["rpc-asset-hub-kusama-02"]["default_database_path"] }}"}' onboot: True unprivileged: True validate_certs: False - description: "{{ hostvars['rpc-asset-hub-kusama-01']['default_network'] }} {{ hostvars['rpc-asset-hub-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-asset-hub-kusama-01']['host_name'] }}" + description: "{{ hostvars['rpc-asset-hub-kusama-02']['default_network'] }} {{ hostvars['rpc-asset-hub-kusama-02']['default_node_type'] }}: {{ hostvars['rpc-asset-hub-kusama-02']['host_name'] }}" state: present features: - nesting=1 port_forwards: - - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['ansible_port'] }}" - to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ ssh_port }}" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-02']['container_ip'] }}:{{ ssh_port }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['zabbix_ext_port'] }}" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['zabbix_ext_port'] }}" to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-asset-hub-kusama-01']['default_p2p_port'] }}" - to_host: "{{ hostvars['rpc-asset-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-01']['default_p2p_port'] }}" + - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-asset-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port'] }}" protocol: "tcp" - # - host: "rpc-asset-hub-kusama-02" - # proxmox_config: - # vmid: "320102" - # hostname: "{{ hostvars['rpc-asset-hub-kusama-02']['host_name'] }}" - # ostemplate: "local:vztmpl/{{ default_container_template }}" - # netif: "{{ hostvars['rpc-asset-hub-kusama-02']['netif'] }}" - # cores: 4 - # memory: 16384 - # swap: 8192 - # password: "{{ default_password }}" - # disk: "{{ zfs_storage }}:20" - # mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-asset-hub-kusama-02"]["default_database_path"] }}"}' - # onboot: True - # unprivileged: True - # validate_certs: False - # description: "{{ hostvars['rpc-asset-hub-kusama-02']['default_network'] }} {{ hostvars['rpc-asset-hub-kusama-02']['default_node_type'] }}: {{ hostvars['rpc-asset-hub-kusama-02']['host_name'] }}" - # state: present - # features: - # - nesting=1 - # port_forwards: - # - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['ansible_port'] }}" - # to_host: "{{ hostvars['rpc-asset-hub-kusama-02']['container_ip'] }}:{{ ssh_port }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['zabbix_ext_port'] }}" - # to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port'] }}" - # to_host: "{{ hostvars['rpc-asset-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port_ws'] }}" - # to_host: "{{ hostvars['rpc-asset-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port_ws'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port_wss'] }}" - # to_host: "{{ hostvars['rpc-asset-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-asset-hub-kusama-02']['default_p2p_port_wss'] }}" - # protocol: "tcp" - - host: "rpc-bridge-hub-kusama-01" + - host: "rpc-bridge-hub-kusama-02" proxmox_config: - vmid: "32021" - hostname: "{{ hostvars['rpc-bridge-hub-kusama-01']['host_name'] }}" + vmid: "32022" + hostname: "{{ hostvars['rpc-bridge-hub-kusama-02']['host_name'] }}" ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['rpc-bridge-hub-kusama-01']['netif'] }}" + netif: "{{ hostvars['rpc-bridge-hub-kusama-02']['netif'] }}" cores: 4 memory: 16384 swap: 8192 password: "{{ default_password }}" disk: "{{ zfs_storage }}:20" - mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-bridge-hub-kusama-01"]["default_database_path"] }}"}' + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-bridge-hub-kusama-02"]["default_database_path"] }}"}' onboot: True unprivileged: True validate_certs: False - description: "{{ hostvars['rpc-bridge-hub-kusama-01']['default_network'] }} {{ hostvars['rpc-bridge-hub-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-bridge-hub-kusama-01']['host_name'] }}" + description: "{{ hostvars['rpc-bridge-hub-kusama-02']['default_network'] }} {{ hostvars['rpc-bridge-hub-kusama-02']['default_node_type'] }}: {{ hostvars['rpc-bridge-hub-kusama-02']['host_name'] }}" state: present features: - nesting=1 port_forwards: - - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['ansible_port'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ ssh_port }}" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-02']['container_ip'] }}:{{ ssh_port }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['zabbix_ext_port'] }}" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['zabbix_ext_port'] }}" to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port_ws'] }}" + - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-bridge-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['rpc-bridge-hub-kusama-01']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-01']['default_p2p_port_wss'] }}" - protocol: "tcp" - # - host: "rpc-bridge-hub-kusama-02" - # proxmox_config: - # vmid: "320202" - # hostname: "{{ hostvars['rpc-bridge-hub-kusama-02']['host_name'] }}" - # ostemplate: "local:vztmpl/{{ default_container_template }}" - # netif: "{{ hostvars['rpc-bridge-hub-kusama-02']['netif'] }}" - # cores: 4 - # memory: 16384 - # swap: 8192 - # password: "{{ default_password }}" - # disk: "{{ zfs_storage }}:20" - # mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-bridge-hub-kusama-02"]["default_database_path"] }}"}' - # onboot: True - # unprivileged: True - # validate_certs: False - # description: "{{ hostvars['rpc-bridge-hub-kusama-02']['default_network'] }} {{ hostvars['rpc-bridge-hub-kusama-02']['default_node_type'] }}: {{ hostvars['rpc-bridge-hub-kusama-02']['host_name'] }}" - # state: present - # features: - # - nesting=1 - # port_forwards: - # - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['ansible_port'] }}" - # to_host: "{{ hostvars['rpc-bridge-hub-kusama-02']['container_ip'] }}:{{ ssh_port }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['zabbix_ext_port'] }}" - # to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port'] }}" - # to_host: "{{ hostvars['rpc-bridge-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port_ws'] }}" - # to_host: "{{ hostvars['rpc-bridge-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port_ws'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port_wss'] }}" - # to_host: "{{ hostvars['rpc-bridge-hub-kusama-02']['container_ip'] }}:{{ hostvars['rpc-bridge-hub-kusama-02']['default_p2p_port_wss'] }}" - # protocol: "tcp" - host: "rpc-coretime-kusama-02" proxmox_config: vmid: "32052" @@ -1092,70 +945,35 @@ lxc_nodes: - from_port: "{{ hostvars['rpc-people-kusama-02']['default_p2p_port'] }}" to_host: "{{ hostvars['rpc-people-kusama-02']['container_ip'] }}:{{ hostvars['rpc-people-kusama-02']['default_p2p_port'] }}" protocol: "tcp" - - host: "rpc-encointer-kusama-01" + - host: "rpc-encointer-kusama-02" proxmox_config: vmid: "32061" - hostname: "{{ hostvars['rpc-encointer-kusama-01']['host_name'] }}" + hostname: "{{ hostvars['rpc-encointer-kusama-02']['host_name'] }}" ostemplate: "local:vztmpl/{{ default_container_template }}" - netif: "{{ hostvars['rpc-encointer-kusama-01']['netif'] }}" + netif: "{{ hostvars['rpc-encointer-kusama-02']['netif'] }}" cores: 4 memory: 16384 swap: 8192 password: "{{ default_password }}" disk: "{{ zfs_storage }}:20" - mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-encointer-kusama-01"]["default_database_path"] }}"}' + mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-encointer-kusama-02"]["default_database_path"] }}"}' onboot: True unprivileged: True validate_certs: False - description: "{{ hostvars['rpc-encointer-kusama-01']['default_network'] }} {{ hostvars['rpc-encointer-kusama-01']['default_node_type'] }}: {{ hostvars['rpc-encointer-kusama-01']['host_name'] }}" + description: "{{ hostvars['rpc-encointer-kusama-02']['default_network'] }} {{ hostvars['rpc-encointer-kusama-02']['default_node_type'] }}: {{ hostvars['rpc-encointer-kusama-02']['host_name'] }}" state: present features: - nesting=1 port_forwards: - - from_port: "{{ hostvars['rpc-encointer-kusama-01']['ansible_port'] }}" - to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ ssh_port }}" + - from_port: "{{ hostvars['rpc-encointer-kusama-02']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-02']['container_ip'] }}:{{ ssh_port }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-encointer-kusama-01']['zabbix_ext_port'] }}" + - from_port: "{{ hostvars['rpc-encointer-kusama-02']['zabbix_ext_port'] }}" to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" protocol: "tcp" - - from_port: "{{ hostvars['rpc-encointer-kusama-01']['default_p2p_port'] }}" - to_host: "{{ hostvars['rpc-encointer-kusama-01']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-01']['default_p2p_port'] }}" + - from_port: "{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-encointer-kusama-02']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port'] }}" protocol: "tcp" - # - host: "rpc-encointer-kusama-02" - # proxmox_config: - # vmid: "320702" - # hostname: "{{ hostvars['rpc-encointer-kusama-02']['host_name'] }}" - # ostemplate: "local:vztmpl/{{ default_container_template }}" - # netif: "{{ hostvars['rpc-encointer-kusama-02']['netif'] }}" - # cores: 4 - # memory: 16384 - # swap: 8192 - # password: "{{ default_password }}" - # disk: "{{ zfs_storage }}:20" - # mounts: '{"mp0":"{{ zfs_storage }}:100,mp={{ hostvars["rpc-encointer-kusama-02"]["default_database_path"] }}"}' - # onboot: True - # unprivileged: True - # validate_certs: False - # description: "{{ hostvars['rpc-encointer-kusama-02']['default_network'] }} {{ hostvars['rpc-encointer-kusama-02']['default_node_type'] }}: {{ hostvars['rpc-encointer-kusama-02']['host_name'] }}" - # state: present - # features: - # - nesting=1 - # port_forwards: - # - from_port: "{{ hostvars['rpc-encointer-kusama-02']['ansible_port'] }}" - # to_host: "{{ hostvars['rpc-encointer-kusama-02']['container_ip'] }}:{{ ssh_port }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-encointer-kusama-02']['zabbix_ext_port'] }}" - # to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port'] }}" - # to_host: "{{ hostvars['rpc-encointer-kusama-02']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port_ws'] }}" - # to_host: "{{ hostvars['rpc-encointer-kusama-02']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port_ws'] }}" - # protocol: "tcp" - # - from_port: "{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port_wss'] }}" - # to_host: "{{ hostvars['rpc-encointer-kusama-02']['container_ip'] }}:{{ hostvars['rpc-encointer-kusama-02']['default_p2p_port_wss'] }}" - # protocol: "tcp" - host: "val-polkadot-02" proxmox_config: vmid: "31022" @@ -1185,12 +1003,6 @@ lxc_nodes: - from_port: "{{ hostvars['val-polkadot-02']['default_p2p_port'] }}" to_host: "{{ hostvars['val-polkadot-02']['container_ip'] }}:{{ hostvars['val-polkadot-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['val-polkadot-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['val-polkadot-02']['container_ip'] }}:{{ hostvars['val-polkadot-02']['default_p2p_port_ws'] }}" - protocol: "tcp" - - from_port: "{{ hostvars['val-polkadot-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['val-polkadot-02']['container_ip'] }}:{{ hostvars['val-polkadot-02']['default_p2p_port_wss'] }}" - protocol: "tcp" - host: "val-kusama-02" proxmox_config: vmid: "32022" @@ -1220,9 +1032,209 @@ lxc_nodes: - from_port: "{{ hostvars['val-kusama-02']['default_p2p_port'] }}" to_host: "{{ hostvars['val-kusama-02']['container_ip'] }}:{{ hostvars['val-kusama-02']['default_p2p_port'] }}" protocol: "tcp" - - from_port: "{{ hostvars['val-kusama-02']['default_p2p_port_ws'] }}" - to_host: "{{ hostvars['val-kusama-02']['container_ip'] }}:{{ hostvars['val-kusama-02']['default_p2p_port_ws'] }}" + - host: "ibp-bkk07" + proxmox_config: + vmid: "996" + hostname: "{{ hostvars['ibp-bkk07']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['ibp-bkk07']['netif'] }}" + cores: 1 + memory: 512 + swap: 256 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:66" + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['ibp-bkk07']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['ibp-bkk07']['ansible_port'] }}" + to_host: "{{ hostvars['ibp-bkk07']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['ibp-bkk07']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - host: "haproxy-bkk07" + proxmox_config: + vmid: "991" + hostname: "{{ hostvars['haproxy-bkk07']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['haproxy-bkk07']['netif'] }}" + cores: 8 + memory: 4000 + swap: 256 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:60" + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['haproxy-bkk07']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['haproxy-bkk07']['ansible_port'] }}" + to_host: "{{ hostvars['haproxy-bkk07']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['haproxy-bkk07']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - host: "build-node-07" + proxmox_config: + vmid: "977" + hostname: "{{ hostvars['build-node-07']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['build-node-07']['netif'] }}" + cores: 16 + memory: 16384 + swap: 256 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:50" + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['build-node-07']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['build-node-07']['ansible_port'] }}" + to_host: "{{ hostvars['build-node-07']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['build-node-07']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - host: "dockers" + proxmox_config: + vmid: "992" + hostname: "{{ hostvars['dockers']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['dockers']['netif'] }}" + cores: 1 + memory: 4000 + swap: 256 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:15" + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['dockers']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['dockers']['ansible_port'] }}" + to_host: "{{ hostvars['dockers']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['dockers']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - host: "proxy-bkk07" + proxmox_config: + vmid: "993" + hostname: "{{ hostvars['proxy-bkk07']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['proxy-bkk07']['netif'] }}" + cores: 1 + memory: 4000 + swap: 256 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:15" + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['proxy-bkk07']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['proxy-bkk07']['ansible_port'] }}" + to_host: "{{ hostvars['proxy-bkk07']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['proxy-bkk07']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" + protocol: "tcp" + - host: "penumbra-02" + proxmox_config: + vmid: "1102" + hostname: "{{ hostvars['penumbra-02']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['penumbra-02']['netif'] }}" + cores: 4 + memory: 8192 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:200,mp={{ hostvars["penumbra-02"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['penumbra-02']['default_network'] }} {{ hostvars['penumbra-02']['default_node_type'] }}: {{ hostvars['penumbra-02']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['penumbra-02']['ansible_port'] }}" + to_host: "{{ hostvars['penumbra-02']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['penumbra-02']['default_cometbft_p2p_port'] }}" + to_host: "{{ hostvars['penumbra-02']['container_ip'] }}:{{ hostvars['penumbra-02']['default_cometbft_p2p_port'] }}" + protocol: "tcp" + - host: "rpc-kilt-polkadot-02" + proxmox_config: + vmid: "31242" + hostname: "{{ hostvars['rpc-kilt-polkadot-02']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-kilt-polkadot-02']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:200,mp={{ hostvars["rpc-kilt-polkadot-02"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-kilt-polkadot-02']['default_network'] }} {{ hostvars['rpc-kilt-polkadot-02']['default_node_type'] }}: {{ hostvars['rpc-kilt-polkadot-02']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-kilt-polkadot-02']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-kilt-polkadot-02']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-kilt-polkadot-02']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-kilt-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-kilt-polkadot-02']['default_p2p_port'] }}" + protocol: "tcp" + - host: "rpc-hydration-polkadot-02" + proxmox_config: + vmid: "31262" + hostname: "{{ hostvars['rpc-hydration-polkadot-02']['host_name'] }}" + ostemplate: "local:vztmpl/{{ default_container_template }}" + netif: "{{ hostvars['rpc-hydration-polkadot-02']['netif'] }}" + cores: 4 + memory: 16384 + swap: 8192 + password: "{{ default_password }}" + disk: "{{ zfs_storage }}:20" + mounts: '{"mp0":"{{ zfs_storage }}:150,mp={{ hostvars["rpc-hydration-polkadot-02"]["default_database_path"] }}"}' + onboot: True + unprivileged: True + validate_certs: False + description: "{{ hostvars['rpc-hydration-polkadot-02']['default_network'] }} {{ hostvars['rpc-hydration-polkadot-02']['default_node_type'] }}: {{ hostvars['rpc-hydration-polkadot-02']['host_name'] }}" + state: present + features: + - nesting=1 + port_forwards: + - from_port: "{{ hostvars['rpc-hydration-polkadot-02']['ansible_port'] }}" + to_host: "{{ hostvars['rpc-hydration-polkadot-02']['container_ip'] }}:{{ ssh_port }}" + protocol: "tcp" + - from_port: "{{ hostvars['rpc-hydration-polkadot-02']['zabbix_ext_port'] }}" + to_host: "{{ hostvars['monitor']['container_ip'] }}:{{ zabbix_port }}" protocol: "tcp" - - from_port: "{{ hostvars['val-kusama-02']['default_p2p_port_wss'] }}" - to_host: "{{ hostvars['val-kusama-02']['container_ip'] }}:{{ hostvars['val-kusama-02']['default_p2p_port_wss'] }}" + - from_port: "{{ hostvars['rpc-hydration-polkadot-02']['default_p2p_port'] }}" + to_host: "{{ hostvars['rpc-hydration-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-hydration-polkadot-02']['default_p2p_port'] }}" protocol: "tcp" diff --git a/host_vars/build-node-07.yaml b/host_vars/build-node-07.yaml new file mode 100644 index 0000000..5ebaea5 --- /dev/null +++ b/host_vars/build-node-07.yaml @@ -0,0 +1,10 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.77.177" +ansible_port: 2917 +host_name: "build-node-07" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +pinned_service: False + +zabbix_ext_port: 10177 diff --git a/host_vars/dockers.yaml b/host_vars/dockers.yaml new file mode 100644 index 0000000..66f0715 --- /dev/null +++ b/host_vars/dockers.yaml @@ -0,0 +1,10 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.77.92" +ansible_port: 2992 +host_name: "dockers" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +pinned_service: False + +zabbix_ext_port: 10172 diff --git a/host_vars/haproxy-bkk06.yaml b/host_vars/haproxy-bkk06.yaml new file mode 100644 index 0000000..5c40fb8 --- /dev/null +++ b/host_vars/haproxy-bkk06.yaml @@ -0,0 +1,11 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.76.91" +ansible_port: 2961 +host_name: "haproxy-bkk06" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: +pinned_service: False +default_node_type: +zabbix_ext_port: 10961 diff --git a/host_vars/haproxy-bkk07.yaml b/host_vars/haproxy-bkk07.yaml new file mode 100644 index 0000000..ab76d42 --- /dev/null +++ b/host_vars/haproxy-bkk07.yaml @@ -0,0 +1,11 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.77.91" +ansible_port: 2991 +host_name: "haproxy-bkk07" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: +pinned_service: False +default_node_type: +zabbix_ext_port: 10991 diff --git a/host_vars/ibp-bkk07.yaml b/host_vars/ibp-bkk07.yaml new file mode 100644 index 0000000..5db1ebd --- /dev/null +++ b/host_vars/ibp-bkk07.yaml @@ -0,0 +1,11 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.77.97" +ansible_port: 2996 +host_name: "ibp.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "ibp" +pinned_service: False +default_node_type: prometheus +zabbix_ext_port: 10314 diff --git a/host_vars/penumbra-02.yaml b/host_vars/penumbra-02.yaml new file mode 100644 index 0000000..e0054e3 --- /dev/null +++ b/host_vars/penumbra-02.yaml @@ -0,0 +1,24 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.77.82" +ansible_port: 2482 +host_name: "penumbra-02.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/8,bridge={{ default_nat_device }}"}' +role: "penumbra" +pinned_service: True + +default_network: "penumbra" +default_node_type: "validator" +default_penumbra_metric_port: 9600 +default_cometbft_p2p_port: 26682 +default_cometbft_rpc_port: 26657 +default_acbi_port: 26658 +default_cometbft_database: "goleveldb" +# default_p2p_port: 33691 +# default_p2p_port_ws: 34691 +# default_p2p_port_wss: 35691 +# default_rpc_port: 9691 +# default_secure_rpc_port: 42691 +# default_prom_port: 7691 +# zabbix_ext_port: 10691 diff --git a/host_vars/proxy-bkk07.yaml b/host_vars/proxy-bkk07.yaml new file mode 100644 index 0000000..b238ebc --- /dev/null +++ b/host_vars/proxy-bkk07.yaml @@ -0,0 +1,9 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.69.254" +ansible_port: 2954 +host_name: "proxy-bkk07" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +pinned_service: False +zabbix_ext_port: 10954 diff --git a/host_vars/rpc-asset-hub-kusama-01.yaml b/host_vars/rpc-asset-hub-kusama-01.yaml index 3bf3cae..35575ac 100644 --- a/host_vars/rpc-asset-hub-kusama-01.yaml +++ b/host_vars/rpc-asset-hub-kusama-01.yaml @@ -1,29 +1,34 @@ --- ansible_host: "160.22.181.181" container_ip: "192.168.121.11" -ansible_port: 2623 -host_name: "rpc-asset-hub-kusama-01.rotko.net" +ansible_port: 2622 +host_name: "rpc-asset-hub-kusama-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "asset-hub-kusama" -default_relay_rpc: "ws://{{ hostvars['ksm26']['container_ip'] }}:{{ hostvars['ksm26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" default_database: paritydb # to be replaced with paritydb default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" - default_p2p_port: 32011 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" default_bootnode_p2p_port: 32011 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_secure_rpc_port: 42623 -zabbix_ext_port: 10623 +transition_bootnode_domain: "mine14.rotko.net" +transition_bootnode_p2p_port: 33524 +transition_bootnode_p2p_port_ws: 34524 +transition_bootnode_p2p_port_wss: 35524 + +default_rpc_port: 9400 +default_prom_port: 7400 + +default_secure_rpc_port: 42622 +zabbix_ext_port: 10622 diff --git a/host_vars/rpc-asset-hub-kusama-02.yaml b/host_vars/rpc-asset-hub-kusama-02.yaml index c376b62..f45ad7d 100644 --- a/host_vars/rpc-asset-hub-kusama-02.yaml +++ b/host_vars/rpc-asset-hub-kusama-02.yaml @@ -1,14 +1,14 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.24" -ansible_port: 2624 -host_name: "rpc-asset-hub-kusama-02.rotko.net" +container_ip: "192.168.122.11" +ansible_port: 2623 +host_name: "rpc-asset-hub-kusama-02.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "asset-hub-kusama" default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" @@ -18,13 +18,10 @@ default_node_type: "endpoint" default_bootnode_domain: "{{ default_network }}.boot.rotko.net" -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_p2p_port: 32012 +default_bootnode_p2p_port: 32012 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_rpc_port: 9300 -default_secure_rpc_port: 42624 -default_prom_port: 7624 -zabbix_ext_port: 10624 +default_secure_rpc_port: 42623 +zabbix_ext_port: 10623 diff --git a/host_vars/rpc-asset-hub-paseo-01.yaml b/host_vars/rpc-asset-hub-paseo-01.yaml index 965eafe..4d41849 100644 --- a/host_vars/rpc-asset-hub-paseo-01.yaml +++ b/host_vars/rpc-asset-hub-paseo-01.yaml @@ -1,8 +1,8 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.76.50" -ansible_port: 2956 -host_name: "rpc-asset-hub-paseo-01.rotko.net" +container_ip: "192.168.141.11" +ansible_port: 2958 +host_name: "rpc-asset-hub-paseo-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" @@ -13,20 +13,22 @@ default_domain: "{{ host_name }}" default_network: "asset-hub-paseo" default_chain_spec: "{{ default_base_path }}/asset-hub-paseo.raw.json" default_chain_spec_dl_url: "https://media.githubusercontent.com/media/paseo-network/paseo-chain-specs/main/ah-paseo-spec.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" -default_relay_rpc_fallback: "ws://{{ hostvars['pso24']['container_ip'] }}:{{ hostvars['pso24']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" -default_p2p_port: 33956 -default_p2p_port_ws: 34956 -default_p2p_port_wss: 35956 -default_rpc_port: 9956 -default_secure_rpc_port: 42956 -default_prom_port: 7956 -zabbix_ext_port: 10956 +default_p2p_port: 34011 +default_rpc_port: 9400 +default_secure_rpc_port: 42958 +default_prom_port: 7400 +zabbix_ext_port: 10958 -# default_bootnode_domain: "{{ default_network }}.boot.rotko.net" #TODO: Change to this -default_bootnode_domain: "pmint16.rotko.net" -default_bootnode_p2p_port: 33946 -default_bootnode_p2p_port_ws: 34946 -default_bootnode_p2p_port_wss: 35946 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" #TODO: Change to this +default_bootnode_p2p_port: 34011 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 + +transition_bootnode_domain: "pmint16.rotko.net" +transition_bootnode_p2p_port: 33946 +transition_bootnode_p2p_port_ws: 34946 +transition_bootnode_p2p_port_wss: 35946 diff --git a/host_vars/rpc-asset-hub-paseo-02.yaml b/host_vars/rpc-asset-hub-paseo-02.yaml index db76370..eb01ab5 100644 --- a/host_vars/rpc-asset-hub-paseo-02.yaml +++ b/host_vars/rpc-asset-hub-paseo-02.yaml @@ -13,8 +13,8 @@ default_domain: "{{ host_name }}" default_network: "asset-hub-paseo" default_chain_spec: "{{ default_base_path }}/asset-hub-paseo.raw.json" default_chain_spec_dl_url: "https://media.githubusercontent.com/media/paseo-network/paseo-chain-specs/main/ah-paseo-spec.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" -default_relay_rpc_fallback: "ws://{{ hostvars['pso24']['container_ip'] }}:{{ hostvars['pso24']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" default_p2p_port: 33957 diff --git a/host_vars/rpc-asset-hub-polkadot-01.yaml b/host_vars/rpc-asset-hub-polkadot-01.yaml index 641d379..79f4c4a 100644 --- a/host_vars/rpc-asset-hub-polkadot-01.yaml +++ b/host_vars/rpc-asset-hub-polkadot-01.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: asset-hub-polkadot -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" @@ -19,9 +19,9 @@ zabbix_ext_port: 10611 default_bootnode_domain: "{{ default_network }}.boot.rotko.net" transition_bootnode_domain: "mint14.rotko.net" -transition_bootnode_p2p_port: "33514" -transition_bootnode_p2p_port_ws: "34514" -transition_bootnode_p2p_port_wss: "35514" +transition_bootnode_p2p_port: 33514 +transition_bootnode_p2p_port_ws: 34514 +transition_bootnode_p2p_port_wss: 35514 default_p2p_port: 31011 default_bootnode_p2p_port: 31011 diff --git a/host_vars/rpc-asset-hub-polkadot-02.yaml b/host_vars/rpc-asset-hub-polkadot-02.yaml index a5a3542..00d2caf 100644 --- a/host_vars/rpc-asset-hub-polkadot-02.yaml +++ b/host_vars/rpc-asset-hub-polkadot-02.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: asset-hub-polkadot -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: paritydb default_node_type: "endpoint" diff --git a/host_vars/rpc-asset-hub-westend-01.yaml b/host_vars/rpc-asset-hub-westend-01.yaml index afbe8ba..c3892a9 100644 --- a/host_vars/rpc-asset-hub-westend-01.yaml +++ b/host_vars/rpc-asset-hub-westend-01.yaml @@ -11,18 +11,18 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "asset-hub-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" transition_bootnode_domain: "wmint14.rotko.net" -transition_bootnode_p2p_port: "33534" -transition_bootnode_p2p_port_ws: "34534" -transition_bootnode_p2p_port_wss: "35534" +transition_bootnode_p2p_port: 33534 +transition_bootnode_p2p_port_ws: 34534 +transition_bootnode_p2p_port_wss: 35534 default_p2p_port: 33011 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" default_bootnode_p2p_port: 33011 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 diff --git a/host_vars/rpc-asset-hub-westend-02.yaml b/host_vars/rpc-asset-hub-westend-02.yaml index 690c9cb..adb12d9 100644 --- a/host_vars/rpc-asset-hub-westend-02.yaml +++ b/host_vars/rpc-asset-hub-westend-02.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: "asset-hub-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-bridge-hub-kusama-01.yaml b/host_vars/rpc-bridge-hub-kusama-01.yaml index 362b9b3..19c02e3 100644 --- a/host_vars/rpc-bridge-hub-kusama-01.yaml +++ b/host_vars/rpc-bridge-hub-kusama-01.yaml @@ -1,29 +1,31 @@ --- ansible_host: "160.22.181.181" container_ip: "192.168.121.12" -ansible_port: 2651 -host_name: "rpc-bridge-hub-kusama-01.rotko.net" +ansible_port: 2652 +host_name: "rpc-bridge-hub-kusama-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "bridge-hub-kusama" -default_relay_rpc: "ws://{{ hostvars['ksm26']['container_ip'] }}:{{ hostvars['ksm26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" -default_database: paritydb # to be replaced with paritydb +default_database: rocksdb default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +transition_bootnode_domain: "kbr13.rotko.net" +transition_bootnode_p2p_port: 33553 +transition_bootnode_p2p_port_ws: 34553 +transition_bootnode_p2p_port_wss: 35553 default_p2p_port: 32021 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" default_bootnode_p2p_port: 32021 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_secure_rpc_port: 42651 -zabbix_ext_port: 10651 +default_secure_rpc_port: 42652 +zabbix_ext_port: 10652 diff --git a/host_vars/rpc-bridge-hub-kusama-02.yaml b/host_vars/rpc-bridge-hub-kusama-02.yaml index 14aaf17..4962a5a 100644 --- a/host_vars/rpc-bridge-hub-kusama-02.yaml +++ b/host_vars/rpc-bridge-hub-kusama-02.yaml @@ -1,14 +1,14 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.26" -ansible_port: 2652 -host_name: "rpc-bridge-hub-kusama-02.rotko.net" +container_ip: "192.168.122.12" +ansible_port: 2651 +host_name: "rpc-bridge-hub-kusama-02.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "bridge-hub-kusama" default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" @@ -18,13 +18,10 @@ default_node_type: "endpoint" default_bootnode_domain: "{{ default_network }}.boot.rotko.net" -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_p2p_port: 32022 +default_bootnode_p2p_port: 32022 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_rpc_port: 9300 -default_secure_rpc_port: 42652 -default_prom_port: 7652 -zabbix_ext_port: 10652 +default_secure_rpc_port: 42651 +zabbix_ext_port: 10651 diff --git a/host_vars/rpc-bridge-hub-paseo-01.yaml b/host_vars/rpc-bridge-hub-paseo-01.yaml index df25921..5b23145 100644 --- a/host_vars/rpc-bridge-hub-paseo-01.yaml +++ b/host_vars/rpc-bridge-hub-paseo-01.yaml @@ -2,7 +2,7 @@ ansible_host: "160.22.181.181" container_ip: "192.168.76.60" ansible_port: 2966 -host_name: "rpc-bridge-hub-paseo-01.rotko.net" +host_name: "rpc-bridge-hub-paseo-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" @@ -12,20 +12,21 @@ default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ defau default_domain: "{{ host_name }}" default_network: "bridge-hub-paseo" default_chain_spec: "{{ default_base_path }}/bridge-hub-paseo.raw.json" -default_chain_spec_dl_url: "https://raw.githubusercontent.com/paseo-network/runtimes/main/chain-specs/bridge-hub-paseo.raw.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" -default_relay_rpc_fallback: "ws://{{ hostvars['pso24']['container_ip'] }}:{{ hostvars['pso24']['default_rpc_port'] }}" +#make sure the chain-spec dl url is working +default_chain_spec_dl_url: "https://github.com/paseo-network/paseo-chain-specs/raw/refs/heads/main/paseo-bridge-hub.raw.json" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" -default_p2p_port: 33966 -default_p2p_port_ws: 34966 -default_p2p_port_wss: 35966 +default_p2p_port: 34021 +default_p2p_port_ws: 30434 +default_p2p_port_wss: 30435 default_rpc_port: 9966 default_secure_rpc_port: 42966 default_prom_port: 7966 zabbix_ext_port: 10966 -default_bootnode_domain: "boot-{{ default_network }}.rotko.net" -default_bootnode_p2p_port: "{{ default_p2p_port + 10500 }}" -default_bootnode_p2p_port_ws: "{{ default_p2p_port_ws + 10500 }}" -default_bootnode_p2p_port_wss: "{{ default_p2p_port_wss + 10500 }}" +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 34021 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 diff --git a/host_vars/rpc-bridge-hub-paseo-02.yaml b/host_vars/rpc-bridge-hub-paseo-02.yaml index d267cb1..c68f40d 100644 --- a/host_vars/rpc-bridge-hub-paseo-02.yaml +++ b/host_vars/rpc-bridge-hub-paseo-02.yaml @@ -12,9 +12,10 @@ default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ defau default_domain: "{{ host_name }}" default_network: "bridge-hub-paseo" default_chain_spec: "{{ default_base_path }}/bridge-hub-paseo.raw.json" -default_chain_spec_dl_url: "https://raw.githubusercontent.com/paseo-network/runtimes/main/chain-specs/bridge-hub-paseo.raw.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" -default_relay_rpc_fallback: "ws://{{ hostvars['pso24']['container_ip'] }}:{{ hostvars['pso24']['default_rpc_port'] }}" +#make sure the chain-spec dl url is working +default_chain_spec_dl_url: "https://github.com/paseo-network/paseo-chain-specs/raw/refs/heads/main/paseo-bridge-hub.raw.json" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" default_p2p_port: 33967 diff --git a/host_vars/rpc-bridge-hub-polkadot-01.yaml b/host_vars/rpc-bridge-hub-polkadot-01.yaml index 4b55ee1..a1bb9e7 100644 --- a/host_vars/rpc-bridge-hub-polkadot-01.yaml +++ b/host_vars/rpc-bridge-hub-polkadot-01.yaml @@ -11,19 +11,19 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "bridge-hub-polkadot" -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" zabbix_ext_port: 10641 -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" transition_bootnode_domain: "pbr13.rotko.net" -transition_bootnode_p2p_port: "33543" -transition_bootnode_p2p_port_ws: "34543" -transition_bootnode_p2p_port_wss: "35543" +transition_bootnode_p2p_port: 33543 +transition_bootnode_p2p_port_ws: 34543 +transition_bootnode_p2p_port_wss: 35543 default_p2p_port: 31021 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" default_bootnode_p2p_port: 31021 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 diff --git a/host_vars/rpc-bridge-hub-polkadot-02.yaml b/host_vars/rpc-bridge-hub-polkadot-02.yaml index b387f77..2298f37 100644 --- a/host_vars/rpc-bridge-hub-polkadot-02.yaml +++ b/host_vars/rpc-bridge-hub-polkadot-02.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: "bridge-hub-polkadot" -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" diff --git a/host_vars/rpc-bridge-hub-westend-01.yaml b/host_vars/rpc-bridge-hub-westend-01.yaml index 8e1ebf2..7b755e6 100644 --- a/host_vars/rpc-bridge-hub-westend-01.yaml +++ b/host_vars/rpc-bridge-hub-westend-01.yaml @@ -11,19 +11,19 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "bridge-hub-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" zabbix_ext_port: 10661 -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" transition_bootnode_domain: "wbr13.rotko.net" -transition_bootnode_p2p_port: "33563" -transition_bootnode_p2p_port_ws: "34563" -transition_bootnode_p2p_port_wss: "35563" +transition_bootnode_p2p_port: 33563 +transition_bootnode_p2p_port_ws: 34563 +transition_bootnode_p2p_port_wss: 35563 default_p2p_port: 33021 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" default_bootnode_p2p_port: 33021 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 diff --git a/host_vars/rpc-bridge-hub-westend-02.yaml b/host_vars/rpc-bridge-hub-westend-02.yaml index 6cfa7a1..c29bf55 100644 --- a/host_vars/rpc-bridge-hub-westend-02.yaml +++ b/host_vars/rpc-bridge-hub-westend-02.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: "bridge-hub-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-collectives-polkadot-01.yaml b/host_vars/rpc-collectives-polkadot-01.yaml index f62f7d9..c825fa8 100644 --- a/host_vars/rpc-collectives-polkadot-01.yaml +++ b/host_vars/rpc-collectives-polkadot-01.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: collectives-polkadot -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" @@ -19,9 +19,9 @@ zabbix_ext_port: 10671 default_bootnode_domain: "{{ default_network }}.boot.rotko.net" transition_bootnode_domain: "pch16.rotko.net" -transition_bootnode_p2p_port: "33576" -transition_bootnode_p2p_port_ws: "34576" -transition_bootnode_p2p_port_wss: "35576" +transition_bootnode_p2p_port: 33576 +transition_bootnode_p2p_port_ws: 34576 +transition_bootnode_p2p_port_wss: 35576 default_p2p_port: 31031 default_bootnode_p2p_port: 31031 diff --git a/host_vars/rpc-collectives-polkadot-02.yaml b/host_vars/rpc-collectives-polkadot-02.yaml index 5eec2d0..4b49046 100644 --- a/host_vars/rpc-collectives-polkadot-02.yaml +++ b/host_vars/rpc-collectives-polkadot-02.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: collectives-polkadot -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-collectives-westend-01.yaml b/host_vars/rpc-collectives-westend-01.yaml index 605aace..311188c 100644 --- a/host_vars/rpc-collectives-westend-01.yaml +++ b/host_vars/rpc-collectives-westend-01.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "collectives-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" @@ -19,9 +19,9 @@ zabbix_ext_port: 10691 default_bootnode_domain: "{{ default_network }}.boot.rotko.net" transition_bootnode_domain: "wch13.rotko.net" -transition_bootnode_p2p_port: "33593" -transition_bootnode_p2p_port_ws: "34593" -transition_bootnode_p2p_port_wss: "35593" +transition_bootnode_p2p_port: 33593 +transition_bootnode_p2p_port_ws: 34593 +transition_bootnode_p2p_port_wss: 35593 default_p2p_port: 33031 default_bootnode_p2p_port: 33031 diff --git a/host_vars/rpc-collectives-westend-02.yaml b/host_vars/rpc-collectives-westend-02.yaml index 4e6f28b..b3fba9d 100644 --- a/host_vars/rpc-collectives-westend-02.yaml +++ b/host_vars/rpc-collectives-westend-02.yaml @@ -11,7 +11,7 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: "collectives-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-coretime-kusama-01.yaml b/host_vars/rpc-coretime-kusama-01.yaml index 6b49ab5..7240cf4 100644 --- a/host_vars/rpc-coretime-kusama-01.yaml +++ b/host_vars/rpc-coretime-kusama-01.yaml @@ -1,30 +1,31 @@ --- ansible_host: "160.22.181.181" container_ip: "192.168.121.15" -ansible_port: 2827 -host_name: "rpc-coretime-kusama-01.rotko.net" +ansible_port: 2824 +host_name: "rpc-coretime-kusama-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: False -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "coretime-kusama" default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" -default_database: paritydb +default_database: rocksdb default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +transition_bootnode_domain: "kcore16.rotko.net" +transition_bootnode_p2p_port: 33726 +transition_bootnode_p2p_port_ws: 34726 +transition_bootnode_p2p_port_wss: 35726 -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_p2p_port: 32051 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 32051 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_rpc_port: 9300 -default_secure_rpc_port: 42827 -default_prom_port: 7827 -zabbix_ext_port: 10827 +default_secure_rpc_port: 42824 +zabbix_ext_port: 10824 diff --git a/host_vars/rpc-coretime-kusama-02.yaml b/host_vars/rpc-coretime-kusama-02.yaml index d72a973..7043331 100644 --- a/host_vars/rpc-coretime-kusama-02.yaml +++ b/host_vars/rpc-coretime-kusama-02.yaml @@ -11,7 +11,7 @@ pinned_service: False default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: "coretime-kusama" -default_relay_rpc: "ws://{{ hostvars['ksm26']['container_ip'] }}:{{ hostvars['ksm26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-coretime-paseo-01.yaml b/host_vars/rpc-coretime-paseo-01.yaml index 1cd308b..aeb459f 100644 --- a/host_vars/rpc-coretime-paseo-01.yaml +++ b/host_vars/rpc-coretime-paseo-01.yaml @@ -14,7 +14,7 @@ default_network: "coretime-paseo" default_network_pathname: "paseo-coretime" default_chain_spec: "{{ default_base_path }}/coretime-paseo.raw.json" default_chain_spec_dl_url: "https://github.com/paseo-network/paseo-chain-specs/raw/refs/heads/main/paseo-coretime.raw.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" diff --git a/host_vars/rpc-coretime-paseo-02.yaml b/host_vars/rpc-coretime-paseo-02.yaml index b35ed74..09c9a7c 100644 --- a/host_vars/rpc-coretime-paseo-02.yaml +++ b/host_vars/rpc-coretime-paseo-02.yaml @@ -14,7 +14,7 @@ default_network: "coretime-paseo" default_network_pathname: "paseo-coretime" default_chain_spec: "{{ default_base_path }}/coretime-paseo.raw.json" default_chain_spec_dl_url: "https://github.com/paseo-network/paseo-chain-specs/raw/refs/heads/main/paseo-coretime.raw.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" diff --git a/host_vars/rpc-coretime-polkadot-01.yaml b/host_vars/rpc-coretime-polkadot-01.yaml new file mode 100644 index 0000000..481d33a --- /dev/null +++ b/host_vars/rpc-coretime-polkadot-01.yaml @@ -0,0 +1,30 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.176.16" +ansible_port: 2816 +host_name: "rpc-coretime-polkadot-01.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "cumulus" +pinned_service: True + +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_domain: "{{ host_name }}" +default_network: "coretime-polkadot" +default_chain_spec: "{{ default_base_path }}/coretime-polkadot.json" +default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/coretime-polkadot.json" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" +default_database: rocksdb +default_node_type: "endpoint" +zabbix_ext_port: 10816 + +default_p2p_port: 31051 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 31051 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 + +default_secure_rpc_port: 42816 +default_rpc_port: 9816 +default_prom_port: 7816 diff --git a/host_vars/rpc-coretime-polkadot-02.yaml b/host_vars/rpc-coretime-polkadot-02.yaml index af61c6f..fa98e6c 100644 --- a/host_vars/rpc-coretime-polkadot-02.yaml +++ b/host_vars/rpc-coretime-polkadot-02.yaml @@ -13,7 +13,7 @@ default_domain: "{{ host_name }}" default_network: "coretime-polkadot" default_chain_spec: "{{ default_base_path }}/coretime-polkadot.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/coretime-polkadot.json" -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: "paritydb" default_node_type: "endpoint" diff --git a/host_vars/rpc-coretime-westend-01.yaml b/host_vars/rpc-coretime-westend-01.yaml index ffeb7d2..cd70c70 100644 --- a/host_vars/rpc-coretime-westend-01.yaml +++ b/host_vars/rpc-coretime-westend-01.yaml @@ -1,30 +1,31 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.36" # i changed it to 36 for westend coretime 01 -al # 37 for coretime-westend -ansible_port: 2936 -host_name: "rpc-coretime-westend-01.rotko.net" +container_ip: "192.168.131.15" +ansible_port: 2916 +host_name: "rpc-coretime-westend-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: False -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "coretime-westend" default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" -default_database: paritydb +default_database: rocksdb default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +transition_bootnode_domain: "wcore16.rotko.net" +transition_bootnode_p2p_port: 33736 +transition_bootnode_p2p_port_ws: 34736 +transition_bootnode_p2p_port_wss: 35736 -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 -default_rpc_port: 9300 +default_p2p_port: 33051 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 33051 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_secure_rpc_port: 42936 -default_prom_port: 7936 -zabbix_ext_port: 10936 +default_secure_rpc_port: 42916 +zabbix_ext_port: 10916 diff --git a/host_vars/rpc-coretime-westend-02.yaml b/host_vars/rpc-coretime-westend-02.yaml index 8228eb5..e9a4031 100644 --- a/host_vars/rpc-coretime-westend-02.yaml +++ b/host_vars/rpc-coretime-westend-02.yaml @@ -11,7 +11,7 @@ pinned_service: False default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" default_network: "coretime-westend" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-encointer-kusama-01.yaml b/host_vars/rpc-encointer-kusama-01.yaml index c2a071d..7ea09cc 100644 --- a/host_vars/rpc-encointer-kusama-01.yaml +++ b/host_vars/rpc-encointer-kusama-01.yaml @@ -1,32 +1,36 @@ --- ansible_host: "160.22.181.181" container_ip: "192.168.121.16" -ansible_port: 2601 -host_name: "rpc-encointer-kusama-01.rotko.net" +ansible_port: 2602 +host_name: "rpc-encointer-kusama-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "encointer" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: encointer-kusama -default_relay_rpc: "ws://{{ hostvars['ksm26']['container_ip'] }}:{{ hostvars['ksm26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" default_node_type: "endpoint" default_pruning: "archive" -default_database: paritydb # to be replaced with paritydb +default_database: rocksdb default_syncmode: full + default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +transition_bootnode_domain: "enc14.rotko.net" +transition_bootnode_p2p_port: 33504 +transition_bootnode_p2p_port_ws: 34504 +transition_bootnode_p2p_port_wss: 35504 + default_p2p_port: 32061 -default_p2p_port_ws: 30434 -default_p2p_port_wss: 30435 default_bootnode_p2p_port: 32061 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 default_rpc_port: 9400 - -default_secure_rpc_port: 42601 default_prom_port: 7400 -zabbix_ext_port: 10601 + +default_secure_rpc_port: 42602 +zabbix_ext_port: 10602 diff --git a/host_vars/rpc-encointer-kusama-02.yaml b/host_vars/rpc-encointer-kusama-02.yaml index 61da48c..75d677e 100644 --- a/host_vars/rpc-encointer-kusama-02.yaml +++ b/host_vars/rpc-encointer-kusama-02.yaml @@ -1,14 +1,14 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.20" -ansible_port: 2602 -host_name: "rpc-encointer-kusama-02.rotko.net" +container_ip: "192.168.122.16" +ansible_port: 2601 +host_name: "rpc-encointer-kusama-02.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "encointer" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: encointer-kusama default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" @@ -19,13 +19,12 @@ default_database: paritydb # to be replaced with paritydb default_syncmode: full default_bootnode_domain: "{{ default_network }}.boot.rotko.net" -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_p2p_port: 32062 +default_bootnode_p2p_port: 32062 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_rpc_port: 9300 +default_rpc_port: 9400 -default_secure_rpc_port: 42602 -default_prom_port: 7602 -zabbix_ext_port: 10602 +default_secure_rpc_port: 42601 +default_prom_port: 7400 +zabbix_ext_port: 10601 diff --git a/host_vars/rpc-hydration-polkadot-01.yaml b/host_vars/rpc-hydration-polkadot-01.yaml new file mode 100644 index 0000000..32886e1 --- /dev/null +++ b/host_vars/rpc-hydration-polkadot-01.yaml @@ -0,0 +1,25 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.111.36" +ansible_port: 2838 +host_name: "rpc-hydration-polkadot-01.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "hydration" +pinned_service: True + +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_domain: "{{ host_name }}" +default_network: "hydradx" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" +default_database: "rocksdb" +default_node_type: "endpoint" +default_p2p_port: 31261 +default_p2p_port_ws: 30434 +default_p2p_port_wss: 30435 +default_rpc_port: 9400 +default_prom_port: 7400 +default_secure_rpc_port: 42838 +zabbix_ext_port: 10838 +default_bootnode_domain: "hydration.boot.rotko.net" diff --git a/host_vars/rpc-hydration-polkadot-02.yaml b/host_vars/rpc-hydration-polkadot-02.yaml new file mode 100644 index 0000000..0d7db71 --- /dev/null +++ b/host_vars/rpc-hydration-polkadot-02.yaml @@ -0,0 +1,25 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.112.36" +ansible_port: 3136 +host_name: "rpc-hydration-polkadot-02.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "hydration" +pinned_service: True + +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_domain: "{{ host_name }}" +default_network: "hydradx" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" +default_database: "rocksdb" +default_node_type: "endpoint" +default_p2p_port: 31262 +default_p2p_port_ws: 30434 +default_p2p_port_wss: 30435 +default_rpc_port: 9400 +default_prom_port: 7400 +default_secure_rpc_port: 42136 +zabbix_ext_port: 10136 +default_bootnode_domain: "hydration.boot.rotko.net" diff --git a/host_vars/rpc-kilt-polkadot-01.yaml b/host_vars/rpc-kilt-polkadot-01.yaml index 5b403f8..244100f 100644 --- a/host_vars/rpc-kilt-polkadot-01.yaml +++ b/host_vars/rpc-kilt-polkadot-01.yaml @@ -2,7 +2,7 @@ ansible_host: "160.22.181.181" container_ip: "192.168.86.86" ansible_port: 3866 -host_name: "rpc-kilt-polkadot-01.rotko.net" +host_name: "rpc-kilt-polkadot-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "kilt" @@ -10,9 +10,11 @@ pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" default_domain: "{{ host_name }}" -default_network: "kilt" -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" -default_relay_rpc_fallback: "ws://{{ hostvars['dot23']['container_ip'] }}:{{ hostvars['dot23']['default_rpc_port'] }}" +default_network: "spiritnet" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" zabbix_ext_port: 10836 +default_p2p_port: 31241 +default_bootnode_domain: "kilt.boot.rotko.net" diff --git a/host_vars/rpc-kilt-polkadot-02.yaml b/host_vars/rpc-kilt-polkadot-02.yaml new file mode 100644 index 0000000..a99f97a --- /dev/null +++ b/host_vars/rpc-kilt-polkadot-02.yaml @@ -0,0 +1,20 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.112.34" +ansible_port: 3834 +host_name: "rpc-kilt-polkadot-02.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "kilt" +pinned_service: True + +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_domain: "{{ host_name }}" +default_network: "spiritnet" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" +default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" +default_database: "rocksdb" +default_node_type: "endpoint" +zabbix_ext_port: 10834 +default_p2p_port: 31242 +default_bootnode_domain: "kilt.boot.rotko.net" diff --git a/host_vars/rpc-kusama-01.yaml b/host_vars/rpc-kusama-01.yaml index b05528a..b35858c 100644 --- a/host_vars/rpc-kusama-01.yaml +++ b/host_vars/rpc-kusama-01.yaml @@ -1,14 +1,14 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.21" +container_ip: "192.168.121.10" ansible_port: 2321 -host_name: "rpc-kusama-01.rotko.net" +host_name: "rpc-kusama-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' -role: "kusama" +role: "polkadot" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_domain_lb: "kusama.rotko.net" default_domain_ibp: "rpc.ibp.network" @@ -18,18 +18,25 @@ default_dotters_repository: "git@github.com:senseless/dotters-ssl" default_network: "kusama" default_node_type: "endpoint" default_pruning: "archive" -default_database: "paritydb" +default_database: "rocksdb" default_syncmode: "full" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" - -default_p2p_port: 30333 +default_p2p_port: 32001 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 -default_bootnode_p2p_port_ws: 30434 -default_bootnode_p2p_port_wss: 30435 + +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 32001 +default_bootnode_p2p_port_ws: 30334 +default_bootnode_p2p_port_wss: 30335 + +transition_bootnode_domain: "ksm14.rotko.net" +transition_bootnode_p2p_port: 33224 +transition_bootnode_p2p_port_ws: 34224 +transition_bootnode_p2p_port_wss: 35224 + default_rpc_port: 9300 +default_prom_port: 7300 default_secure_rpc_port: 42321 -default_prom_port: 7321 zabbix_ext_port: 10321 diff --git a/host_vars/rpc-kusama-02.yaml b/host_vars/rpc-kusama-02.yaml index 408fa92..c1785cf 100644 --- a/host_vars/rpc-kusama-02.yaml +++ b/host_vars/rpc-kusama-02.yaml @@ -2,10 +2,10 @@ ansible_host: "160.22.181.181" container_ip: "192.168.77.22" ansible_port: 2322 -host_name: "rpc-kusama-02.rotko.net" +host_name: "rpc-kusama-02.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' -role: "kusama" +role: "polkadot" pinned_service: True default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" @@ -23,13 +23,12 @@ default_syncmode: "full" default_p2p_port: 33322 default_p2p_port_ws: 34322 default_p2p_port_wss: 35322 +default_bootnode_p2p_port: 30433 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 default_rpc_port: 9322 default_secure_rpc_port: 42322 default_prom_port: 7322 zabbix_ext_port: 10322 -# default_bootnode_domain: "boot-{{ default_network }}.rotko.net" -default_bootnode_domain: "ksm14.rotko.net" -default_bootnode_p2p_port: "{{ default_p2p_port + 10500 }}" -default_bootnode_p2p_port_ws: "{{ default_p2p_port_ws + 10500 }}" -default_bootnode_p2p_port_wss: "{{ default_p2p_port_wss + 10500 }}" +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" diff --git a/host_vars/rpc-paseo-01.yaml b/host_vars/rpc-paseo-01.yaml new file mode 100644 index 0000000..a60824a --- /dev/null +++ b/host_vars/rpc-paseo-01.yaml @@ -0,0 +1,44 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.141.10" +ansible_port: 2341 +host_name: "rpc-paseo-01.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "polkadot" +pinned_service: True + +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" +default_domain: "{{ host_name }}" +default_domain_lb: "paseo.rotko.net" +default_domain_ibp: "rpc.ibp.network" +default_domain_dotters: "rpc.dotters.network" +default_ibp_repository: "git@github.com:GATOTECH-LTD/ibp-ssl" +default_dotters_repository: "git@github.com:senseless/dotters-ssl" +default_network: "paseo" +#default_chain_spec: "{{ default_base_path }}/paseo.json" +#default_chain_spec_dl_url: "https://media.githubusercontent.com/media/paseo-network/paseo-chain-specs/refs/heads/main/paseo.raw.json?download=true" +default_node_type: "endpoint" +default_pruning: "archive" +default_database: "rocksdb" +default_syncmode: "full" + +default_p2p_port: 34001 +default_p2p_port_ws: 30334 +default_p2p_port_wss: 30335 + +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 34001 +default_bootnode_p2p_port_ws: 30334 +default_bootnode_p2p_port_wss: 30335 + +default_rpc_port: 9300 +default_prom_port: 7300 +default_secure_rpc_port: 42341 +zabbix_ext_port: 10341 + +# default_bootnode_domain: "boot-{{ default_network }}.rotko.net" +transition_bootnode_domain: "pso16.rotko.net" +transition_bootnode_p2p_port: 33246 +transition_bootnode_p2p_port_ws: 34246 +transition_bootnode_p2p_port_wss: 35246 diff --git a/host_vars/rpc-people-kusama-01.yaml b/host_vars/rpc-people-kusama-01.yaml index 5882050..058fdda 100644 --- a/host_vars/rpc-people-kusama-01.yaml +++ b/host_vars/rpc-people-kusama-01.yaml @@ -1,33 +1,33 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.29" #NOTE: i change for people kusama to 29 & 30 -al # people kusama 28 +container_ip: "192.168.121.14" ansible_port: 2829 -host_name: "rpc-people-kusama-01.rotko.net" +host_name: "rpc-people-kusama-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "people-kusama" default_chain_spec: "{{ default_base_path }}/people-kusama.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/people-kusama.json" default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" -default_database: "paritydb" +default_database: "rocksdb" default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +transition_bootnode_domain: "kppl16.rotko.net" +transition_bootnode_p2p_port: 33756 +transition_bootnode_p2p_port_ws: 34756 +transition_bootnode_p2p_port_wss: 35756 -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 +default_p2p_port: 32041 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 32041 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -#NOTE: this is parachains right? so its 9400 -default_rpc_port: 9400 default_secure_rpc_port: 42829 -default_prom_port: 7829 zabbix_ext_port: 10829 diff --git a/host_vars/rpc-people-kusama-02.yaml b/host_vars/rpc-people-kusama-02.yaml index 0e2dffd..80e071c 100644 --- a/host_vars/rpc-people-kusama-02.yaml +++ b/host_vars/rpc-people-kusama-02.yaml @@ -13,7 +13,7 @@ default_domain: "{{ host_name }}" default_network: "people-kusama" default_chain_spec: "{{ default_base_path }}/people-kusama.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/people-kusama.json" -default_relay_rpc: "ws://{{ hostvars['ksm26']['container_ip'] }}:{{ hostvars['ksm26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-kusama-01']['container_ip'] }}:{{ hostvars['rpc-kusama-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-kusama-02']['container_ip'] }}:{{ hostvars['rpc-kusama-02']['default_rpc_port'] }}" default_database: rocksdb default_node_type: "endpoint" diff --git a/host_vars/rpc-people-paseo-01.yaml b/host_vars/rpc-people-paseo-01.yaml index 6ca06ec..437e036 100644 --- a/host_vars/rpc-people-paseo-01.yaml +++ b/host_vars/rpc-people-paseo-01.yaml @@ -14,7 +14,7 @@ default_network: "people-paseo" default_network_pathname: "paseo-people" default_chain_spec: "{{ default_base_path }}/people-paseo.raw.json" default_chain_spec_dl_url: "https://github.com/paseo-network/paseo-chain-specs/raw/refs/heads/main/paseo-people.raw.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" @@ -22,6 +22,7 @@ zabbix_ext_port: 10966 default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +#dont change p2p port default_p2p_port: 34041 default_bootnode_p2p_port: 34041 default_bootnode_p2p_port_ws: 30434 diff --git a/host_vars/rpc-people-paseo-02.yaml b/host_vars/rpc-people-paseo-02.yaml index 83a9def..3a1eec4 100644 --- a/host_vars/rpc-people-paseo-02.yaml +++ b/host_vars/rpc-people-paseo-02.yaml @@ -14,7 +14,7 @@ default_network: "people-paseo" default_network_pathname: "paseo-people" default_chain_spec: "{{ default_base_path }}/people-paseo.raw.json" default_chain_spec_dl_url: "https://github.com/paseo-network/paseo-chain-specs/raw/refs/heads/main/paseo-people.raw.json" -default_relay_rpc: "ws://{{ hostvars['pso26']['container_ip'] }}:{{ hostvars['pso26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-paseo-01']['container_ip'] }}:{{ hostvars['rpc-paseo-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-paseo-02']['container_ip'] }}:{{ hostvars['rpc-paseo-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" diff --git a/host_vars/rpc-people-polkadot-01.yaml b/host_vars/rpc-people-polkadot-01.yaml index 9864bf9..16efba4 100644 --- a/host_vars/rpc-people-polkadot-01.yaml +++ b/host_vars/rpc-people-polkadot-01.yaml @@ -2,7 +2,7 @@ ansible_host: "160.22.181.181" container_ip: "192.168.76.18" ansible_port: 2846 -host_name: "rpc-people-polkadot-01.rotko.net" +host_name: "rpc-people-polkadot-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" @@ -13,20 +13,17 @@ default_domain: "{{ host_name }}" default_network: "people-polkadot" default_chain_spec: "{{ default_base_path }}/people-polkadot.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/people-polkadot.json" -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: "paritydb" default_node_type: "endpoint" -default_p2p_port: 33846 -default_p2p_port_ws: 34846 -default_p2p_port_wss: 35846 -default_rpc_port: 9846 +default_p2p_port: 31041 +default_rpc_port: 9400 default_secure_rpc_port: 42846 default_prom_port: 7846 zabbix_ext_port: 10846 -default_bootnode_domain: "boot-{{ default_network }}.rotko.net" -# default_bootnode_domain: ".rotko.net" -default_bootnode_p2p_port: "{{ default_p2p_port + 10500 }}" -default_bootnode_p2p_port_ws: "{{ default_p2p_port_ws + 10500 }}" -default_bootnode_p2p_port_wss: "{{ default_p2p_port_wss + 10500 }}" +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 31041 +default_bootnode_p2p_port_ws: 30434 +default_bootnode_p2p_port_wss: 30435 diff --git a/host_vars/rpc-people-polkadot-02.yaml b/host_vars/rpc-people-polkadot-02.yaml index eb8835a..afc8775 100644 --- a/host_vars/rpc-people-polkadot-02.yaml +++ b/host_vars/rpc-people-polkadot-02.yaml @@ -13,7 +13,7 @@ default_domain: "{{ host_name }}" default_network: "people-polkadot" default_chain_spec: "{{ default_base_path }}/people-polkadot.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/people-polkadot.json" -default_relay_rpc: "ws://{{ hostvars['dot26']['container_ip'] }}:{{ hostvars['dot26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-polkadot-01']['container_ip'] }}:{{ hostvars['rpc-polkadot-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-polkadot-02']['container_ip'] }}:{{ hostvars['rpc-polkadot-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" diff --git a/host_vars/rpc-people-westend-01.yaml b/host_vars/rpc-people-westend-01.yaml index 6c204df..d416be5 100644 --- a/host_vars/rpc-people-westend-01.yaml +++ b/host_vars/rpc-people-westend-01.yaml @@ -1,15 +1,14 @@ --- ansible_host: "160.22.181.181" -#WARN: ip still the same with wppl27 -container_ip: "192.168.77.38" # people westend 38 -ansible_port: 2867 -host_name: "wppl27.rotko.net" +container_ip: "192.168.131.14" +ansible_port: 2814 +host_name: "rpc-people-westend-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "cumulus" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_network: "people-westend" default_chain_spec: "{{ default_base_path }}/people-westend.json" @@ -17,17 +16,19 @@ default_chain_spec: "{{ default_base_path }}/people-westend.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/fca5044c06c6ce9a0dbdacc54b0f4ad0ce422ddd/cumulus/parachains/chain-specs/people-westend.json" default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" -default_database: "paritydb" +default_database: "rocksdb" default_node_type: "endpoint" -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +transition_bootnode_domain: "wppl16.rotko.net" +transition_bootnode_p2p_port: 33766 +transition_bootnode_p2p_port_ws: 34766 +transition_bootnode_p2p_port_wss: 35766 -default_p2p_port: 30333 -default_p2p_port_ws: 30334 -default_p2p_port_wss: 30335 -default_rpc_port: 9300 +default_p2p_port: 33041 +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 33041 default_bootnode_p2p_port_ws: 30434 default_bootnode_p2p_port_wss: 30435 -default_secure_rpc_port: 42867 -default_prom_port: 7867 -zabbix_ext_port: 10867 + +default_secure_rpc_port: 42814 +zabbix_ext_port: 10814 diff --git a/host_vars/rpc-people-westend-02.yaml b/host_vars/rpc-people-westend-02.yaml index cd4ac87..26e64ad 100644 --- a/host_vars/rpc-people-westend-02.yaml +++ b/host_vars/rpc-people-westend-02.yaml @@ -14,7 +14,7 @@ default_network: "people-westend" default_chain_spec: "{{ default_base_path }}/people-westend.json" # default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/master/cumulus/parachains/chain-specs/people-westend.json" default_chain_spec_dl_url: "https://raw.githubusercontent.com/paritytech/polkadot-sdk/fca5044c06c6ce9a0dbdacc54b0f4ad0ce422ddd/cumulus/parachains/chain-specs/people-westend.json" -default_relay_rpc: "ws://{{ hostvars['wnd26']['container_ip'] }}:{{ hostvars['wnd26']['default_rpc_port'] }}" +default_relay_rpc: "ws://{{ hostvars['rpc-westend-01']['container_ip'] }}:{{ hostvars['rpc-westend-01']['default_rpc_port'] }}" default_relay_rpc_fallback: "ws://{{ hostvars['rpc-westend-02']['container_ip'] }}:{{ hostvars['rpc-westend-02']['default_rpc_port'] }}" default_database: "rocksdb" default_node_type: "endpoint" diff --git a/host_vars/rpc-polkadot-01.yaml b/host_vars/rpc-polkadot-01.yaml index 1e911c9..cd1249f 100644 --- a/host_vars/rpc-polkadot-01.yaml +++ b/host_vars/rpc-polkadot-01.yaml @@ -1,14 +1,14 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.11" +container_ip: "192.168.111.10" ansible_port: 2311 -host_name: "rpc-polkadot-01.rotko.net" +host_name: "rpc-polkadot-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' role: "polkadot" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_domain_lb: "polkadot.rotko.net" default_domain_ibp: "rpc.ibp.network" @@ -20,15 +20,23 @@ default_node_type: "endpoint" default_pruning: "archive" default_database: "rocksdb" default_syncmode: full -zabbix_ext_port: 10311 - -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" -default_p2p_port: 30333 +default_p2p_port: 31001 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 -default_bootnode_p2p_port_ws: 30434 -default_bootnode_p2p_port_wss: 30435 + +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 31001 +default_bootnode_p2p_port_ws: 30334 +default_bootnode_p2p_port_wss: 30335 + +transition_bootnode_domain: "dot14.rotko.net" +transition_bootnode_p2p_port: 33214 +transition_bootnode_p2p_port_ws: 34214 +transition_bootnode_p2p_port_wss: 35214 + default_rpc_port: 9300 +default_prom_port: 7300 + default_secure_rpc_port: 42311 -default_prom_port: 7311 +zabbix_ext_port: 10311 diff --git a/host_vars/rpc-westend-01.yaml b/host_vars/rpc-westend-01.yaml index b37036c..7066ae9 100644 --- a/host_vars/rpc-westend-01.yaml +++ b/host_vars/rpc-westend-01.yaml @@ -1,14 +1,14 @@ --- ansible_host: "160.22.181.181" -container_ip: "192.168.77.31" +container_ip: "192.168.131.10" ansible_port: 2331 -host_name: "rpc-westend-01.rotko.net" +host_name: "rpc-westend-01.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' -role: "westend" +role: "polkadot" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_domain_lb: "westend.rotko.net" default_domain_ibp: "rpc.ibp.network" @@ -20,15 +20,23 @@ default_node_type: "endpoint" default_pruning: "archive" default_database: "rocksdb" default_syncmode: "full" -zabbix_ext_port: 10331 - -default_bootnode_domain: "{{ default_network }}.boot.rotko.net" -default_p2p_port: 30333 +default_p2p_port: 33001 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 -default_bootnode_p2p_port_ws: 30434 -default_bootnode_p2p_port_wss: 30435 + +default_bootnode_domain: "{{ default_network }}.boot.rotko.net" +default_bootnode_p2p_port: 33001 +default_bootnode_p2p_port_ws: 30334 +default_bootnode_p2p_port_wss: 30335 + +transition_bootnode_domain: "wnd14.rotko.net" +transition_bootnode_p2p_port: 33234 +transition_bootnode_p2p_port_ws: 34234 +transition_bootnode_p2p_port_wss: 35234 + default_rpc_port: 9300 +default_prom_port: 7300 + default_secure_rpc_port: 42331 -default_prom_port: 7331 +zabbix_ext_port: 10331 diff --git a/host_vars/rpc-westend-02.yaml b/host_vars/rpc-westend-02.yaml index d011f2b..10a7daa 100644 --- a/host_vars/rpc-westend-02.yaml +++ b/host_vars/rpc-westend-02.yaml @@ -2,13 +2,13 @@ ansible_host: "160.22.181.181" container_ip: "192.168.77.32" ansible_port: 2332 -host_name: "rpc-westend-02.rotko.net" +host_name: "rpc-westend-02.ct.rotko.net" host_timezone: "Asia/Bangkok" netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' -role: "westend" +role: "polkadot" pinned_service: True -default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" default_domain: "{{ host_name }}" default_domain_lb: "westend.rotko.net" default_domain_ibp: "rpc.ibp.network" diff --git a/host_vars/val-kusama-01.yaml b/host_vars/val-kusama-01.yaml index abb5a8e..b2db15e 100644 --- a/host_vars/val-kusama-01.yaml +++ b/host_vars/val-kusama-01.yaml @@ -19,5 +19,7 @@ default_p2p_port: 33125 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 default_rpc_port: 9125 +default_in_peers: 64 +default_out_peers: 64 default_secure_rpc_port: 42125 zabbix_ext_port: 10125 diff --git a/host_vars/val-kusama-02.yaml b/host_vars/val-kusama-02.yaml index d229e46..3e04093 100644 --- a/host_vars/val-kusama-02.yaml +++ b/host_vars/val-kusama-02.yaml @@ -19,5 +19,7 @@ default_p2p_port: 32022 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 default_rpc_port: 9300 +default_in_peers: 64 +default_out_peers: 64 default_secure_rpc_port: 42725 zabbix_ext_port: 10725 diff --git a/host_vars/val-paseo-01.yaml b/host_vars/val-paseo-01.yaml new file mode 100644 index 0000000..7b920c4 --- /dev/null +++ b/host_vars/val-paseo-01.yaml @@ -0,0 +1,29 @@ +--- +ansible_host: "160.22.181.181" +container_ip: "192.168.241.10" +ansible_port: 2141 +host_name: "val-paseo-01.ct.rotko.net" +host_timezone: "Asia/Bangkok" +netif: '{"net0":"name=eth0,gw={{ default_nat_network_forward_cidr.split("/")[0] }},ip={{ default_host_ip }}/16,bridge={{ default_nat_device }}"}' +role: "polkadot" +pinned_service: False + +# Variables + +default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }}" +default_network: "paseo" +default_chain_spec: "{{ default_base_path }}/paseo.raw.json" +default_chain_spec_dl_url: "https://raw.githubusercontent.com/paseo-network/runtimes/main/chain-specs/paseo.raw.json" +default_node_type: "validator" +default_pruning: 1000 +default_database: paritydb +default_syncmode: warp + +default_p2p_port: 34004 +default_p2p_port_ws: 30334 +default_p2p_port_wss: 30335 + +default_rpc_port: 9300 +default_prom_port: 7300 +default_secure_rpc_port: 42141 +zabbix_ext_port: 10141 diff --git a/host_vars/val-polkadot-01.yaml b/host_vars/val-polkadot-01.yaml index 4cf5130..b9dafcd 100644 --- a/host_vars/val-polkadot-01.yaml +++ b/host_vars/val-polkadot-01.yaml @@ -19,5 +19,7 @@ default_p2p_port: 33115 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 default_rpc_port: 9115 +default_in_peers: 64 +default_out_peers: 64 default_secure_rpc_port: 42115 zabbix_ext_port: 10115 diff --git a/host_vars/val-polkadot-02.yaml b/host_vars/val-polkadot-02.yaml index 958c008..dac7af8 100644 --- a/host_vars/val-polkadot-02.yaml +++ b/host_vars/val-polkadot-02.yaml @@ -19,5 +19,7 @@ default_p2p_port: 31022 default_p2p_port_ws: 30334 default_p2p_port_wss: 30335 default_rpc_port: 9300 +default_in_peers: 64 +default_out_peers: 64 default_secure_rpc_port: 42715 zabbix_ext_port: 10715 diff --git a/host_vars/val-polkadot-03.yaml b/host_vars/val-polkadot-03.yaml index 088f25a..176ddfb 100644 --- a/host_vars/val-polkadot-03.yaml +++ b/host_vars/val-polkadot-03.yaml @@ -11,7 +11,7 @@ pinned_service: True default_network: polkadot default_node_type: "validator" # default_telemetry_name: "Rotko Networks - {{ host_name.split('.')[0] }} {{ default_node_type | capitalize }}" -default_telemetry_name: "Rotko Networks - ksm03 Validator" +default_telemetry_name: "Rotko Networks - dot03 Validator" default_pruning: 1000 default_database: paritydb default_syncmode: warp diff --git a/inventory b/inventory index 060cc85..f9f015b 100644 --- a/inventory +++ b/inventory @@ -12,16 +12,30 @@ encointer hydration polkadot +[prometheus] +ibp-bkk07 + +[haproxy] +haproxy-bkk07 + +[builder-container] +build-node-07 + [proxmox_nodes] ansible matrix ibp +ibp_bkk07 [routers] bkk10 bkk20 bkk50 +[kilt] +rpc-kilt-polkadot-01 +rpc-kilt-polkadot-02 + [cumulus] mint14 pbr13 @@ -55,49 +69,64 @@ kcore27 kppl27 wppl27 mint27 -rpc-kilt-polkadot-01 rpc-asset-hub-polkadot-01 +rpc-asset-hub-polkadot-02 rpc-asset-hub-westend-01 +rpc-asset-hub-westend-02 +rpc-asset-hub-kusama-01 +rpc-asset-hub-kusama-02 rpc-asset-hub-paseo-01 +rpc-asset-hub-paseo-02 rpc-bridge-hub-paseo-01 +rpc-bridge-hub-paseo-02 rpc-bridge-hub-polkadot-01 +rpc-bridge-hub-polkadot-02 rpc-bridge-hub-westend-01 +rpc-bridge-hub-westend-02 +rpc-bridge-hub-kusama-01 +rpc-bridge-hub-kusama-02 rpc-coretime-paseo-01 +rpc-coretime-paseo-02 +rpc-coretime-polkadot-01 +rpc-coretime-polkadot-02 +rpc-coretime-westend-02 +rpc-coretime-westend-01 +rpc-coretime-kusama-01 +rpc-coretime-kusama-02 rpc-collectives-polkadot-01 +rpc-collectives-polkadot-02 rpc-collectives-westend-01 +rpc-collectives-westend-02 rpc-people-paseo-01 +rpc-people-paseo-02 rpc-people-polkadot-01 rpc-people-polkadot-02 -rpc-people-paseo-02 +rpc-people-westend-01 rpc-people-westend-02 -rpc-coretime-paseo-02 -rpc-coretime-polkadot-02 -rpc-coretime-westend-02 -rpc-asset-hub-paseo-02 -rpc-asset-hub-polkadot-02 -rpc-asset-hub-westend-02 -rpc-asset-hub-kusama-01 -rpc-bridge-hub-paseo-02 -rpc-bridge-hub-polkadot-02 -rpc-bridge-hub-westend-02 -rpc-bridge-hub-kusama-01 -rpc-collectives-polkadot-02 -rpc-collectives-westend-02 +rpc-people-kusama-01 +rpc-people-kusama-02 [encointer] rpc-encointer-kusama-01 +rpc-encointer-kusama-02 enc14 enc24 enc26 [hydration] +rpc-hydration-polkadot-01 +rpc-hydration-polkadot-02 hdx26 hdx27 [polkadot] +rpc-polkadot-01 rpc-polkadot-02 +rpc-kusama-01 rpc-kusama-02 +rpc-westend-01 rpc-westend-02 +rpc-paseo-01 rpc-paseo-02 val-polkadot-02 val-kusama-02 diff --git a/playbooks/install_haproxy.yaml b/playbooks/install_haproxy.yaml new file mode 100644 index 0000000..a352739 --- /dev/null +++ b/playbooks/install_haproxy.yaml @@ -0,0 +1,8 @@ +# Standards: 0.2 +--- +- name: Install Haproxy + hosts: haproxy + gather_facts: True + roles: + - setup_add_node_role + - setup_install_haproxy diff --git a/playbooks/install_prometheus.yaml b/playbooks/install_prometheus.yaml new file mode 100644 index 0000000..302b4a9 --- /dev/null +++ b/playbooks/install_prometheus.yaml @@ -0,0 +1,9 @@ +# Standards: 0.2 +--- +- name: Install Prometheus + hosts: prometheus + gather_facts: True + roles: + - setup_add_node_role + - setup_install_prometheus + - setup_install_nginx diff --git a/playbooks/penumbra.yaml b/playbooks/penumbra.yaml new file mode 100644 index 0000000..2f62296 --- /dev/null +++ b/playbooks/penumbra.yaml @@ -0,0 +1,10 @@ +# Standards: 0.2 +--- +- name: Default tools and configurations + hosts: penumbra + gather_facts: True + roles: + - setup_add_node_role + - setup_install_rust + - setup_install_penumbra + - setup_install_nginx diff --git a/playbooks/proxmox_install_nodes.yaml b/playbooks/proxmox_install_nodes.yaml index 29c599f..7e73811 100644 --- a/playbooks/proxmox_install_nodes.yaml +++ b/playbooks/proxmox_install_nodes.yaml @@ -32,6 +32,25 @@ - setup_user_management - setup_log_rotation +# - name: Install Haproxy +# hosts: haproxy +# gather_facts: True +# roles: +# - setup_install_haproxy +# +# - name: Install Prometheus +# hosts: prometheus +# gather_facts: True +# roles: +# - setup_install_prometheus + +- name: Install Penumbra services + hosts: penumbra + gather_facts: True + roles: + - setup_install_penumbra + - setup_install_nginx + - name: Install Arbitrum services hosts: arbitrum gather_facts: True diff --git a/roles/setup_install_cumulus/templates/endpoint.service.j2 b/roles/setup_install_cumulus/templates/endpoint.service.j2 index 2968aa0..a309359 100644 --- a/roles/setup_install_cumulus/templates/endpoint.service.j2 +++ b/roles/setup_install_cumulus/templates/endpoint.service.j2 @@ -39,7 +39,9 @@ ExecStart={{ default_base_path }}/cumulus \ --rpc-external \ --rpc-methods safe \ --rpc-cors all \ - --allow-private-ipv4 + --in-peers {{ default_in_peers }} \ + --out-peers {{ default_out_peers }} \ + --no-mdns Restart=always RestartSec=120 diff --git a/roles/setup_install_encointer/templates/endpoint.service.j2 b/roles/setup_install_encointer/templates/endpoint.service.j2 index 779a673..e04554f 100644 --- a/roles/setup_install_encointer/templates/endpoint.service.j2 +++ b/roles/setup_install_encointer/templates/endpoint.service.j2 @@ -14,11 +14,16 @@ ExecStart={{ default_base_path }}/encointer \ --database {{ default_database }} \ --sync full \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port }} \ - --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port_ws }}/ws \ - --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port }} \ - --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port_wss }}/wss \ - {% if default_bootnode_domain is defined %}--public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_p2p_port }} \ - --public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_p2p_port_wss }}/wss \ + --listen-addr /ip4/0.0.0.0/tcp/{{ default_bootnode_p2p_port_ws }}/ws \ + {% if transition_bootnode_domain is defined %}--listen-addr /ip4/0.0.0.0/tcp/{{ transition_bootnode_p2p_port }} \ + --listen-addr /ip4/0.0.0.0/tcp/{{ transition_bootnode_p2p_port_ws }}/ws \ + {% endif %}--public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port }} \ + --public-addr /dns/{{ default_domain }}/tcp/{{ default_bootnode_p2p_port_wss }}/wss \ + {% if default_bootnode_domain is defined %}--public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_bootnode_p2p_port }} \ + --public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_bootnode_p2p_port_wss }}/wss \ + {% endif %}{% if transition_bootnode_domain is defined %}--public-addr /dns/{{ transition_bootnode_domain }}/tcp/{{ transition_bootnode_p2p_port }} \ + --public-addr /dns/{{ transition_bootnode_domain }}/tcp/{{ transition_bootnode_p2p_port_ws }}/ws \ + --public-addr /dns/{{ transition_bootnode_domain }}/tcp/{{ transition_bootnode_p2p_port_wss }}/wss \ {% endif %}--rpc-port {{ default_rpc_port }} \ --enable-offchain-indexing=true \ --prometheus-port {{ default_prom_port }} \ diff --git a/roles/setup_install_haproxy/defaults/main.yml b/roles/setup_install_haproxy/defaults/main.yml new file mode 100644 index 0000000..451aca9 --- /dev/null +++ b/roles/setup_install_haproxy/defaults/main.yml @@ -0,0 +1,34 @@ +--- +# haproxy_socket: /var/lib/haproxy/stats +# haproxy_chroot: /var/lib/haproxy +# haproxy_user: haproxy +# haproxy_group: haproxy +# +# # Frontend settings. +# haproxy_frontend_name: 'hafrontend' +# haproxy_frontend_bind_address: '*' +# haproxy_frontend_port: 80 +# haproxy_frontend_mode: 'http' +# +# # Backend settings. +# haproxy_backend_name: 'habackend' +# haproxy_backend_mode: 'http' +# haproxy_backend_balance_method: 'roundrobin' +# haproxy_backend_httpchk: 'HEAD / HTTP/1.1\r\nHost:localhost' +# +# # List of backend servers. +# haproxy_backend_servers: [] +# # - name: app1 +# # address: 192.168.0.1:80 +# # - name: app2 +# # address: 192.168.0.2:80 +# +# # Extra global vars (see README for example usage). +# haproxy_global_vars: [] +# +# # Default haproxy timeouts +# haproxy_connect_timeout: 5000 +# haproxy_client_timeout: 50000 +# haproxy_server_timeout: 50000 + +haproxy_template: "haproxy.cfg.j2" diff --git a/roles/setup_install_haproxy/handlers/main.yml b/roles/setup_install_haproxy/handlers/main.yml new file mode 100644 index 0000000..e1ac5ca --- /dev/null +++ b/roles/setup_install_haproxy/handlers/main.yml @@ -0,0 +1,5 @@ +--- +- name: Restart HAProxy + ansible.builtin.service: + name: haproxy + state: restarted diff --git a/roles/setup_install_haproxy/meta/main.yml b/roles/setup_install_haproxy/meta/main.yml new file mode 100644 index 0000000..10e908b --- /dev/null +++ b/roles/setup_install_haproxy/meta/main.yml @@ -0,0 +1,23 @@ +--- +dependencies: [] + +galaxy_info: + role_name: haproxy + author: geerlingguy + description: HAProxy installation and configuration. + company: "Midwestern Mac, LLC" + license: "license (BSD, MIT)" + min_ansible_version: 2.10 + platforms: + - name: Ubuntu + versions: + - precise + - trusty + - xenial + galaxy_tags: + - web + - networking + - cloud + - haproxy + - loadbalancer + - http diff --git a/roles/setup_install_haproxy/tasks/main.yml b/roles/setup_install_haproxy/tasks/main.yml new file mode 100644 index 0000000..a9f7549 --- /dev/null +++ b/roles/setup_install_haproxy/tasks/main.yml @@ -0,0 +1,78 @@ +--- +- name: Add HAProxy GPG key + ansible.builtin.apt_key: + url: https://haproxy.debian.net/bernat.debian.org.gpg + state: present + +- name: Add HAProxy repository + ansible.builtin.apt_repository: + repo: deb https://haproxy.debian.net bookworm-backports-2.8 main + state: present + filename: haproxy + +- name: Update apt cache + ansible.builtin.apt: + update_cache: yes + +- name: Ensure HAProxy 2.8.* is installed + ansible.builtin.apt: + name: "haproxy=2.8.*" + state: present + force: yes + force_apt_get: yes + dpkg_options: "force-confdef,force-confold" + environment: + DEBIAN_FRONTEND: noninteractive + when: + - ansible_os_family == 'Debian' + +- name: Get HAProxy version + ansible.builtin.command: haproxy -v + register: haproxy_version_result + changed_when: False + check_mode: False + +- name: Set HAProxy version + ansible.builtin.set_fact: + haproxy_version: '{{ haproxy_version_result.stdout_lines[0] | regex_replace("^HA-?Proxy version (\d+(\.\d+)*).*$", "\1") }}' + +- name: Ensure HAProxy version is 2.8.x + ansible.builtin.assert: + that: + - haproxy_version is version('2.8', '>=') + - haproxy_version is version('2.9', '<') + fail_msg: "Installed HAProxy version ({{ haproxy_version }}) is not in the 2.8.x series" + success_msg: "HAProxy version {{ haproxy_version }} is correctly installed" + +- name: Display HAProxy template content + ansible.builtin.debug: + msg: "{{ lookup('template', haproxy_template) }}" + +# - name: Copy HAProxy configuration in place. +# ansible.builtin.template: +# src: "{{ haproxy_template }}" +# dest: /etc/haproxy/haproxy.cfg +# mode: 0644 +# register: haproxy_config + +- name: Validate HAProxy configuration + ansible.builtin.command: haproxy -c -f /etc/haproxy/haproxy.cfg + register: haproxy_validate + changed_when: False + failed_when: haproxy_validate.rc != 0 + +- name: Display HAProxy validation result + ansible.builtin.debug: + var: haproxy_validate + +- name: Restart HAProxy if configuration is valid + ansible.builtin.service: + name: haproxy + state: restarted + when: haproxy_validate.rc == 0 + +- name: Ensure HAProxy is started and enabled on boot + ansible.builtin.service: + name: haproxy + state: started + enabled: True diff --git a/roles/setup_install_haproxy/templates/haproxy.cfg.j2 b/roles/setup_install_haproxy/templates/haproxy.cfg.j2 index 46fa9fe..ed8a5d8 100644 --- a/roles/setup_install_haproxy/templates/haproxy.cfg.j2 +++ b/roles/setup_install_haproxy/templates/haproxy.cfg.j2 @@ -3,7 +3,7 @@ global log 127.0.0.1 local0 chroot /var/lib/haproxy pidfile /var/run/haproxy.pid - maxconn 250000 + maxconn 500000 user haproxy group haproxy daemon @@ -36,59 +36,332 @@ frontend stats ### # HTTP Frontend configuration ### +frontend http-frontend + bind *:80 + mode http + timeout client 300s -#frontend http-frontend -# bind *:80 -# mode http -# timeout client 300s + acl letsencrypt-acl path_beg -i /.well-known/acme-challenge/ + http-request redirect scheme https if !letsencrypt-acl + use_backend letsencrypt if letsencrypt-acl -# acl is_http ssl_fc -# acl letsencrypt-acl path_beg -i /.well-known/acme-challenge/ -# http-request redirect scheme https if !is_http !letsencrypt-acl -# use_backend letsencrypt if letsencrypt-acl -# default_backend letsencrypt + default_backend html-backend # SSL Frontend frontend ssl-frontend - bind *:443 ssl crt /etc/pki/certs # verify optional - mode http - timeout client 300s - - # Detecting WebSocket Upgrade header - acl wss hdr(Upgrade) -i websocket - - # Relay chains - acl polkadot path_beg -i /polkadot - acl kusama path_beg -i /kusama - acl westend path_beg -i /westend - - # Horizontal chains -# acl westmint path_beg -i /westmint -# acl statemine path_beg -i /statemine -# acl statemint path_beg -i /statemint -# acl encointerKusama path_beg -i /encointer-kusama -# acl bridge-hubKusama path_beg -i /bridge-hub-kusama -# acl bridge-hubPolkadot path_beg -i /bridge-hub-polkadot -# acl bridge-hubWestend path_beg -i /bridge-hub-westend -# acl collectivesWestend path_beg -i /collectives-westend -# acl collectivesPolkadot path_beg -i /collectives-polkadot - - # Polkadot - use_backend polkadot-backend if polkadot -# use_backend statemint-backend if statemint -# use_backend collectivesPolkadot-backend if collectivesPolkadot -# use_backend bridge-hubPolkadot-backend if bridge-hubPolkadot - # Kusama - use_backend kusama-backend if kusama -# use_backend statemine-backend if statemine -# use_backend encointerKusama-wss-backend if encointerKusama wss -# use_backend encointerKusama-rpc-backend if encointerKusama !wss -# use_backend bridge-hubKusama-backend if bridge-hubKusama - # Westend - use_backend westend-backend if westend -# use_backend westmint-backend if westmint -# use_backend collectivesWestend-backend if collectivesWestend -# use_backend bridge-hubWestend-backend if bridge-hubWestend + bind *:443 ssl crt /etc/pki/certs # verify optional + mode http + timeout client 300s + + # Detecting WebSocket Upgrade header + acl wss hdr(Upgrade) -i websocket + + # paras + acl rpc_rotko_net hdr(host) -i rpc.rotko.net + acl sys_rotko_net hdr(host) -i sys.rotko.net + acl up_rotko_net hdr(host) -i up.rotko.net + acl peering_rotko_net hdr(host) -i peering.rotko.net + acl rpc_dotters_network hdr(host) -i rpc.dotters.network + acl rpc_dotters_network hdr(host) -i sys.dotters.network + acl rpc_ibp_network hdr(host) -i rpc.ibp.network + acl rpc_ibp_network hdr(host) -i sys.ibp.network + + # penumbra + acl penumbra_rotko_net hdr(host) -i penumbra.rotko.net + acl status_penumbra_rpc path_beg /status + use_backend status_penumbra_rotko_net_backend if penumbra_rotko_net status_penumbra_rpc + use_backend penumbra_rotko_net_backend if penumbra_rotko_net + + # Polkadot + acl polkadot_dotters hdr(host) -i polkadot.dotters.network + acl polkadot_ibp hdr(host) -i polkadot.ibp.network + + use_backend polkadot-backend if polkadot_dotters or polkadot_ibp + + # Asset Hub Polkadot + acl asset_hub_polkadot_dotters hdr(host) -i asset-hub-polkadot.dotters.network + acl asset_hub_polkadot_ibp hdr(host) -i asset-hub-polkadot.ibp.network + + use_backend statemint-backend if asset_hub_polkadot_dotters or asset_hub_polkadot_ibp + + # Bridge Hub Polkadot + acl bridge_hub_polkadot_dotters hdr(host) -i bridge-hub-polkadot.dotters.network + acl bridge_hub_polkadot_ibp hdr(host) -i bridge-hub-polkadot.ibp.network + + use_backend bridgehubPolkadot-backend if bridge_hub_polkadot_dotters or bridge_hub_polkadot_ibp + + # Coretime Polkadot + acl coretime_polkadot_dotters hdr(host) -i coretime-polkadot.dotters.network + acl coretime_polkadot_ibp hdr(host) -i coretime-polkadot.ibp.network + + use_backend coretimePolkadot-backend if coretime_polkadot_dotters or coretime_polkadot_ibp + + # People Polkadot + acl people_polkadot_dotters hdr(host) -i people-polkadot.dotters.network + acl people_polkadot_ibp hdr(host) -i people-polkadot.ibp.network + + use_backend peoplePolkadot-backend if people_polkadot_dotters or people_polkadot_ibp + + # Collectives Polkadot + acl collectives_polkadot_dotters hdr(host) -i collectives-polkadot.dotters.network + acl collectives_polkadot_ibp hdr(host) -i collectives-polkadot.ibp.network + + use_backend collectivesPolkadot-backend if collectives_polkadot_dotters or collectives_polkadot_ibp + + # Kusama + acl kusama_dotters hdr(host) -i kusama.dotters.network + acl kusama_ibp hdr(host) -i kusama.ibp.network + + use_backend kusama-backend if kusama_dotters or kusama_ibp + + # Asset Hub Kusama + acl asset_hub_kusama_dotters hdr(host) -i asset-hub-kusama.dotters.network + acl asset_hub_kusama_ibp hdr(host) -i asset-hub-kusama.ibp.network + + use_backend statemine-backend if asset_hub_kusama_dotters or asset_hub_kusama_ibp + + # Bridge Hub Kusama + acl bridge_hub_kusama_dotters hdr(host) -i bridge-hub-kusama.dotters.network + acl bridge_hub_kusama_ibp hdr(host) -i bridge-hub-kusama.ibp.network + + use_backend bridgehubKusama-backend if bridge_hub_kusama_dotters or bridge_hub_kusama_ibp + + # Coretime Kusama + acl coretime_kusama_dotters hdr(host) -i coretime-kusama.dotters.network + acl coretime_kusama_ibp hdr(host) -i coretime-kusama.ibp.network + + use_backend coretimeKusama-backend if coretime_kusama_dotters or coretime_kusama_ibp + + # People Kusama + acl people_kusama_dotters hdr(host) -i people-kusama.dotters.network + acl people_kusama_ibp hdr(host) -i people-kusama.ibp.network + + use_backend peopleKusama-backend if people_kusama_dotters or people_kusama_ibp + + # Encointer Kusama + acl encointer_kusama_dotters hdr(host) -i encointer-kusama.dotters.network + acl encointer_kusama_ibp hdr(host) -i encointer-kusama.ibp.network + + use_backend encointerKusama-backend if encointer_kusama_dotters or encointer_kusama_ibp + + # Westend + acl westend_dotters hdr(host) -i westend.dotters.network + acl westend_ibp hdr(host) -i westend.ibp.network + + use_backend westend-backend if westend_dotters or westend_ibp + + # Asset Hub Westend + acl asset_hub_westend_dotters hdr(host) -i asset-hub-westend.dotters.network + acl asset_hub_westend_ibp hdr(host) -i asset-hub-westend.ibp.network + + use_backend westmint-backend if asset_hub_westend_dotters or asset_hub_westend_ibp + + # Bridge Hub Westend + acl bridge_hub_westend_dotters hdr(host) -i bridge-hub-westend.dotters.network + acl bridge_hub_westend_ibp hdr(host) -i bridge-hub-westend.ibp.network + + use_backend bridgehubWestend-backend if bridge_hub_westend_dotters or bridge_hub_westend_ibp + + # Coretime Westend + acl coretime_westend_dotters hdr(host) -i coretime-westend.dotters.network + acl coretime_westend_ibp hdr(host) -i coretime-westend.ibp.network + + use_backend coretimeWestend-backend if coretime_westend_dotters or coretime_westend_ibp + + # People Westend + acl people_westend_dotters hdr(host) -i people-westend.dotters.network + acl people_westend_ibp hdr(host) -i people-westend.ibp.network + + use_backend peopleWestend-backend if people_westend_dotters or people_westend_ibp + + # Collectives Westend + acl collectives_westend_dotters hdr(host) -i collectives-westend.dotters.network + acl collectives_westend_ibp hdr(host) -i collectives-westend.ibp.network + + use_backend collectivesWestend-backend if collectives_westend_dotters or collectives_westend_ibp + + # Paseo + acl paseo_dotters hdr(host) -i paseo.dotters.network + acl paseo_ibp hdr(host) -i paseo.ibp.network + + use_backend paseo-backend if paseo_dotters or paseo_ibp + + # Asset Hub Paseo + acl asset_hub_paseo_dotters hdr(host) -i asset-hub-paseo.dotters.network + acl asset_hub_paseo_ibp hdr(host) -i asset-hub-paseo.ibp.network + + use_backend asset-hub-paseo-backend if asset_hub_paseo_dotters or asset_hub_paseo_ibp + + # Bridge Hub Paseo + acl bridge_hub_paseo_dotters hdr(host) -i bridge-hub-paseo.dotters.network + acl bridge_hub_paseo_ibp hdr(host) -i bridge-hub-paseo.ibp.network + + use_backend bridge-hub-paseo-backend if bridge_hub_paseo_dotters or bridge_hub_paseo_ibp + + # Coretime Paseo + acl coretime_paseo_dotters hdr(host) -i coretime-paseo.dotters.network + acl coretime_paseo_ibp hdr(host) -i coretime-paseo.ibp.network + + use_backend coretime-paseo-backend if coretime_paseo_dotters or coretime_paseo_ibp + + # People Paseo + acl people_paseo_dotters hdr(host) -i people-paseo.dotters.network + acl people_paseo_ibp hdr(host) -i people-paseo.ibp.network + acl people_paseo_rotko hdr(host) -i people-paseo.rpc.rotko.net + + use_backend people-paseo-backend if people_paseo_dotters or people_paseo_ibp or people_paseo_rotko + + # polkarun + acl ibtc_polka_run hdr(host) -i ibtc.polka.run + acl kbtc_polka_run hdr(host) -i kbtc.polka.run + # link to backend + use_backend ibtc-polka-run-backend if ibtc_polka_run + use_backend kbtc-polka-run-backend if kbtc_polka_run + + #hydration + acl hydrationPolkadotDotters hdr(host) -i hydration.paras.dotters.network + acl hydrationPolkadotIBP hdr(host) -i hydration.paras.ibp.network + acl hydradxPolkadotDotters hdr(host) -i hydradx.paras.dotters.network + acl hydradxPolkadotIBP hdr(host) -i hydradx.paras.ibp.network + + # Relay chains + acl polkadot path_beg -i /polkadot + acl kusama path_beg -i /kusama + acl westend path_beg -i /westend + acl paseo path_beg -i /paseo + + # System parachains + acl statemint path_beg -i /statemint + acl assetHubPolkadot path_beg -i /asset-hub-polkadot + acl bridgehubPolkadot path_beg -i /bridgehub-polkadot + acl Bridge-Hub-Polkadot path_beg -i /bridge-hub-polkadot + acl collectivesPolkadot path_beg -i /collectives-polkadot + acl peoplePolkadot path_beg -i /people-polkadot + acl coretimePolkadot path_beg -i /coretime-polkadot + + acl statemine path_beg -i /statemine + acl assetHubKusama path_beg -i /asset-hub-kusama + acl bridgehubKusama path_beg -i /bridgehub-kusama + acl Bridge-Hub-Kusama path_beg -i /bridge-hub-kusama + acl encointerKusama path_beg -i /encointer-kusama + acl peopleKusama path_beg -i /people-kusama + acl coretimeKusama path_beg -i /coretime-kusama + + acl westmint path_beg -i /westmint + acl assetHubWestend path_beg -i /asset-hub-westend + acl bridgehubWestend path_beg -i /bridgehub-westend + acl Bridge-Hub-Westend path_beg -i /bridge-hub-westend + acl collectivesWestend path_beg -i /collectives-westend + acl peopleWestend path_beg -i /people-westend + acl coretimeWestend path_beg -i /coretime-westend + + acl assetHubPaseo path_beg -i /asset-hub-paseo + acl bridgehubPaseo path_beg -i /bridgehub-paseo + acl Bridge-Hub-Paseo path_beg -i /bridge-hub-paseo + #acl collectivesPaseo path_beg -i /collectives-paseo + acl peoplePaseo path_beg -i /people-paseo + acl coretimePaseo path_beg -i /coretime-paseo + + # Parachains + acl hydrationPolkadot path_beg -i /hydration + + # Polkadot + use_backend polkadot-backend if polkadot + use_backend statemint-backend if statemint or assetHubPolkadot + use_backend collectivesPolkadot-backend if collectivesPolkadot + use_backend bridgehubPolkadot-backend if bridgehubPolkadot or Bridge-Hub-Polkadot + use_backend coretimePolkadot-backend if coretimePolkadot + use_backend peoplePolkadot-backend if peoplePolkadot + + # Paras + use_backend hydrationPolkadot-backend if wss hydrationPolkadotDotters or hydrationPolkadotIBP or hydrationPolkadot or hydradxPolkadotDotters or hydradxPolkadotIBP + + # Kusama + use_backend kusama-backend if kusama + use_backend statemine-backend if statemine or assetHubKusama + use_backend encointerKusama-backend if encointerKusama + use_backend bridgehubKusama-backend if bridgehubKusama or Bridge-Hub-Kusama + use_backend coretimeKusama-backend if coretimeKusama + use_backend peopleKusama-backend if peopleKusama + + # Westend + use_backend westend-backend if westend + use_backend westmint-backend if westmint or assetHubWestend + use_backend collectivesWestend-backend if collectivesWestend + use_backend bridgehubWestend-backend if bridgehubWestend or Bridge-Hub-Westend + use_backend coretimeWestend-backend if coretimeWestend + use_backend peopleWestend-backend if peopleWestend + + # Paseo + use_backend paseo-backend if paseo + use_backend asset-hub-paseo-backend if assetHubPaseo + use_backend bridge-hub-paseo-backend if bridgehubPaseo or Bridge-Hub-Paseo + use_backend coretime-paseo-backend if coretimePaseo + use_backend people-paseo-backend if peoplePaseo + + # Check for the hostname to match bkk.rotko.net + acl is_bkk01_rotko_net hdr_end(host) -i bkk01.rotko.net + use_backend bkk01-proxmox-backend if is_bkk01_rotko_net + acl is_bkk02_rotko_net hdr_end(host) -i bkk02.rotko.net + use_backend bkk02-proxmox-backend if is_bkk02_rotko_net + acl is_bkk03_rotko_net hdr_end(host) -i bkk03.rotko.net + use_backend bkk03-proxmox-backend if is_bkk03_rotko_net + acl is_bkk04_rotko_net hdr_end(host) -i bkk04.rotko.net + use_backend bkk04-proxmox-backend if is_bkk04_rotko_net + acl is_bkk06_rotko_net hdr_end(host) -i bkk06.rotko.net + use_backend bkk06-proxmox-backend if is_bkk06_rotko_net + acl is_bkk07_rotko_net hdr_end(host) -i bkk07.rotko.net + use_backend bkk07-proxmox-backend if is_bkk07_rotko_net + acl is_bkk07_kvm_rotko_net hdr_end(host) -i bkk07.kvm.rotko.net + use_backend bkk07-kvm-backend if is_bkk07_kvm_rotko_net + + + # api redirects + acl url_api path_beg /api + + # up + use_backend up_rotko_net_backend if up_rotko_net + #peering + use_backend api_peering_rotko_net_backend if peering_rotko_net url_api + use_backend peering_rotko_net_backend if peering_rotko_net + + # Check for the hostname to match ibp-metrics.rotko.net + acl is_ibp_metrics_rotko_net hdr_end(host) -i ibp-metrics.rotko.net + + # whitelisted IPs for metrics + acl allow_amforc_metrics src 91.90.166.221/24 + + # Use ACLs to allow requests only from the allowed IPs and matching hostname + # use_backend ibp-metrics-backend if is_ibp_metrics_rotko_net allow_amforc_metrics + use_backend ibp-metrics-backend if is_ibp_metrics_rotko_net + + # ibp-monitor.rotko.net + # acl is_ibp_monitor_rotko_net hdr_end(host) -i ibp-monitor.rotko.net + # use_backend ibp-monitor-backend if is_ibp_monitor_rotko_net + + # mikromon.rotko.net + acl is_mikromon_rotko_net hdr_end(host) -i mikromon.rotko.net + use_backend mikrotik-monitoring if is_mikromon_rotko_net + + # ibp.rotko.net + acl is_ibp_rotko_net hdr_end(host) -i ibp.rotko.net + use_backend ibp-monitor-backend if is_ibp_rotko_net + use_backend ibp-monitor-api-backend if is_ibp_rotko_net url_api + + # alerts/watchdog + acl is_watchdog path_beg /watchdog + use_backend watchdog_backend if is_watchdog + acl is_alert path_beg /alert + use_backend alert_backend if is_alert + + # beefy + acl is_beefy hdr_end(host) -i beefy.rotko.net + use_backend beefyapi-backend if is_beefy url_api + use_backend beefyfront-backend if is_beefy + acl is_astrolabe hdr_end(host) -i astrolabe.rotko.net + use_backend astrolabe-backend if is_astrolabe + + default_backend html-backend ### # Polkadot Backend Configurations @@ -97,8 +370,49 @@ frontend ssl-frontend backend polkadot-backend mode http balance leastconn - server polkadot1-rpc 192.168.69.13:9313 check inter 2s maxconn 200 - server polkadot2-rpc 192.168.69.14:9314 check inter 2s maxconn 200 + #server polkadot-bkk03-rpc 192.168.69.13:9313 check inter 2s maxconn 50000 will be deprecated + server polkadot-bkk06-rpc 192.168.76.16:9316 check inter 2s maxconn 50000 + server rpc-polkadot-02-bkk07 192.168.77.12:9312 check inter 2s maxconn 50000 + +backend statemint-backend + mode http + balance leastconn + #server statemint-bkk03-rpc 192.168.69.41:9613 check inter 2s maxconn 50000 # will be deprecated + server statemint-bkk06-rpc 192.168.76.41:9716 check inter 2s maxconn 50000 # for some reason doesnt work 9616 + server rpc-asset-hub-polkadot-01 192.168.111.11:9400 check inter 2s maxconn 50000 + +backend bridgehubPolkadot-backend + mode http + balance leastconn + #server bridgehub-polkadot-bkk03-rpc 192.168.69.44:9643 check inter 2s maxconn 50000# will be deprecated + server bridgehub-polkadot-bkk06-rpc 192.168.76.44:9646 check inter 2s maxconn 50000 + server rpc-bridge-hub-polkadot-01 192.168.111.12:9400 check inter 2s maxconn 50000 + +backend collectivesPolkadot-backend + mode http + balance leastconn + #server collectives-polkadot-bkk03-rpc 192.168.69.47:9673 check inter 2s maxconn 50000# will be deprecated + server collectives-polkadot-bkk06-rpc 192.168.76.47:9676 check inter 2s maxconn 50000 + server rpc-collectives-polkadot-01 192.168.111.13:9400 check inter 2s maxconn 50000 + +backend coretimePolkadot-backend + mode http + balance leastconn + server coretime-polkadot-bkk06-rpc 192.168.176.16:9816 check inter 2s maxconn 50000 + #server coretime-polkadot-bkk07-rpc 192.168.177.16:9817 check inter 2s maxconn 50000 + server coretime-polkadot-bkk07-rpc 192.168.77.16:9400 check inter 2s maxconn 50000 + +backend peoplePolkadot-backend + mode http + balance leastconn + server people-polkadot-bkk06-rpc 192.168.76.18:9846 check inter 2s maxconn 50000 + server people-polkadot-bkk07-rpc 192.168.77.18:9847 check inter 2s maxconn 50000 + +backend hydrationPolkadot-backend + mode http + balance leastconn + server hydration-polkadot-bkk06-rpc 192.168.76.83:9836 check inter 2s maxconn 50000 + server hydration-polkadot-bkk07-rpc 192.168.77.83:9837 check inter 2s maxconn 50000 ### # Kusama Backend Configurations @@ -107,8 +421,40 @@ backend polkadot-backend backend kusama-backend mode http balance leastconn - server kusama1-rpc 192.168.69.23:9323 check inter 2s maxconn 200 - server kusama2-rpc 192.168.69.24:9324 check inter 2s maxconn 200 + server kusama-bkk06-rpc 192.168.76.26:9326 check inter 2s maxconn 50000 + server kusama-bkk07-rpc 192.168.77.22:9322 check inter 2s maxconn 50000 + +backend statemine-backend + mode http + balance leastconn + server statemine-bkk06-rpc 192.168.76.42:9626 check inter 2s maxconn 50000 + server statemine-bkk07-rpc 192.168.121.11:9400 check inter 2s maxconn 50000 + +backend bridgehubKusama-backend + mode http + balance leastconn + server bridgehub-kusama-bkk06-rpc 192.168.76.45:9656 check inter 2s maxconn 50000 + server bridgehub-kusama-bkk07-rpc 192.168.121.12:9400 check inter 2s maxconn 50000 + +backend encointerKusama-backend + mode http + balance leastconn + server encointer-bkk06-rpc 192.168.76.40:9606 check inter 2s maxconn 50000 + server encointer-bkk07-rpc 192.168.121.16:9400 check inter 2s maxconn 50000 + +backend coretimeKusama-backend + mode http + balance leastconn + server coretime-kusama-bkk06-rpc 192.168.76.27:9826 check inter 2s maxconn 50000 + #server coretime-kusama-bkk07-rpc 192.168.77.27:9827 check inter 2s maxconn 50000 #will be deprecated + server rpc-coretime-kusama-bkk07 192.168.122.15:9400 check inter 2s maxconn 50000 + +backend peopleKusama-backend + mode http + balance leastconn + server people-kusama-bkk06-rpc 192.168.76.28:9856 check inter 2s maxconn 50000 + #server people-kusama-bkk07-rpc 192.168.77.28:9857 check inter 2s maxconn 50000 #will be deprecated + server rpc-people-kusama-bkk07 192.168.122.14:9400 check inter 2s maxconn 50000 ### # Westend Backend Configurations @@ -117,24 +463,393 @@ backend kusama-backend backend westend-backend mode http balance leastconn - server westend1-rpc 192.168.69.33:9333 check inter 2s maxconn 200 - server westend2-rpc 192.168.69.34:9334 check inter 2s maxconn 200 + #server westend-bkk03-rpc 192.168.69.33:9333 check inter 2s maxconn 50000 + server westend-bkk06-rpc 192.168.76.36:9336 check inter 2s maxconn 50000 + server westend-bkk07-rpc 192.168.77.32:9332 check inter 2s maxconn 50000 + +backend westmint-backend + mode http + balance leastconn + #server westmint-bkk03-rpc 192.168.69.43:9633 check inter 2s maxconn 50000# will be deprecated + server westmint-bkk06-rpc 192.168.76.43:9636 check inter 2s maxconn 50000 + server rpc-asset-hub-westend-01 192.168.131.11:9400 check inter 2s maxconn 50000 + +backend bridgehubWestend-backend + mode http + balance leastconn + #server bridgehub-westend-bkk03-rpc 192.168.69.46:9663 check inter 2s maxconn 50000# will be deprecated + server bridgehub-westend-bkk06-rpc 192.168.76.48:9666 check inter 2s maxconn 50000 + server rpc-bridge-hub-westend-01 192.168.131.12:9400 check inter 2s maxconn 50000 + +backend collectivesWestend-backend + mode http + balance leastconn + #server collectives-westend-bkk03-rpc 192.168.69.49:9693 check inter 2s maxconn 50000# will be deprecated + server collectives-westend-bkk06-rpc 192.168.76.49:9696 check inter 2s maxconn 50000 + server rpc-collectives-westend-01 192.168.131.13:9400 check inter 2s maxconn 50000 + +backend coretimeWestend-backend + mode http + balance leastconn + server coretime-westend-bkk06-rpc 192.168.76.37:9936 check inter 2s maxconn 50000 + #server coretime-westend-bkk07-rpc 192.168.77.37:9937 check inter 2s maxconn 50000 #will be deprecated + server rpc-coretime-westend-bkk07 192.168.132.15:9400 check inter 2s maxconn 50000 + +backend peopleWestend-backend + mode http + balance leastconn + server people-westend-bkk06-rpc 192.168.76.38:9866 check inter 2s maxconn 50000 + #server people-westend-bkk07-rpc 192.168.77.38:9867 check inter 2s maxconn 50000 #will be deprecated + server rpc-people-westend-bkk07 192.168.132.14:9400 check inter 2s maxconn 50000 + +### +# Paseo Backend Configurations +### + +backend paseo-backend + mode http + balance leastconn +# server paseo-bkk04-rpc 192.168.69.48:9348 check inter 2s maxconn 2000 + server paseo-bkk06-rpc 192.168.76.46:9346 check inter 2s maxconn 2000 + +### +# Paseo Parachain Backend Configurations +### + +backend asset-hub-paseo-backend + mode http + balance leastconn + server asset-hub-paseo-bkk06-rpc 192.168.76.50:9956 check inter 2s maxconn 2000 + server asset-hub-paseo-bkk07-rpc 192.168.77.50:9957 check inter 2s maxconn 2000 + +backend bridge-hub-paseo-backend + mode http + balance leastconn + server bridge-hub-paseo-bkk06-rpc 192.168.76.60:9966 check inter 2s maxconn 2000 + server bridge-hub-paseo-bkk07-rpc 192.168.77.60:9967 check inter 2s maxconn 2000 + +backend coretime-paseo-backend + mode http + balance leastconn + server coretime-paseo-bkk06-rpc 192.168.46.90:9400 check inter 2s maxconn 2000 + server coretime-paseo-bkk07-rpc 192.168.47.90:9400 check inter 2s maxconn 2000 + +backend people-paseo-backend + mode http + balance leastconn + server people-paseo-bkk06-rpc 192.168.46.94:9400 check inter 2s maxconn 2000 + server people-paseo-bkk07-rpc 192.168.47.94:9400 check inter 2s maxconn 2000 + +### +# WSS reverse proxy +### + + ### + # Parachains Frontend + ### + +frontend p2p-para-wss-passthrough + bind *:30435 + mode tcp + tcp-request inspect-delay 2s + tcp-request content accept if { req_ssl_hello_type 1 } + + ### + # Polkadot + ### + acl domain-match-asset-hub-polkadot req_ssl_sni -i asset-hub-polkadot.boot.rotko.net + acl domain-match-bridge-hub-polkadot req_ssl_sni -i bridge-hub-polkadot.boot.rotko.net + acl domain-match-collectives-polkadot req_ssl_sni -i collectives-polkadot.boot.rotko.net + + use_backend asset-hub-polkadot-p2p-wss-backend if domain-match-asset-hub-polkadot + use_backend bridge-hub-polkadot-p2p-wss-backend if domain-match-bridge-hub-polkadot + use_backend collectives-polkadot-p2p-wss-backend if domain-match-collectives-polkadot + + ### + # Kusama + ### + acl domain-match-asset-hub-kusama req_ssl_sni -i asset-hub-kusama.boot.rotko.net + acl domain-match-bridge-hub-kusama req_ssl_sni -i bridge-hub-kusama.boot.rotko.net + acl domain-match-encointer-kusama req_ssl_sni -i encointer-kusama.boot.rotko.net + acl domain-match-people-kusama req_ssl_sni -i people-kusama.boot.rotko.net + acl domain-match-coretime-kusama req_ssl_sni -i coretime-kusama.boot.rotko.net + + use_backend asset-hub-kusama-p2p-wss-backend if domain-match-asset-hub-kusama + use_backend bridge-hub-kusama-p2p-wss-backend if domain-match-bridge-hub-kusama + use_backend encointer-kusama-p2p-wss-backend if domain-match-encointer-kusama + use_backend people-kusama-p2p-wss-backend if domain-match-people-kusama + use_backend coretime-kusama-p2p-wss-backend if domain-match-coretime-kusama + + ### + # Westend + ### + acl domain-match-asset-hub-westend req_ssl_sni -i asset-hub-westend.boot.rotko.net + acl domain-match-bridge-hub-westend req_ssl_sni -i bridge-hub-westend.boot.rotko.net + acl domain-match-collectives-westend req_ssl_sni -i collectives-westend.boot.rotko.net + acl domain-match-people-westend req_ssl_sni -i people-westend.boot.rotko.net + acl domain-match-coretime-westend req_ssl_sni -i coretime-westend.boot.rotko.net + + use_backend asset-hub-westend-p2p-wss-backend if domain-match-asset-hub-westend + use_backend bridge-hub-westend-p2p-wss-backend if domain-match-bridge-hub-westend + use_backend collectives-westend-p2p-wss-backend if domain-match-collectives-westend + use_backend people-westend-p2p-wss-backend if domain-match-people-westend + use_backend coretime-westend-p2p-wss-backend if domain-match-coretime-westend + + ### + # Paseo + ### + + acl domain-match-people-paseo req_ssl_sni -i people-paseo.boot.rotko.net + acl domain-match-coretime-paseo req_ssl_sni -i coretime-paseo.boot.rotko.net + + use_backend people-paseo-p2p-wss-backend if domain-match-people-paseo + use_backend coretime-paseo-p2p-wss-backend if domain-match-coretime-paseo + + ### + # Relaychains Frontend + ### + +frontend p2p-relay-wss-passthrough + bind *:30335 + mode tcp + tcp-request inspect-delay 2s + tcp-request content accept if { req_ssl_hello_type 1 } + + + ### + # Polkadot + ### + acl domain-match-val-polkadot-01 req_ssl_sni -i val-polkadot-01.rotko.net + acl domain-match-val-polkadot-02 req_ssl_sni -i val-polkadot-02.rotko.net + + use_backend val-polkadot-01-p2p-wss-backend if domain-match-val-polkadot-01 + use_backend val-polkadot-02-p2p-wss-backend if domain-match-val-polkadot-02 + + ### + # Kusama + ### + acl domain-match-val-kusama-01 req_ssl_sni -i val-kusama-01.rotko.net + acl domain-match-val-kusama-02 req_ssl_sni -i val-kusama-02.rotko.net + + use_backend val-kusama-01-p2p-wss-backend if domain-match-val-kusama-01 + use_backend val-kusama-02-p2p-wss-backend if domain-match-val-kusama-02 + +### +# Polkadot p2p-wss backend +### + +backend val-polkadot-01-p2p-wss-backend + mode tcp + server container 192.168.69.115:30335 check + +backend val-polkadot-02-p2p-wss-backend + mode tcp + server container 192.168.217.115:30335 check + +backend asset-hub-polkadot-p2p-wss-backend + mode tcp + balance leastconn + server rpc-asset-hub-polkadot-bkk06 192.168.111.11:30435 check + server rpc-asset-hub-polkadot-bkk07 192.168.112.11:30435 check + +backend bridge-hub-polkadot-p2p-wss-backend + mode tcp + balance leastconn + server rpc-bridge-hub-polkadot-bkk06 192.168.111.12:30435 check + server rpc-bridge-hub-polkadot-bkk07 192.168.112.12:30435 check + +backend collectives-polkadot-p2p-wss-backend + mode tcp + balance leastconn + server rpc-collectives-polkadot-bkk06 192.168.111.13:30435 check + server rpc-collectives-polkadot-bkk07 192.168.112.13:30435 check + +### +# Kusama p2p-wss backend +### + +backend val-kusama-01-p2p-wss-backend + mode tcp + server val-kusama-bkk04 192.168.69.125:30335 check + +backend val-kusama-02-p2p-wss-backend + mode tcp + server val-kusama-bkk07 192.168.227.125:30335 check + +backend asset-hub-kusama-p2p-wss-backend + mode tcp + server asset-hub-kusama-bkk07 192.168.121.11:30435 check + +backend bridge-hub-kusama-p2p-wss-backend + mode tcp + server bridge-hub-kusama-bkk07 192.168.121.12:30435 check + +backend people-kusama-p2p-wss-backend + mode tcp + server people-kusama-bkk07 192.168.122.14:30435 check + +backend coretime-kusama-p2p-wss-backend + mode tcp + server coretime-kusama-bkk07 192.168.122.15:30435 check + +backend encointer-kusama-p2p-wss-backend + mode tcp + server encointer-kusama-bkk07 192.168.121.16:30435 check + +### +# Westend p2p-wss backend +### + +backend asset-hub-westend-p2p-wss-backend + mode tcp + balance leastconn + server rpc-asset-hub-westend-bkk06 192.168.131.11:30435 check + server rpc-asset-hub-westend-bkk07 192.168.132.11:30435 check + +backend bridge-hub-westend-p2p-wss-backend + mode tcp + balance leastconn + server rpc-bridge-hub-westend-bkk06 192.168.131.12:30435 check + server rpc-bridge-hub-westend-bkk07 192.168.132.12:30435 check + +backend collectives-westend-p2p-wss-backend + mode tcp + balance leastconn + server rpc-collectives-westend-bkk06 192.168.131.13:30435 check + server rpc-collectives-westend-bkk07 192.168.132.13:30435 check + +backend people-westend-p2p-wss-backend + mode tcp + server rpc-people-westend-bkk07 192.168.132.14:30435 check + +backend coretime-westend-p2p-wss-backend + mode tcp + server rpc-coretime-westend-bkk07 192.168.132.15:30435 check + +### +# Paseo p2p-wss backend +### + +backend people-paseo-p2p-wss-backend + mode tcp + balance leastconn + server rpc-people-paseo-bkk06 192.168.46.94:30435 check + server rpc-people-paseo-bkk07 192.168.47.94:30435 check + +backend coretime-paseo-p2p-wss-backend + mode tcp + balance leastconn + server rpc-coretime-paseo-bkk06 192.168.46.90:30435 check + server rpc-coretime-paseo-bkk07 192.168.47.90:30435 check + ### # MISC Backend Configurations ### +backend bkk01-proxmox-backend + mode http + server bkk01-proxmox 192.168.69.101:8006 ssl verify none + +backend bkk02-proxmox-backend + mode http + server bkk02-proxmox 192.168.69.102:8006 ssl verify none + +backend bkk03-proxmox-backend + mode http + server bkk03-proxmox 192.168.69.103:8006 ssl verify none + +backend bkk04-proxmox-backend + mode http + server bkk04-proxmox 192.168.69.104:8006 ssl verify none + +backend bkk06-proxmox-backend + mode http + server bkk06-proxmox 192.168.76.1:8006 ssl verify none + +backend bkk07-proxmox-backend + mode http + server bkk07-proxmox 192.168.77.1:8006 ssl verify none + +backend bkk07-kvm-backend + mode http + server bkk07-kvm 192.168.77.10:443 ssl verify none + +backend html-backend + mode http + server html_localhost 192.168.69.103:6969 + +backend up_rotko_net_backend + mode http + server up_rotko_net_bkk06 192.168.76.1:16969 + +backend peering_rotko_net_backend + mode http + server peering_rotko_net_bkk06 192.168.69.103:28080 + +backend api_peering_rotko_net_backend + mode http + server api_peering_rotko_net_bkk06 192.168.69.103:28081 + +backend ibp-monitor-backend + mode http + balance leastconn + server ibp-monitor 192.168.69.103:30001 check inter 2s + +backend ibp-monitor-api-backend + mode http + balance leastconn + server ibp-monitor-api 192.168.69.103:30002 check inter 2s + +backend ibp-metrics-backend + mode http + #balance leastconn + server ibp-metrics 192.168.69.97:80 # check inter 2s + #server ibp-metrics 192.168.69.97:9090 # check inter 2s + +backend letsencrypt + mode http + server certbot localhost:8888 + +backend mikrotik-monitoring + mode http + server mikrotik-monitoring localhost:2080 + +backend beefyfront-backend + mode http + server ibp-monitor 192.168.69.103:3636 check inter 2s + +backend astrolabe-backend + mode http + server docker-astrolabe 192.168.69.103:42300 check inter 2s + +backend ibtc-polka-run-backend + mode http + server ibtc-polka-run 192.168.69.103:14011 check inter 2s + +backend kbtc-polka-run-backend + mode http + server kbtc-polka-run 192.168.69.103:14010 check inter 2s + +backend beefyapi-backend + mode http + server ibp-monitor 192.168.69.103:4000 check inter 2s + +backend watchdog_backend + mode http + server watchdog-ibp-bkk06 192.168.76.1:7000 -#backend letsencrypt -# mode http -# balance leastconn -# server letsencrypt 192.168.69.95:80 check inter 2s maxconn 200 +backend alert_backend + mode http + server alert-ibp-bkk06 192.168.76.1:7000 -#backend monitor -# mode http -# balance leastconn -# server monitor 192.168.69.98:80 check inter 2s maxconn 200 +# penumbra +backend penumbra_rotko_net_backend + mode http + option httpchk + server penumbra-web 127.0.0.1:13371 check -#backend ibp -# mode http -# balance leastconn -# server monitor 192.168.69.97:80 check inter 2s maxconn 200 +backend status_penumbra_rotko_net_backend + mode http + option httpchk + http-check send meth GET uri /status + server penumbra-status-1 127.0.0.1:13372 check diff --git a/roles/setup_install_hydration/templates/endpoint.service.j2 b/roles/setup_install_hydration/templates/endpoint.service.j2 index 38fa770..9012606 100644 --- a/roles/setup_install_hydration/templates/endpoint.service.j2 +++ b/roles/setup_install_hydration/templates/endpoint.service.j2 @@ -23,12 +23,11 @@ ExecStart={{ default_base_path }}/hydration \ --sync full \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port }} \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port_ws }}/ws \ - --public-addr /ip4/{{ ansible_host }}/tcp/{{ default_p2p_port }} \ - --public-addr /ip4/{{ ansible_host }}/tcp/{{ default_p2p_port_ws }}/ws \ --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port }} \ - --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port_ws }}/ws \ --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port_wss }}/wss \ - --rpc-port {{ default_rpc_port }} \ + {% if default_bootnode_domain is defined %}--public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_p2p_port }} \ + --public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_bootnode_p2p_port_wss }}/wss \ + {% endif %}--rpc-port {{ default_rpc_port }} \ --prometheus-port {{ default_prom_port }} \ --prometheus-external \ --relay-chain-rpc-urls {{ default_relay_rpc }} {{ default_relay_rpc_fallback }} \ diff --git a/roles/setup_install_kilt/tasks/main.yaml b/roles/setup_install_kilt/tasks/main.yaml index a73d797..c1a3e38 100644 --- a/roles/setup_install_kilt/tasks/main.yaml +++ b/roles/setup_install_kilt/tasks/main.yaml @@ -88,10 +88,33 @@ - ansible_local['noderole']['node']['version'] != default_client_version - not kilt_binary.stat.exists +- name: Install protobuf compiler and dependencies + ansible.builtin.package: + name: + - protobuf-compiler + - libprotobuf-dev + state: present + become: true + become_user: root + when: + - ansible_local['noderole']['node']['pinned'] != "True" + - ansible_local['noderole']['node']['version'] != default_client_version + - not kilt_binary.stat.exists + +- name: Install libclang and related dependencies + ansible.builtin.package: + name: + - libclang-dev + - clang + - llvm-dev + state: present + become: true + become_user: root + #NOTE: take look at it -al - name: Build client from source as root ansible.builtin.command: - cmd: cargo build --release + cmd: cargo build --release -p kilt-parachain chdir: "{{ default_base_path }}/kilt-node-{{ default_client_version }}" become: True # Build as root become_user: root diff --git a/roles/setup_install_kilt/templates/endpoint.service.j2 b/roles/setup_install_kilt/templates/endpoint.service.j2 index 5a10046..50b3f93 100644 --- a/roles/setup_install_kilt/templates/endpoint.service.j2 +++ b/roles/setup_install_kilt/templates/endpoint.service.j2 @@ -23,12 +23,11 @@ ExecStart={{ default_base_path }}/kilt \ --sync full \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port }} \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port_ws }}/ws \ - --public-addr /ip4/{{ ansible_host }}/tcp/{{ default_p2p_port }} \ - --public-addr /ip4/{{ ansible_host }}/tcp/{{ default_p2p_port_ws }}/ws \ --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port }} \ - --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port_ws }}/ws \ --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port_wss }}/wss \ - --rpc-port {{ default_rpc_port }} \ + {% if default_bootnode_domain is defined %}--public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_p2p_port }} \ + --public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_bootnode_p2p_port_wss }}/wss \ + {% endif %}--rpc-port {{ default_rpc_port }} \ --prometheus-port {{ default_prom_port }} \ --prometheus-external \ --relay-chain-rpc-urls {{ default_relay_rpc }} {{ default_relay_rpc_fallback }} \ diff --git a/roles/setup_install_nginx/tasks/main.yaml b/roles/setup_install_nginx/tasks/main.yaml index 9b1a161..b84e983 100644 --- a/roles/setup_install_nginx/tasks/main.yaml +++ b/roles/setup_install_nginx/tasks/main.yaml @@ -69,7 +69,7 @@ become: True become_user: root - #NOTE: added --dns-cloudflare-propagation-seconds 60 -al + #NOTE: added --dns-cloudflare-propagation-seconds 60 and --expand flag for multiple domains -al - name: Renew Let's Encrypt certificate using DNS challenge ansible.builtin.command: > certbot certonly --dns-cloudflare @@ -78,11 +78,15 @@ {% if default_bootnode_domain is defined and default_bootnode_domain | length > 0 %} -d {{ default_bootnode_domain }} {% endif %} + {% if transition_bootnode_domain is defined and transition_bootnode_domain | length > 0 %} + -d {{ transition_bootnode_domain }} + {% endif %} --non-interactive --agree-tos --email {{ default_certificate_email }} --deploy-hook "systemctl reload nginx" - --dns-cloudflare-propagation-seconds 60 + --dns-cloudflare-propagation-seconds 120 + --expand become: True become_user: root when: days_until_expiration is not defined or days_until_expiration | int < 30 @@ -121,7 +125,7 @@ - name: Set up Certbot auto-renewal ansible.builtin.cron: name: "Certbot renewal" - job: "certbot renew --quiet --dns-cloudflare --dns-cloudflare-credentials /root/.secrets/certbot/cloudflare.ini --deploy-hook 'systemctl reload nginx'" + job: "certbot renew --quiet --dns-cloudflare --dns-cloudflare-credentials /root/.secrets/certbot/cloudflare.ini --expand --deploy-hook 'systemctl reload nginx'" minute: "0" hour: "3" weekday: "1" diff --git a/roles/setup_install_nginx/templates/https-prometheus.conf.j2 b/roles/setup_install_nginx/templates/https-prometheus.conf.j2 new file mode 100644 index 0000000..dff9a2d --- /dev/null +++ b/roles/setup_install_nginx/templates/https-prometheus.conf.j2 @@ -0,0 +1,26 @@ +server { + listen 80; + server_name ibp-metrics-2.rotko.net; + + access_log /var/log/nginx/ibp-metrics.rotko.net_access.log; + error_log /var/log/nginx/ibp-metrics.rotko.net_error.log; + + + # Define the 404 error page location + error_page 404 /404.html; + location = /404.html { + root /var/www/errors; + internal; + } + + location / { + proxy_bind off; + proxy_connect_timeout 1s; + proxy_pass http://127.0.0.1:9090; + proxy_set_header Host $host; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header REMOTE_ADDR $remote_addr; + proxy_intercept_errors on; + } +} diff --git a/roles/setup_install_penumbra/handlers/main.yaml b/roles/setup_install_penumbra/handlers/main.yaml index 252518d..5f35aec 100644 --- a/roles/setup_install_penumbra/handlers/main.yaml +++ b/roles/setup_install_penumbra/handlers/main.yaml @@ -1,7 +1,26 @@ --- +- name: Symlink cometbft & validator service to systemd + ansible.builtin.file: + src: "{{ default_home_path }}/{{ item }}.service" + dest: "/etc/systemd/system/{{ item }}.service" + state: link + force: True + owner: "root" + group: "root" + mode: "0644" + loop: + - validator + - cometbft + - name: Stop Penumbra ansible.builtin.systemd: - name: pclientd + name: validator + state: stopped + enabled: True + +- name: Stop Cometbft + ansible.builtin.systemd: + name: cometbft state: stopped enabled: True @@ -9,11 +28,41 @@ ansible.builtin.systemd: daemon_reload: True +- name: Start Cometbft + ansible.builtin.systemd: + name: cometbft + state: started + enabled: True + - name: Start Penumbra ansible.builtin.systemd: - name: pclientd + name: validator state: started enabled: True +- name: Add type of service fact + ansible.builtin.lineinfile: + path: /etc/ansible/facts.d/noderole.fact + regexp: "^type=" + line: "type={{ default_node_type }}" + create: True + mode: "0644" + +- name: Add Penumbra service version + ansible.builtin.lineinfile: + path: /etc/ansible/facts.d/noderole.fact + regexp: "^version=" + line: "version={{ penumbra_version }}" + create: True + mode: "0644" + +- name: Add Service Pinned Status + ansible.builtin.lineinfile: + path: /etc/ansible/facts.d/noderole.fact + regexp: "^pinned=" + line: "pinned=False" + create: True + mode: "0644" + - name: Flush Handlers ansible.builtin.meta: flush_handlers diff --git a/roles/setup_install_penumbra/tasks/main.yaml b/roles/setup_install_penumbra/tasks/main.yaml index 63d9a0c..558038b 100644 --- a/roles/setup_install_penumbra/tasks/main.yaml +++ b/roles/setup_install_penumbra/tasks/main.yaml @@ -12,7 +12,7 @@ create_home: False group: "{{ default_user }}" groups: [] - home: "{{ default_base_path }}" + home: "{{ default_home_path }}" name: "{{ default_user }}" shell: "/sbin/nologin" state: present @@ -23,41 +23,238 @@ path: "{{ item }}" owner: "{{ default_user }}" group: "{{ default_user }}" - mode: '0750' + mode: "0750" state: directory loop: - - "{{ default_base_path }}" + - "{{ default_home_path }}" - "{{ default_database_path }}" - name: Gather facts ansible.builtin.setup: +- name: Set version fact + ansible.builtin.set_fact: + needs_update: "{{ ansible_local['noderole']['node']['version'] != penumbra_version }}" + - name: Download and install pcli ansible.builtin.shell: - cmd: "set -o pipefail && curl --proto '=https' --tlsv1.2 -LsSf https://github.com/penumbra-zone/penumbra/releases/download/v{{ default_client_version }}/pcli-installer.sh | sh" + cmd: "set -o pipefail && curl --proto '=https' --tlsv1.2 -LsSf https://github.com/penumbra-zone/penumbra/releases/download/v{{ penumbra_version }}/pcli-installer.sh | sh" become: True become_user: "{{ default_user }}" - when: ansible_local['noderole']['node']['version'] != default_client_version + when: ansible_local['noderole']['node']['version'] != penumbra_version args: - warn: False executable: /bin/bash - name: Download and install pd ansible.builtin.shell: - cmd: "set -o pipefail && curl --proto '=https' --tlsv1.2 -LsSf https://github.com/penumbra-zone/penumbra/releases/download/v{{ default_client_version }}/pd-installer.sh | sh" + cmd: "set -o pipefail && curl --proto '=https' --tlsv1.2 -LsSf https://github.com/penumbra-zone/penumbra/releases/download/v{{ penumbra_version }}/pd-installer.sh | sh" become: True become_user: "{{ default_user }}" - when: ansible_local['noderole']['node']['version'] != default_client_version + when: ansible_local['noderole']['node']['version'] != penumbra_version args: - warn: False executable: /bin/bash - name: Download and install pclientd ansible.builtin.shell: - cmd: "set -o pipefail && curl --proto '=https' --tlsv1.2 -LsSf https://github.com/penumbra-zone/penumbra/releases/download/v{{ default_client_version }}/pclientd-installer.sh | sh" + cmd: "set -o pipefail && curl --proto '=https' --tlsv1.2 -LsSf https://github.com/penumbra-zone/penumbra/releases/download/v{{ penumbra_version }}/pclientd-installer.sh | sh" become: True become_user: "{{ default_user }}" - when: ansible_local['noderole']['node']['version'] != default_client_version + when: ansible_local['noderole']['node']['version'] != penumbra_version + args: + executable: /bin/bash + +- name: Ensure tmp directory exists + ansible.builtin.file: + path: "{{ default_home_path }}/tmp" + state: directory + mode: "0750" + owner: "{{ default_user }}" + group: "{{ default_user }}" + when: ansible_local['noderole']['node']['version'] != cometbft_version + +- name: Download cometbft + ansible.builtin.get_url: + url: "{{ cometbft_download_url }}" + dest: "{{ default_home_path }}/tmp" + mode: "u+r+x" + owner: "{{ default_user }}" + group: "{{ default_user }}" + when: ansible_local['noderole']['node']['version'] != cometbft_version + +- name: Unpack cometbft + ansible.builtin.unarchive: + src: "{{ default_home_path }}/tmp/cometbft_{{ cometbft_version }}_linux_amd64.tar.gz" + dest: "{{ default_home_path }}/tmp" + remote_src: True + owner: "{{ default_user }}" + group: "{{ default_user }}" + mode: "u+r+x" + when: ansible_local['noderole']['node']['version'] != cometbft_version + +- name: Create soft links for penumbra & cometbft binaries + ansible.builtin.file: + src: "{{ item.src }}" + dest: "{{ item.dest }}" + state: link + owner: "{{ default_user }}" + group: "{{ default_user }}" + loop: + - src: "{{ default_home_path }}/.cargo/bin/pd" + dest: "{{ default_home_path }}/pd" + - src: "{{ default_home_path }}/.cargo/bin/pcli" + dest: "{{ default_home_path }}/pcli" + - src: "{{ default_home_path }}/.cargo/bin/pclientd" + dest: "{{ default_home_path }}/pclientd" + - src: "{{ default_home_path }}/tmp/cometbft" + dest: "{{ default_home_path }}/cometbft" + notify: + - Add type of service fact + - Add Penumbra service version + - Add Service Pinned Status + +- name: Install lz4 package + ansible.builtin.package: + name: lz4 + state: present + become: True + become_user: root + +- name: Check if cometbft directory exists + ansible.builtin.stat: + path: "{{ default_database_path }}/node0/cometbft" + register: cometbft_dir + +- name: Create node0 directory if it doesn't exist + ansible.builtin.file: + path: "{{ default_database_path }}/node0" + state: directory + mode: "0750" + owner: "{{ default_user }}" + group: "{{ default_user }}" + when: not cometbft_dir.stat.exists + + #NOTE: i dont know if this will work, but the wget cmd that commented out below will be working +- name: Download Polkachu Cometbft snapshot + ansible.builtin.get_url: + url: "https://snapshots.polkachu.com/snapshots/penumbra/penumbra_{{ polkachu_version }}.tar.lz4" + dest: "{{ default_database_path }}/node0/penumbra_{{ polkachu_version }}.tar.lz4" + owner: "{{ default_user }}" + group: "{{ default_user }}" + mode: "0640" + force: true + become: true + become_user: "{{ default_user }}" + when: not cometbft_dir.stat.exists + +# - name: Download Polkachu Cometbft snapshot +# ansible.builtin.shell: +# cmd: "wget -O {{ default_database_path }}/node0/penumbra_{{ polkachu_version }}.tar.lz4 https://snapshots.polkachu.com/snapshots/penumbra/penumbra_{{ polkachu_version }}.tar.lz4 --inet4-only" +# become: True +# become_user: "{{ default_user }}" +# when: not cometbft_dir.stat.exists +# # when: ansible_local['noderole']['node']['version'] != penumbra_version +# args: +# executable: /bin/bash + +- name: Extract and decompress Polkachu snapshot + ansible.builtin.shell: + cmd: "set -o pipefail && lz4 -c -d {{ default_database_path }}/node0/penumbra_{{ polkachu_version }}.tar.lz4 | tar -x -C {{ default_database_path }}/node0/" args: - warn: False executable: /bin/bash + creates: "{{ default_database_path }}/node0/cometbft" + become: True + become_user: "{{ default_user }}" + when: not cometbft_dir.stat.exists + +# NOTE: i still commented this out cause its58GB file and still for experimenting in case something wrong +# - name: Remove lz4 archive after decompression +# ansible.builtin.file: +# path: "{{ default_database_path }}/node0/penumbra_{{ polkachu_version }}.tar.lz4" +# state: absent +# when: not cometbft_dir.stat.exists +- name: Ensure cometbft config directory exists + ansible.builtin.file: + path: "{{ default_database_path }}/node0/cometbft/config" + state: directory + mode: "0750" + owner: "{{ default_user }}" + group: "{{ default_user }}" + +- name: Download Polkachu's Penumbra address book + ansible.builtin.get_url: + url: "https://snapshots.polkachu.com/addrbook/penumbra/addrbook.json" + dest: "{{ default_database_path }}/node0/cometbft/config/addrbook.json" + mode: "0640" + owner: "{{ default_user }}" + group: "{{ default_user }}" + force: True + when: not cometbft_dir.stat.exists + +- name: Download Polkachu's Penumbra genesis file + ansible.builtin.get_url: + url: "https://snapshots.polkachu.com/genesis/penumbra/genesis.json" + dest: "{{ default_database_path }}/node0/cometbft/config/genesis.json" + mode: "0640" + owner: "{{ default_user }}" + group: "{{ default_user }}" + force: True + when: not cometbft_dir.stat.exists + +- name: Ensure proper ownership of cometbft and pd directories + ansible.builtin.file: + path: "{{ default_database_path }}/node0/{{ item }}" + state: directory + owner: "{{ default_user }}" + group: "{{ default_user }}" + mode: "0750" + recurse: True + loop: + - cometbft + - pd + +- name: Copy Cometbft & validator service templates + ansible.builtin.template: + src: "{{ item }}.service.j2" + dest: "{{ default_home_path }}/{{ item }}.service" + owner: "{{ default_user }}" + group: "{{ default_user }}" + mode: "0640" + when: default_node_type in ["validator", "bootnode", "endpoint"] + loop: + - validator + - cometbft + notify: + - Stop Cometbft + - Stop Penumbra + - Symlink cometbft & validator service to systemd + - Systemd daemon-reload + - Start Cometbft + - Start Penumbra + +# - name: Symlink cometbft & validator service to systemd +# ansible.builtin.file: +# src: "{{ default_home_path }}/{{ item }}.service" +# dest: "/etc/systemd/system/{{ item }}.service" +# state: link +# force: True +# owner: "root" +# group: "root" +# mode: "0644" +# loop: +# - validator +# - cometbft + +- name: Flush handlers to execute pending handler tasks + ansible.builtin.meta: flush_handlers + +- name: Ensure cometbft service is running + ansible.builtin.systemd: + name: cometbft + state: started + enabled: True + +- name: Ensure validator service is running + ansible.builtin.systemd: + name: validator + state: started + enabled: True diff --git a/roles/setup_install_penumbra/templates/cometbft.service.j2 b/roles/setup_install_penumbra/templates/cometbft.service.j2 new file mode 100644 index 0000000..c58d58c --- /dev/null +++ b/roles/setup_install_penumbra/templates/cometbft.service.j2 @@ -0,0 +1,20 @@ +[Unit] +Description={{ host_name.split('.')[0] }} - cometbft service + +[Service] +ExecStart={{ default_home_path }}/cometbft start \ + --moniker "{{ host_name }}" \ + --home {{ default_database_path }}/node0/cometbft \ + --p2p.laddr "tcp://0.0.0.0:{{ default_cometbft_p2p_port }}" \ + --p2p.external-address "{{ ansible_host }}:{{ default_cometbft_p2p_port }}" \ + --rpc.laddr "tcp://127.0.0.1:{{ default_cometbft_rpc_port }}" \ + --proxy_app tcp://127.0.0.1:{{ default_acbi_port }} \ + --db_backend {{ default_cometbft_database }} + +Restart=no +User=penumbra +# Raise filehandle limit for RPC and P2P connections. +LimitNOFILE=65536 + +[Install] +WantedBy=default.target diff --git a/roles/setup_install_penumbra/templates/validator.service.j2 b/roles/setup_install_penumbra/templates/validator.service.j2 new file mode 100644 index 0000000..1da32f1 --- /dev/null +++ b/roles/setup_install_penumbra/templates/validator.service.j2 @@ -0,0 +1,32 @@ +[Unit] +Description={{ host_name.split('.')[0] }} validator - Penumbra service +Wants=cometbft.service + +[Service] +# Support binding to 443/TCP for HTTPS. +CapabilityBoundingSet=CAP_NET_BIND_SERVICE +AmbientCapabilities=CAP_NET_BIND_SERVICE + +ExecStart={{ default_home_path }}/pd start \ + --home {{ default_database_path }}/node0/pd \ + --metrics-bind 0.0.0.0:{{ default_penumbra_metric_port }} \ + --cometbft-addr http://127.0.0.1:{{ default_cometbft_rpc_port }} \ + --abci-bind 127.0.0.1:{{ default_acbi_port }} + +# Consider adding an HTTPS URL if you have DNS set up: +# ExecStart=/usr/local/bin/pd start --grpc-auto-https www.example.com + +# Disable automatic restart, since governance votes can intentionally halt the chain. +# If you're running a validator, you should configure uptime monitoring. +Restart=no + +# Assumes that the `penumbra` user exists. +User=penumbra + +# Raise filehandle limit for tower-abci. +LimitNOFILE=65536 +# Consider configuring logrotate if using debug logs +# Environment=RUST_LOG=info,pd=debug,penumbra=debug,jmt=debug + +[Install] +WantedBy=default.target diff --git a/roles/setup_install_polkadot/templates/endpoint.service.j2 b/roles/setup_install_polkadot/templates/endpoint.service.j2 index b812dca..afc1bc1 100644 --- a/roles/setup_install_polkadot/templates/endpoint.service.j2 +++ b/roles/setup_install_polkadot/templates/endpoint.service.j2 @@ -17,12 +17,17 @@ ExecStart={{ default_base_path }}/polkadot \ --sync full \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port }} \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port_ws }}/ws \ - --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port }} \ + {% if transition_bootnode_domain is defined %}--listen-addr /ip4/0.0.0.0/tcp/{{ transition_bootnode_p2p_port }} \ + --listen-addr /ip4/0.0.0.0/tcp/{{ transition_bootnode_p2p_port_ws }}/ws \ + {% endif %}--public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port }} \ --public-addr /dns/{{ default_domain }}/tcp/{{ default_p2p_port_wss }}/wss \ {% if default_bootnode_domain is defined %}--public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_bootnode_p2p_port }} \ --public-addr /dns/{{ default_bootnode_domain }}/tcp/{{ default_bootnode_p2p_port_wss }}/wss \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_bootnode_p2p_port }} \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_bootnode_p2p_port_ws }}/ws \ + {% endif %}{% if transition_bootnode_domain is defined %}--public-addr /dns/{{ transition_bootnode_domain }}/tcp/{{ transition_bootnode_p2p_port }} \ + --public-addr /dns/{{ transition_bootnode_domain }}/tcp/{{ transition_bootnode_p2p_port_ws }}/ws \ + --public-addr /dns/{{ transition_bootnode_domain }}/tcp/{{ transition_bootnode_p2p_port_wss }}/wss \ {% endif %}--rpc-port {{ default_rpc_port }} \ --prometheus-port {{ default_prom_port }} \ --prometheus-external \ @@ -37,7 +42,9 @@ ExecStart={{ default_base_path }}/polkadot \ --rpc-max-response-size 16 \ --rpc-max-subscriptions-per-connection 1024 \ --rpc-max-connections 10000 \ - --allow-private-ipv4 + --in-peers {{ default_in_peers }} \ + --out-peers {{ default_out_peers }} \ + --no-mdns Restart=always RestartSec=120 diff --git a/roles/setup_install_polkadot/templates/validator.service.j2 b/roles/setup_install_polkadot/templates/validator.service.j2 index 10cad42..9b59193 100644 --- a/roles/setup_install_polkadot/templates/validator.service.j2 +++ b/roles/setup_install_polkadot/templates/validator.service.j2 @@ -28,18 +28,17 @@ ExecStart={{ default_base_path }}/polkadot \ --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port }} \ # --listen-addr /ip4/0.0.0.0/tcp/{{ default_p2p_port_ws }}/ws \ --public-addr /ip4/{{ ansible_host }}/tcp/{{ default_p2p_port }} \ -# --public-addr /dns/{{ host_name }}/tcp/{{ default_p2p_port }} \ -# --public-addr /dns/{{ host_name }}/tcp/{{ default_p2p_port_wss }}/wss \ + --public-addr /ip4/{{ ansible_host }}/tcp/{{ default_p2p_port_ws }}/ws \ --prometheus-port {{ default_prom_port }} \ --prometheus-external \ --wasm-execution compiled \ --pruning 1000 \ - --no-mdns \ --no-private-ip \ --out-peers 64 \ --in-peers 64 \ --workers-path {{ default_auxiliary_binary_path }} \ --db-cache {{ ansible_memtotal_mb // 2 }} \ + --no-mdns \ --sync {{ default_syncmode }} [Install] diff --git a/roles/setup_install_prometheus/files/prometheus.service b/roles/setup_install_prometheus/files/prometheus.service index 022d566..4440a2e 100644 --- a/roles/setup_install_prometheus/files/prometheus.service +++ b/roles/setup_install_prometheus/files/prometheus.service @@ -1,18 +1,54 @@ +# +# Ansible managed +# + [Unit] - Description=Prometheus Monitoring - Wants=network-online.target - After=network-online.target +Description=Prometheus +After=network-online.target +Requires=local-fs.target +After=local-fs.target + [Service] - User=prometheus - Group=prometheus - Type=simple - ExecStart=/usr/local/bin/prometheus \ - --config.file /etc/prometheus/prometheus.yaml \ - --storage.tsdb.path /var/lib/prometheus/ \ - --web.console.templates=/etc/prometheus/consoles \ +Type=simple +Environment="GOMAXPROCS=32" +User=prometheus +Group=prometheus +ExecReload=/bin/kill -HUP $MAINPID +ExecStart=/usr/local/bin/prometheus \ + --storage.tsdb.path=/var/lib/prometheus \ + --storage.tsdb.retention.time=30d \ + --storage.tsdb.retention.size=0 \ + --web.config.file=/etc/prometheus/web.yml \ --web.console.libraries=/etc/prometheus/console_libraries \ - --storage.tsdb.retention.time 60d \ - --web.enable-admin-api - ExecReload=/bin/kill -HUP $MAINPID + --web.console.templates=/etc/prometheus/consoles \ + --web.listen-address=127.0.0.1:9090 \ + --web.external-url=https://ibp.rotko.net \ + --config.file=/etc/prometheus/prometheus.yml + + +CapabilityBoundingSet=CAP_SET_UID +LimitNOFILE=65000 +LockPersonality=true +NoNewPrivileges=true +MemoryDenyWriteExecute=true +PrivateDevices=true +PrivateTmp=true +ProtectHome=true +RemoveIPC=true +RestrictSUIDSGID=true +#SystemCallFilter=@signal @timer + +ReadWritePaths=/var/lib/prometheus + +PrivateUsers=true +ProtectControlGroups=true +ProtectKernelModules=true +ProtectKernelTunables=true +ProtectSystem=strict + + +SyslogIdentifier=prometheus +Restart=always + [Install] - WantedBy=multi-user.target +WantedBy=multi-user.target diff --git a/roles/setup_install_prometheus/files/prometheus.service.bak b/roles/setup_install_prometheus/files/prometheus.service.bak new file mode 100644 index 0000000..fe8f464 --- /dev/null +++ b/roles/setup_install_prometheus/files/prometheus.service.bak @@ -0,0 +1,22 @@ +[Unit] + Description=Prometheus Monitoring + Wants=network-online.target + After=network-online.target +[Service] + User=prometheus + Group=prometheus + Type=simple + ExecReload=/bin/kill -HUP $MAINPID + ExecStart=/usr/local/bin/prometheus \ + --storage.tsdb.path /var/lib/prometheus/ \ + --storage.tsdb.retention.time 30d \ + --storage.tsdb.retention.size 0 \ + --web.config.file /etc/prometheus/prometheus.yaml \ + --web.console.libraries=/etc/prometheus/console_libraries \ + --web.console.templates=/etc/prometheus/consoles \ + --web.listen-address=127.0.0.1:9090 \ + --web.external-url=https://ibp.rotko.net \ + --web.enable-admin-api + --config.file /etc/prometheus/prometheus.yaml \ +[Install] + WantedBy=multi-user.target diff --git a/roles/setup_install_prometheus/files/prometheus.yaml b/roles/setup_install_prometheus/files/prometheus.yaml index 62d3912..9f0f6c3 100644 --- a/roles/setup_install_prometheus/files/prometheus.yaml +++ b/roles/setup_install_prometheus/files/prometheus.yaml @@ -1,102 +1,65 @@ --- +# +# Ansible managed +# +# http://prometheus.io/docs/operating/configuration/ + global: scrape_interval: 15s + scrape_timeout: 10s evaluation_interval: 15s -scrape_configs: - - job_name: "prometheus" - scrape_interval: 5s - static_configs: - - targets: ["localhost:9090"] - - job_name: "node_exporter" - scrape_interval: 5s - static_configs: - - targets: ["localhost:9100"] - - - job_name: turboflakes - metrics_path: /federate - honor_labels: true - scheme: https - params: - match[]: - - '{job="substrate"}' - static_configs: - - targets: - - ibp-prometheus.turboflakes.io:9095 - - - job_name: amforc - metrics_path: /federate - honor_labels: true - scheme: https - params: - match[]: - - '{job="substrate"}' - static_configs: - - targets: - - ibp-monitor.amforc.com:9090 - - - job_name: "metaspan" - scrape_interval: 15s - honor_labels: true - metrics_path: "/federate" - params: - "match[]": - - '{job="substrate"}' - static_configs: - - targets: - - "195.144.22.130:9090" - - - job_name: "stakeplus" - scrape_interval: 15s - honor_labels: true - metrics_path: "/federate" - params: - "match[]": - - '{job="substrate"}' - static_configs: - - targets: - - "192.96.202.185:59090" - - - job_name: "helikon" - scrape_interval: 15s - honor_labels: true - metrics_path: "/federate" - params: - "match[]": - - '{job="substrate"}' - static_configs: - - targets: - - "82.222.18.146:19300" + external_labels: + member: rotko - - job_name: "gatotech" - scrape_interval: 15s - honor_labels: true - metrics_path: "/federate" - params: - "match[]": - - '{job="substrate"}' - static_configs: - - targets: - - "138.59.133.248:9090" +rule_files: + - /etc/prometheus/rules/*.rules - - job_name: dwellir - metrics_path: /713173e6-ff3f-46ab-b245-b41da8f717d3/federate - honor_labels: true - scheme: https - params: - match[]: - - '{__name__=~"substrate.*"}' - static_configs: - - targets: - - ibp-metrics-ng.dwellir.com +alerting: + alertmanagers: + - static_configs: + - targets: + - "localhost:9093" # Replace with your Alertmanager address - - job_name: rotko - metrics_path: /federate - honor_labels: true - scheme: https - params: - match[]: - - '{__name__=~"substrate.*"}' +scrape_configs: + - job_name: prometheus + metrics_path: /metrics static_configs: - targets: - - ibp-monitor.rotko.net + - 127.0.0.1:9090 + - job_name: substrate + metrics_path: /metrics + file_sd_configs: + - files: + - /etc/prometheus/file_sd/node.yml + metric_relabel_configs: + - action: replace + source_labels: + - chain + target_label: chain + regex: westend2 + replacement: westend + - action: replace + source_labels: + - chain + target_label: chain + regex: ksmcc3 + replacement: kusama + - action: replace + source_labels: + - chain + target_label: chain + regex: collectives_polkadot + replacement: collectives-polkadot + - action: replace + source_labels: + - chain + target_label: chain + regex: collectives_westend + replacement: collectives-westend + - action: replace + source_labels: + - chain + target_label: chain + regex: encointer-kusama + replacement: encointer diff --git a/roles/setup_install_prometheus/files/prometheus.yaml.bak b/roles/setup_install_prometheus/files/prometheus.yaml.bak new file mode 100644 index 0000000..62d3912 --- /dev/null +++ b/roles/setup_install_prometheus/files/prometheus.yaml.bak @@ -0,0 +1,102 @@ +--- +global: + scrape_interval: 15s + evaluation_interval: 15s + +scrape_configs: + - job_name: "prometheus" + scrape_interval: 5s + static_configs: + - targets: ["localhost:9090"] + - job_name: "node_exporter" + scrape_interval: 5s + static_configs: + - targets: ["localhost:9100"] + + - job_name: turboflakes + metrics_path: /federate + honor_labels: true + scheme: https + params: + match[]: + - '{job="substrate"}' + static_configs: + - targets: + - ibp-prometheus.turboflakes.io:9095 + + - job_name: amforc + metrics_path: /federate + honor_labels: true + scheme: https + params: + match[]: + - '{job="substrate"}' + static_configs: + - targets: + - ibp-monitor.amforc.com:9090 + + - job_name: "metaspan" + scrape_interval: 15s + honor_labels: true + metrics_path: "/federate" + params: + "match[]": + - '{job="substrate"}' + static_configs: + - targets: + - "195.144.22.130:9090" + + - job_name: "stakeplus" + scrape_interval: 15s + honor_labels: true + metrics_path: "/federate" + params: + "match[]": + - '{job="substrate"}' + static_configs: + - targets: + - "192.96.202.185:59090" + + - job_name: "helikon" + scrape_interval: 15s + honor_labels: true + metrics_path: "/federate" + params: + "match[]": + - '{job="substrate"}' + static_configs: + - targets: + - "82.222.18.146:19300" + + - job_name: "gatotech" + scrape_interval: 15s + honor_labels: true + metrics_path: "/federate" + params: + "match[]": + - '{job="substrate"}' + static_configs: + - targets: + - "138.59.133.248:9090" + + - job_name: dwellir + metrics_path: /713173e6-ff3f-46ab-b245-b41da8f717d3/federate + honor_labels: true + scheme: https + params: + match[]: + - '{__name__=~"substrate.*"}' + static_configs: + - targets: + - ibp-metrics-ng.dwellir.com + + - job_name: rotko + metrics_path: /federate + honor_labels: true + scheme: https + params: + match[]: + - '{__name__=~"substrate.*"}' + static_configs: + - targets: + - ibp-monitor.rotko.net diff --git a/roles/setup_install_prometheus/handlers/main.yaml b/roles/setup_install_prometheus/handlers/main.yaml new file mode 100644 index 0000000..777b5c4 --- /dev/null +++ b/roles/setup_install_prometheus/handlers/main.yaml @@ -0,0 +1,6 @@ +--- +- name: Restart Prometheus + ansible.builtin.systemd: + name: prometheus + state: restarted + daemon_reload: yes diff --git a/roles/setup_install_prometheus/tasks/main.yaml b/roles/setup_install_prometheus/tasks/main.yaml index 054de7d..0688bdd 100644 --- a/roles/setup_install_prometheus/tasks/main.yaml +++ b/roles/setup_install_prometheus/tasks/main.yaml @@ -1,11 +1,27 @@ --- # tasks file for prometheus +- name: Ensure prometheus group exists + ansible.builtin.group: + name: prometheus + state: present + +- name: Ensure prometheus user exists + ansible.builtin.user: + name: prometheus + group: prometheus + system: yes + create_home: no + shell: /sbin/nologin + state: present + - name: Check latest version of Prometheus if not define from monitoring ansible.builtin.shell: cmd: | set -o pipefail curl -s https://api.github.com/repos/prometheus/prometheus/releases/latest | grep "tag_name" | awk '{print substr($2, 3, length($2)-4)}' + args: + executable: /bin/bash register: prometheus_latest when: hostvars['monitor']['prometheus_latest_mon'] is not defined @@ -25,19 +41,19 @@ ansible.builtin.import_tasks: "prometheus-tasks.yaml" when: prometheus_latest.stdout != prometheus_installed.stdout -- name: Copy file with owner and permissions - ansible.builtin.copy: - src: files/prometheus.yaml - dest: /etc/prometheus/prometheus.yaml - owner: prometheus - group: prometheus - mode: "0755" - -- name: Check Prometheus configuration - ansible.builtin.command: - cmd: promtool check config /etc/prometheus/prometheus.yaml - register: prometheus_config - when: prometheus_latest.stdout != prometheus_installed.stdout +# - name: Copy file with owner and permissions +# ansible.builtin.copy: +# src: files/prometheus.yaml +# dest: /etc/prometheus/prometheus.yaml +# owner: prometheus +# group: prometheus +# mode: "0755" +# +# - name: Check Prometheus configuration +# ansible.builtin.command: +# cmd: promtool check config /etc/prometheus/prometheus.yaml +# register: prometheus_config +# when: prometheus_latest.stdout != prometheus_installed.stdout - name: Restart service ansible.builtin.systemd: diff --git a/roles/setup_install_prometheus/tasks/prometheus-tasks.yaml b/roles/setup_install_prometheus/tasks/prometheus-tasks.yaml index 6b39392..81fb7ee 100644 --- a/roles/setup_install_prometheus/tasks/prometheus-tasks.yaml +++ b/roles/setup_install_prometheus/tasks/prometheus-tasks.yaml @@ -1,13 +1,34 @@ --- - name: Set default Prometheus download URL as fallback ansible.builtin.set_fact: - prometheus_download_url: "https://example.com/default_prometheus.tar.gz" # Fallback URL + prometheus_download_url: "https://example.com/default_prometheus.tar.gz" # Fallback URL -- name: Attempt to fetch the latest version of Prometheus +# - name: Attempt to fetch the latest version of Prometheus +# ansible.builtin.get_url: +# url: "{{ lookup('url', 'https://api.github.com/repos/prometheus/prometheus/releases/latest', wantlist=True) | default([]) | json_query('[0].assets[?content_type==`application/gzip`].browser_download_url') | first | default(prometheus_download_url) }}" +# dest: "/tmp/prometheus.tar.gz" +# mode: "0755" +# register: download_result +# until: download_result is succeeded +# retries: 3 +# delay: 5 + +# - name: Fetch the latest release information from GitHub +# ansible.builtin.uri: +# url: "https://api.github.com/repos/prometheus/prometheus/releases/latest" +# return_content: yes +# register: github_release_info +# failed_when: github_release_info.status != 200 +# +# - name: Set Prometheus download URL +# ansible.builtin.set_fact: +# prometheus_download_url: "{{ github_release_info.json.assets | selectattr('content_type', '==', 'application/gzip') | map(attribute='browser_download_url') | first | default('https://example.com/default_prometheus.tar.gz') }}" + +- name: Attempt to download the latest Prometheus release ansible.builtin.get_url: - url: "{{ lookup('url', 'https://api.github.com/repos/prometheus/prometheus/releases/latest', wantlist=True) | default([]) | json_query('[0].assets[?content_type==`application/gzip`].browser_download_url') | first | default(prometheus_download_url) }}" + url: "{{ default_download_url }}" dest: "/tmp/prometheus.tar.gz" - mode: '0755' + mode: "0755" register: download_result until: download_result is succeeded retries: 3 @@ -18,14 +39,22 @@ src: "/tmp/prometheus.tar.gz" dest: "/tmp" remote_src: yes - creates: "/usr/local/bin/prometheus" -- name: Move Prometheus binaries to the desired location - ansible.builtin.command: - cmd: "mv /tmp/prometheus-{{ prometheus_version }}/prometheus* /usr/local/bin/" - creates: "/usr/local/bin/prometheus" - vars: - prometheus_version: "{{ lookup('url', 'https://api.github.com/repos/prometheus/prometheus/releases/latest', wantlist=True) | json_query('[0].tag_name') }}" +- name: Move Prometheus binary to the desired location + ansible.builtin.copy: + src: "/tmp/prometheus-{{ prometheus_version }}.linux-amd64/prometheus" + dest: "/usr/local/bin/prometheus" + mode: "0755" + remote_src: yes + force: yes + +- name: Move Promtool binary to the desired location + ansible.builtin.copy: + src: "/tmp/prometheus-{{ prometheus_version }}.linux-amd64/promtool" + dest: "/usr/local/bin/promtool" + mode: "0755" + remote_src: yes + force: yes - name: Ensure Prometheus directories exist ansible.builtin.file: @@ -33,7 +62,7 @@ state: directory owner: prometheus group: prometheus - mode: '0755' + mode: "0755" loop: - /etc/prometheus/ - /var/lib/prometheus/ @@ -44,18 +73,77 @@ path: "/tmp/prometheus.tar.gz" state: absent +- name: Download Alertmanager + ansible.builtin.get_url: + url: "{{ default_alertmanager_download_url }}" + dest: "/tmp/alertmanager.tar.gz" + mode: "0644" + register: alertmanager_download + until: alertmanager_download is succeeded + retries: 3 + delay: 5 + +- name: Extract Alertmanager package + ansible.builtin.unarchive: + src: "/tmp/alertmanager.tar.gz" + dest: "/tmp" + remote_src: yes + +- name: Move Alertmanager binary to /bin + ansible.builtin.copy: + src: "/tmp/alertmanager-{{ alertmanager_version }}.linux-amd64/alertmanager" + dest: "/bin/prometheus-alertmanager" + mode: "0755" + remote_src: yes + force: yes + +- name: Remove downloaded and extracted Alertmanager files + ansible.builtin.file: + path: "{{ item }}" + state: absent + loop: + - "/tmp/alertmanager.tar.gz" + - "/tmp/alertmanager-{{ alertmanager_version }}.linux-amd64" + +# - name: Deploy Alertmanager configuration +# ansible.builtin.copy: +# src: files/alertmanager.yml +# dest: /etc/prometheus/alertmanager.yml +# owner: prometheus +# group: prometheus +# mode: "0644" +# notify: Restart Alertmanager + - name: Deploy Prometheus configuration ansible.builtin.copy: - src: files/prometheus.yml + src: files/prometheus.yaml dest: /etc/prometheus/prometheus.yml owner: prometheus group: prometheus - mode: '0644' + mode: "0644" + notify: Restart Prometheus + +# - name: Set up Alertmanager service +# ansible.builtin.template: +# src: files/alertmanager.service +# dest: /etc/systemd/system/alertmanager.service +# mode: "0644" + +# - name: Manage Alertmanager service +# ansible.builtin.systemd: +# name: alertmanager +# daemon_reload: yes +# enabled: yes +# state: started - name: Validate Prometheus configuration ansible.builtin.command: - cmd: "promtool check config /etc/prometheus/prometheus.yml" - creates: "/etc/prometheus/prometheus.yml.valid" + cmd: "/usr/local/bin/promtool check config /etc/prometheus/prometheus.yml" + become: True + become_user: prometheus + changed_when: False + register: prometheus_config_check + failed_when: prometheus_config_check.rc != 0 - name: Manage Prometheus service block: @@ -68,8 +156,7 @@ ansible.builtin.template: src: files/prometheus.service dest: /etc/systemd/system/prometheus.service - mode: '0644' - when: not servicestatus.stat.exists + mode: "0644" - name: Handle Prometheus service state ansible.builtin.systemd: @@ -77,3 +164,6 @@ daemon_reload: yes enabled: yes state: "{{ 'started' if not servicestatus.stat.exists else 'restarted' }}" + +- name: Flush handlers + ansible.builtin.meta: flush_handlers