diff --git a/op/geth/bob-mainnet-op-geth-archive-leveldb-hash.yml b/op/geth/bob-mainnet-op-geth-archive-leveldb-hash.yml index 6d106962..33a9cfc8 100644 --- a/op/geth/bob-mainnet-op-geth-archive-leveldb-hash.yml +++ b/op/geth/bob-mainnet-op-geth-archive-leveldb-hash.yml @@ -18,8 +18,8 @@ services: nofile: 1048576 # Max open files (for RPC/WS connections) user: root ports: - - 11363:11363 - - 11363:11363/udp + - 13347:13347 + - 13347:13347/udp expose: - 8545 - 8551 @@ -34,7 +34,7 @@ services: - --maxpeers=50 - --nat=extip:${IP} - --networkid=60808 - - --port=11363 + - --port=13347 - --rpc.gascap=600000000 - --rpc.txfeecap=0 - --state.scheme=hash @@ -74,8 +74,8 @@ services: bob-mainnet-archive-node: image: ${BOB_NODE_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/op-node}:${BOB_MAINNET_NODE_VERSION:-v1.13.1} ports: - - 16363:16363 - - 16363:16363/udp + - 18347:18347 + - 18347:18347/udp environment: - OP_NODE_L1_BEACON=${ETHEREUM_MAINNET_BEACON_REST} - OP_NODE_L1_BEACON_ARCHIVER=${ETHEREUM_MAINNET_BEACON_ARCHIVER} @@ -91,8 +91,8 @@ services: - OP_NODE_NETWORK=bob-mainnet - OP_NODE_P2P_ADVERTISE_IP=${IP} - OP_NODE_P2P_LISTEN_IP=0.0.0.0 - - OP_NODE_P2P_LISTEN_TCP_PORT=16363 - - OP_NODE_P2P_LISTEN_UDP_PORT=16363 + - OP_NODE_P2P_LISTEN_TCP_PORT=18347 + - OP_NODE_P2P_LISTEN_UDP_PORT=18347 - OP_NODE_RPC_ADDR=0.0.0.0 - OP_NODE_RPC_PORT=8545 - OP_NODE_SNAPSHOT_LOG=/tmp/op-node-snapshot-log diff --git a/op/geth/bob-mainnet-op-geth-archive-pebble-hash.yml b/op/geth/bob-mainnet-op-geth-archive-pebble-hash.yml index f69c2c21..92392565 100644 --- a/op/geth/bob-mainnet-op-geth-archive-pebble-hash.yml +++ b/op/geth/bob-mainnet-op-geth-archive-pebble-hash.yml @@ -1,131 +1,149 @@ - +--- services: bob-mainnet-archive: - - image: us-docker.pkg.dev/oplabs-tools-artifacts/images/op-geth:v1.101503.1 - + image: ${BOB_GETH_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/op-geth}:${BOB_MAINNET_GETH_VERSION:-v1.101503.3} + sysctls: + # TCP Performance + net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle + net.ipv4.tcp_no_metrics_save: 1 # Disable metrics cache + net.ipv4.tcp_rmem: 4096 87380 16777216 # Increase TCP read buffers + net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers + net.core.somaxconn: 32768 # Higher connection queue + # Memory/Connection Management + # net.core.netdev_max_backlog: 50000 # Increase network buffer + net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests + net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 13347:13347 + - 13347:13347/udp expose: - 8545 - - 6060 - ports: - - "10223:10223" - - "10223:10223/udp" - - entrypoint: ["/bin/sh", "-c", "exec /usr/local/bin/geth \"$@\""] - restart: unless-stopped - stop_grace_period: 3m - volumes: - #- ${BOB_MAINNET_OP_GETH_ARCHIVE_PEBBLE_HASH_DATA:-bob-mainnet-op-geth-archive-pebble-hash}:/data - - bob-mainnet-op-geth-archive-pebble-hash:/data - - .jwtsecret:/jwtsecret:ro - - + - 8551 environment: - - "GETH_DATADIR=/data" - - "GETH_OP_NETWORK=bob-mainnet" - - "GETH_GCMODE=archive" - - "GETH_SYNCMODE=full" - - "GETH_STATE_SCHEME=hash" - - "GETH_DB_ENGINE=pebble" - - "GETH_NAT=extip:${IP}" - - "GETH_PORT=10223" - - "GETH_WS_PORT=8545" - - "GETH_HTTP=true" - - "GETH_HTTP_ADDR=0.0.0.0" - - "GETH_HTTP_VHOSTS=*" - - "GETH_WS=true" - - "GETH_WS_ADDR=0.0.0.0" - - "GETH_WS_ORIGINS=*" - - "GETH_HTTP_API=eth,net,debug,admin,web3" - - "GETH_AUTHRPC_JWTSECRET=/jwtsecret" - - "GETH_AUTHRPC_ADDR=0.0.0.0" - - "GETH_AUTHRPC_VHOSTS=*" - - - - - labels: - - "traefik.enable=true" - - "traefik.http.middlewares.bob-mainnet-op-geth-archive-pebble-hash-stripprefix.stripprefix.prefixes=/bob-mainnet-archive" - - "traefik.http.services.bob-mainnet-op-geth-archive-pebble-hash.loadbalancer.server.port=8545" - - "traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.entrypoints=websecure" - - "traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.tls.certresolver=myresolver" - - "traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.rule=Host(`$DOMAIN`) && PathPrefix(`/bob-mainnet-archive`)" - - "traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.middlewares=bob-mainnet-op-geth-archive-pebble-hash-stripprefix, ipwhitelist" - networks: + - GETH_ROLLUP_DISABLETXPOOLGOSSIP=true + - GETH_ROLLUP_SEQUENCERHTTP=https://bob-mainnet.public.blastapi.io + entrypoint: /bin/sh -c '[ ! -d /data/geth ] && geth init --datadir /data /config/genesis.json; exec geth "$@"' -- + command: + - --datadir=/data + - --db.engine=pebble + - --gcmode=archive + - --maxpeers=50 + - --nat=extip:${IP} + - --networkid=60808 + - --port=13347 + - --rpc.gascap=600000000 + - --rpc.txfeecap=0 + - --state.scheme=hash + - --syncmode=full + - --http + - --http.addr=0.0.0.0 + - --http.api=eth,net,web3,debug,admin,txpool,engine + - --http.port=8545 + - --http.vhosts=* + - --ws + - --ws.addr=0.0.0.0 + - --ws.api=eth,net,web3,debug,admin,txpool,engine + - --ws.origins=* + - --ws.port=8545 + - --authrpc.addr=0.0.0.0 + - --authrpc.jwtsecret=/jwtsecret + - --authrpc.vhosts=* + restart: unless-stopped + stop_grace_period: 5m + networks: - chains + volumes: + - ${BOB_MAINNET_OP_GETH_ARCHIVE_PEBBLE_HASH_DATA:-bob-mainnet-op-geth-archive-pebble-hash}:/data + - ./op/bob/mainnet:/config + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk + labels: + - traefik.enable=true + - traefik.http.middlewares.bob-mainnet-op-geth-archive-pebble-hash-stripprefix.stripprefix.prefixes=/bob-mainnet-archive + - traefik.http.services.bob-mainnet-op-geth-archive-pebble-hash.loadbalancer.server.port=8545 + - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.entrypoints=websecure} + - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.tls.certresolver=myresolver} + - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.rule=Host(`$DOMAIN`) && (Path(`/bob-mainnet-archive`) || Path(`/bob-mainnet-archive/`))} + - ${NO_SSL:+traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.rule=Path(`/bob-mainnet-archive`) || Path(`/bob-mainnet-archive/`)} + - traefik.http.routers.bob-mainnet-op-geth-archive-pebble-hash.middlewares=bob-mainnet-op-geth-archive-pebble-hash-stripprefix, ipwhitelist - bob-mainnet-archive-node: - - image: us-docker.pkg.dev/oplabs-tools-artifacts/images/op-node:v1.12.2 - - expose: - - 8545 - - 7300 - - 6060 + image: ${BOB_NODE_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/op-node}:${BOB_MAINNET_NODE_VERSION:-v1.13.1} ports: - - "15223:15223" - - "15223:15223/udp" - entrypoint: [ "op-node" ] - restart: unless-stopped - volumes: - - .jwtsecret:/jwtsecret:ro - - stop_grace_period: 30s - + - 18347:18347 + - 18347:18347/udp environment: - - "OP_NODE_NETWORK=bob-mainnet" - - "OP_NODE_SYNCMODE=execution-layer" - - "OP_NODE_L1_ETH_RPC=${ETHEREUM_MAINNET_EXECUTION_RPC}" - - "OP_NODE_L2_ENGINE_AUTH=/jwtsecret" - - "OP_NODE_L2_ENGINE_RPC=http://bob-mainnet-archive:8551" - - "OP_NODE_LOG_LEVEL=info" - - "OP_NODE_METRICS_ADDR=0.0.0.0" - - "OP_NODE_METRICS_ENABLED=true" - - "OP_NODE_METRICS_PORT=7300" - - "OP_NODE_P2P_LISTEN_IP=0.0.0.0" - - "OP_NODE_P2P_LISTEN_TCP_PORT=15223" - - "OP_NODE_P2P_LISTEN_UDP_PORT=15223" - - "OP_NODE_RPC_ADDR=0.0.0.0" - - "OP_NODE_P2P_ADVERTISE_IP=${IP}" - - "OP_NODE_RPC_PORT=8545" - - "OP_NODE_SNAPSHOT_LOG=/tmp/op-node-snapshot-log" - - "OP_NODE_VERIFIER_L1_CONFS=0" - - "OP_NODE_STATIC_PEERS=" - - "OP_NODE_L1_RPC_KIND=${ETHEREUM_MAINNET_EXECUTION_KIND:-basic}" - - "OP_NODE_L1_TRUST_RPC=${ETHEREUM_MAINNET_EXECUTION_TRUST:-false}" - - "OP_NODE_L1_BEACON=${ETHEREUM_MAINNET_BEACON_REST}" - - "OP_NODE_L1_BEACON_ARCHIVER=${ETHEREUM_MAINNET_BEACON_ARCHIVER}" - - - - - networks: + - OP_NODE_L1_BEACON=${ETHEREUM_MAINNET_BEACON_REST} + - OP_NODE_L1_BEACON_ARCHIVER=${ETHEREUM_MAINNET_BEACON_ARCHIVER} + - OP_NODE_L1_ETH_RPC=${ETHEREUM_MAINNET_EXECUTION_RPC} + - OP_NODE_L1_RPC_KIND=${ETHEREUM_MAINNET_EXECUTION_KIND:-basic} + - OP_NODE_L1_TRUST_RPC=${ETHEREUM_MAINNET_EXECUTION_TRUST:-false} + - OP_NODE_L2_ENGINE_AUTH=/jwtsecret + - OP_NODE_L2_ENGINE_RPC=http://bob-mainnet-archive:8551 + - OP_NODE_LOG_LEVEL=info + - OP_NODE_METRICS_ADDR=0.0.0.0 + - OP_NODE_METRICS_ENABLED=true + - OP_NODE_METRICS_PORT=7300 + - OP_NODE_NETWORK=bob-mainnet + - OP_NODE_P2P_ADVERTISE_IP=${IP} + - OP_NODE_P2P_LISTEN_IP=0.0.0.0 + - OP_NODE_P2P_LISTEN_TCP_PORT=18347 + - OP_NODE_P2P_LISTEN_UDP_PORT=18347 + - OP_NODE_RPC_ADDR=0.0.0.0 + - OP_NODE_RPC_PORT=8545 + - OP_NODE_SNAPSHOT_LOG=/tmp/op-node-snapshot-log + - OP_NODE_SYNCMODE=execution-layer + - OP_NODE_VERIFIER_L1_CONFS=0 + entrypoint: [op-node] + restart: unless-stopped + networks: - chains - -volumes: + volumes: + - ./op/bob/mainnet:/config + - .jwtsecret:/jwtsecret:ro + +volumes: bob-mainnet-op-geth-archive-pebble-hash: x-upstreams: - id: $${ID} - chain: $${CHAIN} labels: provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: $${CHAIN} method-groups: enabled: - debug - filter methods: disabled: - - connection: - generic: - rpc: - url: "$${RPC_URL}" - ws: - frameSize: 20Mb - msgSize: 50Mb - url: "$${WS_URL}" - \ No newline at end of file + enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes + # standard geth only + - name: debug_getRawBlock + - name: debug_getRawTransaction + - name: debug_getRawReceipts + - name: debug_getRawHeader + - name: debug_getBadBlocks + # non standard geth only slightly dangerous + - name: debug_intermediateRoots + - name: debug_dumpBlock + # standard geth and erigon + - name: debug_accountRange + - name: debug_getModifiedAccountsByNumber + - name: debug_getModifiedAccountsByHash + # non standard geth and erigon + - name: eth_getRawTransactionByHash + - name: eth_getRawTransactionByBlockHashAndIndex +... \ No newline at end of file diff --git a/op/geth/bob-mainnet-op-geth-pruned-pebble-path.yml b/op/geth/bob-mainnet-op-geth-pruned-pebble-path.yml index b4118542..4178242a 100644 --- a/op/geth/bob-mainnet-op-geth-pruned-pebble-path.yml +++ b/op/geth/bob-mainnet-op-geth-pruned-pebble-path.yml @@ -1,11 +1,8 @@ -# use at your own risk +--- services: bob-mainnet: - image: ${BOB_GETH_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/geth}:${BOB_MAINNET_GETH_VERSION:-v1.101503.1} - user: root - ulimits: - nofile: 1048576 # Max open files (for RPC/WS connections) + image: ${BOB_GETH_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/op-geth}:${BOB_MAINNET_GETH_VERSION:-v1.101503.3} sysctls: # TCP Performance net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle @@ -14,115 +11,127 @@ services: net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers net.core.somaxconn: 32768 # Higher connection queue # Memory/Connection Management - net.core.netdev_max_backlog: 50000 # Increase network buffer + # net.core.netdev_max_backlog: 50000 # Increase network buffer net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 13347:13347 + - 13347:13347/udp expose: - 8545 - 8551 - - ports: - - 10347:10347 - - 10347:10347/udp - volumes: - - ${BOB_MAINNET_OP_GETH_PRUNED_PEBBLE_PATH_DATA:-bob-mainnet-op-geth-pruned-pebble-path}:/data - - /slowdisk:/slowdisk - - - .jwtsecret:/jwtsecret:ro - environment: - - GETH_OP_NETWORK=bob-mainnet - entrypoint: [/bin/sh, -c, exec /usr/local/bin/geth "$@"] + - GETH_ROLLUP_DISABLETXPOOLGOSSIP=true + - GETH_ROLLUP_SEQUENCERHTTP=https://bob-mainnet.public.blastapi.io + entrypoint: /bin/sh -c '[ ! -d /data/geth ] && geth init --datadir /data /config/genesis.json; exec geth "$@"' -- command: - --datadir=/data - - --port=10347 - - --bind=0.0.0.0 + - --db.engine=pebble + - --gcmode=full + - --maxpeers=50 - --nat=extip:${IP} + - --networkid=60808 + - --port=13347 + - --rpc.gascap=600000000 + - --rpc.txfeecap=0 + - --state.scheme=path + - --syncmode=snap - --http + - --http.addr=0.0.0.0 + - --http.api=eth,net,web3,debug,admin,txpool,engine - --http.port=8545 - --http.vhosts=* - --ws - - --ws.port=8545 - - --ws.origins=* - --ws.addr=0.0.0.0 - - --http.addr=0.0.0.0 - - --maxpeers=50 - - --http.api=web3,net,eth,debug,admin - - --ws.api=web3,net,eth,debug,admin - - - --rpc.gascap=600000000 - - --rpc.returndatalimit=10000000 - - --rpc.txfeecap=0 - - - --db.engine=pebble - - --state.scheme=path - - --syncmode=snap - - --gcmode=full - - networks: - - chains + - --ws.api=eth,net,web3,debug,admin,txpool,engine + - --ws.origins=* + - --ws.port=8545 + - --authrpc.addr=0.0.0.0 + - --authrpc.jwtsecret=/jwtsecret + - --authrpc.vhosts=* restart: unless-stopped stop_grace_period: 5m + networks: + - chains + volumes: + - ${BOB_MAINNET_OP_GETH_PRUNED_PEBBLE_PATH_DATA:-bob-mainnet-op-geth-pruned-pebble-path}:/data + - ./op/bob/mainnet:/config + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk labels: - traefik.enable=true - traefik.http.middlewares.bob-mainnet-op-geth-pruned-pebble-path-stripprefix.stripprefix.prefixes=/bob-mainnet - traefik.http.services.bob-mainnet-op-geth-pruned-pebble-path.loadbalancer.server.port=8545 - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.entrypoints=websecure} - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.tls.certresolver=myresolver} - - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.rule=Host(`$DOMAIN`) && PathPrefix(`/bob-mainnet`)} - - ${NO_SSL:+traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.rule=PathPrefix(`/bob-mainnet`)} + - ${NO_SSL:-traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.rule=Host(`$DOMAIN`) && (Path(`/bob-mainnet`) || Path(`/bob-mainnet/`))} + - ${NO_SSL:+traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.rule=Path(`/bob-mainnet`) || Path(`/bob-mainnet/`)} - traefik.http.routers.bob-mainnet-op-geth-pruned-pebble-path.middlewares=bob-mainnet-op-geth-pruned-pebble-path-stripprefix, ipwhitelist bob-mainnet-node: - image: ${BOB_NODE_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/node}:${BOB_MAINNET_NODE_VERSION:-v1.12.2} + image: ${BOB_NODE_IMAGE:-us-docker.pkg.dev/oplabs-tools-artifacts/images/op-node}:${BOB_MAINNET_NODE_VERSION:-v1.13.1} ports: - - 15347:15347 - - 15347:15347/udp + - 18347:18347 + - 18347:18347/udp environment: - - OP_NODE_NETWORK=bob-mainnet - - OP_NODE_L1_ETH_RPC=${ETHEREUM_MAINNET_EXECUTION_RPC} - - OP_NODE_L2_ENGINE_RPC=http://bob-mainnet:8551 - - OP_NODE_P2P_LISTEN_TCP_PORT=15347 - - OP_NODE_P2P_LISTEN_UDP_PORT=15347 - - OP_NODE_P2P_ADVERTISE_IP=${IP} - - OP_NODE_L1_RPC_KIND=${ETHEREUM_MAINNET_EXECUTION_KIND:-basic} - - OP_NODE_L1_TRUST_RPC=${ETHEREUM_MAINNET_EXECUTION_TRUST:-false} - OP_NODE_L1_BEACON=${ETHEREUM_MAINNET_BEACON_REST} - OP_NODE_L1_BEACON_ARCHIVER=${ETHEREUM_MAINNET_BEACON_ARCHIVER} - - OP_NODE_SYNCMODE=execution-layer + - OP_NODE_L1_ETH_RPC=${ETHEREUM_MAINNET_EXECUTION_RPC} + - OP_NODE_L1_RPC_KIND=${ETHEREUM_MAINNET_EXECUTION_KIND:-basic} + - OP_NODE_L1_TRUST_RPC=${ETHEREUM_MAINNET_EXECUTION_TRUST:-false} - OP_NODE_L2_ENGINE_AUTH=/jwtsecret + - OP_NODE_L2_ENGINE_RPC=http://bob-mainnet:8551 - OP_NODE_LOG_LEVEL=info - OP_NODE_METRICS_ADDR=0.0.0.0 - OP_NODE_METRICS_ENABLED=true - OP_NODE_METRICS_PORT=7300 + - OP_NODE_NETWORK=bob-mainnet + - OP_NODE_P2P_ADVERTISE_IP=${IP} - OP_NODE_P2P_LISTEN_IP=0.0.0.0 + - OP_NODE_P2P_LISTEN_TCP_PORT=18347 + - OP_NODE_P2P_LISTEN_UDP_PORT=18347 - OP_NODE_RPC_ADDR=0.0.0.0 - OP_NODE_RPC_PORT=8545 - OP_NODE_SNAPSHOT_LOG=/tmp/op-node-snapshot-log + - OP_NODE_SYNCMODE=execution-layer - OP_NODE_VERIFIER_L1_CONFS=0 entrypoint: [op-node] + restart: unless-stopped networks: - chains - volumes: + - ./op/bob/mainnet:/config - .jwtsecret:/jwtsecret:ro - restart: unless-stopped volumes: bob-mainnet-op-geth-pruned-pebble-path: x-upstreams: - - chain: + - id: $${ID} + labels: + provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: $${CHAIN} method-groups: enabled: - debug - filter - methods: disabled: # not compatible with path state scheme - name: debug_traceBlockByHash enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes # standard geth only - name: debug_getRawBlock - name: debug_getRawTransaction @@ -139,3 +148,4 @@ x-upstreams: # non standard geth and erigon - name: eth_getRawTransactionByHash - name: eth_getRawTransactionByBlockHashAndIndex +... \ No newline at end of file