diff --git a/taiko/geth/taiko-hoodi-geth-archive-leveldb-hash.yml b/taiko/geth/taiko-hoodi-geth-archive-leveldb-hash.yml new file mode 100644 index 00000000..7869b43b --- /dev/null +++ b/taiko/geth/taiko-hoodi-geth-archive-leveldb-hash.yml @@ -0,0 +1,189 @@ +--- +x-logging-defaults: &logging-defaults + driver: json-file + options: + max-size: "10m" + max-file: "3" + +# Usage: +# +# mkdir rpc && cd rpc +# +# git init +# git remote add origin https://github.com/StakeSquid/ethereum-rpc-docker.git +# git fetch origin vibe +# git checkout origin/vibe +# +# docker run --rm alpine sh -c "printf '0x'; head -c32 /dev/urandom | xxd -p -c 64" > .jwtsecret +# +# env +# ... +# IP=$(curl ipinfo.io/ip) +# DOMAIN=${IP}.traefik.me +# COMPOSE_FILE=base.yml:rpc.yml:taiko/geth/taiko-hoodi-geth-archive-leveldb-hash.yml +# +# docker compose up -d +# +# curl -X POST https://${IP}.traefik.me/taiko-hoodi-archive \ +# -H "Content-Type: application/json" \ +# --data '{"jsonrpc":"2.0","method":"eth_blockNumber","params":[],"id":1}' + +services: + taiko-hoodi-archive: + image: ${TAIKO_GETH_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-geth}:${TAIKO_HOODI_GETH_VERSION:-v1.16.7} + sysctls: + # TCP Performance + net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle + net.ipv4.tcp_no_metrics_save: 1 # Disable metrics cache + net.ipv4.tcp_rmem: 4096 87380 16777216 # Increase TCP read buffers + net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers + net.core.somaxconn: 32768 # Higher connection queue + # Memory/Connection Management + # net.core.netdev_max_backlog: 50000 # Increase network buffer + net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests + net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 11005:11005 + - 11005:11005/udp + expose: + - 8545 + - 6060 + - 8551 + env_file: + - ./taiko/geth.env + - ./taiko/hoodi.env + environment: + - GETH_GPO_DEFAULTPRICE=10000000 + - GETH_NETWORKID=167000 + - GETH_TAIKO=true + command: + - --datadir=/root/.ethereum + - --db.engine=leveldb + - --gcmode=archive + - --maxpeers=50 + - --metrics + - --metrics.addr=0.0.0.0 + - --metrics.port=6060 + - --nat=extip:${IP} + - --port=11005 + - --rpc.gascap=600000000 + - --rpc.txfeecap=0 + - --state.scheme=hash + - --syncmode=full + - --http + - --http.addr=0.0.0.0 + - --http.api=eth,net,web3,debug,admin,txpool,engine,taiko + - --http.port=8545 + - --http.vhosts=* + - --ws + - --ws.addr=0.0.0.0 + - --ws.api=eth,net,web3,debug,admin,txpool,engine,taiko + - --ws.origins=* + - --ws.port=8545 + - --authrpc.addr=0.0.0.0 + - --authrpc.jwtsecret=/jwtsecret + - --authrpc.vhosts=* + restart: unless-stopped + stop_grace_period: 5m + networks: + - chains + volumes: + - ${TAIKO_HOODI_GETH_ARCHIVE_LEVELDB_HASH_DATA:-taiko-hoodi-geth-archive-leveldb-hash}:/root/.ethereum + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=true + - prometheus-scrape.port=6060 + - prometheus-scrape.path=/debug/metrics/prometheus + - traefik.enable=true + - traefik.http.middlewares.taiko-hoodi-geth-archive-leveldb-hash-stripprefix.stripprefix.prefixes=/taiko-hoodi-archive + - traefik.http.services.taiko-hoodi-geth-archive-leveldb-hash.loadbalancer.server.port=8545 + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-archive-leveldb-hash.entrypoints=websecure} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-archive-leveldb-hash.tls.certresolver=myresolver} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-archive-leveldb-hash.rule=Host(`$DOMAIN`) && (Path(`/taiko-hoodi-archive`) || Path(`/taiko-hoodi-archive/`))} + - ${NO_SSL:+traefik.http.routers.taiko-hoodi-geth-archive-leveldb-hash.rule=Path(`/taiko-hoodi-archive`) || Path(`/taiko-hoodi-archive/`)} + - traefik.http.routers.taiko-hoodi-geth-archive-leveldb-hash.middlewares=taiko-hoodi-geth-archive-leveldb-hash-stripprefix, ipallowlist + + taiko-hoodi-archive-node: + image: ${TAIKO_DRIVER_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-client}:${TAIKO_HOODI_DRIVER_VERSION:-} + ports: + - 16005:16005 + - 16005:16005/udp + - 36005:36005 + - 36005:36005/udp + env_file: + - ./taiko/hoodi.env + environment: + - ENABLE_PRECONFS_P2P=true + - JWT_SECRET=/jwtsecret + - L1_BEACON=${ETHEREUM_HOODI_BEACON_REST} + - L1_WS=${ETHEREUM_HOODI_EXECUTION_WS} + - L2_AUTH=http://taiko-hoodi-archive:8551 + - L2_WS=ws://taiko-hoodi-archive:8545 + - NODE_IMAGE=us-docker.pkg.dev/evmchain/images/taiko-client + - P2P_CHECK_POINT_SYNC_URL= + - P2P_SYNC=true + - PRECONFIRMATION_P2P_ADVERTISE_IP=${IP} + - PRECONFIRMATION_P2P_ADVERTISE_TCP_PORT=36005 + - PRECONFIRMATION_P2P_ADVERTISE_UDP_PORT=36005 + - PRECONFIRMATION_P2P_BOOTNODES= + - PRECONFIRMATION_P2P_LISTEN_TCP_PORT=36005 + - PRECONFIRMATION_P2P_LISTEN_UDP_PORT=36005 + - PRECONFIRMATION_SERVER_PORT=9871 + entrypoint: [taiko-client, driver] + restart: unless-stopped + depends_on: + - taiko-hoodi-archive + networks: + - chains + volumes: + - .jwtsecret:/jwtsecret:ro + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=false + +volumes: + taiko-hoodi-geth-archive-leveldb-hash: + +x-upstreams: + - id: $${ID} + labels: + provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: taiko + method-groups: + enabled: + - debug + - filter + methods: + disabled: + enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes + # standard geth only + - name: debug_getRawBlock + - name: debug_getRawTransaction + - name: debug_getRawReceipts + - name: debug_getRawHeader + - name: debug_getBadBlocks + # non standard geth only slightly dangerous + - name: debug_intermediateRoots + - name: debug_dumpBlock + # standard geth and erigon + - name: debug_accountRange + - name: debug_getModifiedAccountsByNumber + - name: debug_getModifiedAccountsByHash + # non standard geth and erigon + - name: eth_getRawTransactionByHash + - name: eth_getRawTransactionByBlockHashAndIndex +... \ No newline at end of file diff --git a/taiko/geth/taiko-hoodi-geth-archive-pebble-hash.yml b/taiko/geth/taiko-hoodi-geth-archive-pebble-hash.yml new file mode 100644 index 00000000..f9be3592 --- /dev/null +++ b/taiko/geth/taiko-hoodi-geth-archive-pebble-hash.yml @@ -0,0 +1,189 @@ +--- +x-logging-defaults: &logging-defaults + driver: json-file + options: + max-size: "10m" + max-file: "3" + +# Usage: +# +# mkdir rpc && cd rpc +# +# git init +# git remote add origin https://github.com/StakeSquid/ethereum-rpc-docker.git +# git fetch origin vibe +# git checkout origin/vibe +# +# docker run --rm alpine sh -c "printf '0x'; head -c32 /dev/urandom | xxd -p -c 64" > .jwtsecret +# +# env +# ... +# IP=$(curl ipinfo.io/ip) +# DOMAIN=${IP}.traefik.me +# COMPOSE_FILE=base.yml:rpc.yml:taiko/geth/taiko-hoodi-geth-archive-pebble-hash.yml +# +# docker compose up -d +# +# curl -X POST https://${IP}.traefik.me/taiko-hoodi-archive \ +# -H "Content-Type: application/json" \ +# --data '{"jsonrpc":"2.0","method":"eth_blockNumber","params":[],"id":1}' + +services: + taiko-hoodi-archive: + image: ${TAIKO_GETH_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-geth}:${TAIKO_HOODI_GETH_VERSION:-v1.16.7} + sysctls: + # TCP Performance + net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle + net.ipv4.tcp_no_metrics_save: 1 # Disable metrics cache + net.ipv4.tcp_rmem: 4096 87380 16777216 # Increase TCP read buffers + net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers + net.core.somaxconn: 32768 # Higher connection queue + # Memory/Connection Management + # net.core.netdev_max_backlog: 50000 # Increase network buffer + net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests + net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 12190:12190 + - 12190:12190/udp + expose: + - 8545 + - 6060 + - 8551 + env_file: + - ./taiko/geth.env + - ./taiko/hoodi.env + environment: + - GETH_GPO_DEFAULTPRICE=10000000 + - GETH_NETWORKID=167000 + - GETH_TAIKO=true + command: + - --datadir=/root/.ethereum + - --db.engine=pebble + - --gcmode=archive + - --maxpeers=50 + - --metrics + - --metrics.addr=0.0.0.0 + - --metrics.port=6060 + - --nat=extip:${IP} + - --port=12190 + - --rpc.gascap=600000000 + - --rpc.txfeecap=0 + - --state.scheme=hash + - --syncmode=full + - --http + - --http.addr=0.0.0.0 + - --http.api=eth,net,web3,debug,admin,txpool,engine,taiko + - --http.port=8545 + - --http.vhosts=* + - --ws + - --ws.addr=0.0.0.0 + - --ws.api=eth,net,web3,debug,admin,txpool,engine,taiko + - --ws.origins=* + - --ws.port=8545 + - --authrpc.addr=0.0.0.0 + - --authrpc.jwtsecret=/jwtsecret + - --authrpc.vhosts=* + restart: unless-stopped + stop_grace_period: 5m + networks: + - chains + volumes: + - ${TAIKO_HOODI_GETH_ARCHIVE_PEBBLE_HASH_DATA:-taiko-hoodi-geth-archive-pebble-hash}:/root/.ethereum + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=true + - prometheus-scrape.port=6060 + - prometheus-scrape.path=/debug/metrics/prometheus + - traefik.enable=true + - traefik.http.middlewares.taiko-hoodi-geth-archive-pebble-hash-stripprefix.stripprefix.prefixes=/taiko-hoodi-archive + - traefik.http.services.taiko-hoodi-geth-archive-pebble-hash.loadbalancer.server.port=8545 + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-archive-pebble-hash.entrypoints=websecure} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-archive-pebble-hash.tls.certresolver=myresolver} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-archive-pebble-hash.rule=Host(`$DOMAIN`) && (Path(`/taiko-hoodi-archive`) || Path(`/taiko-hoodi-archive/`))} + - ${NO_SSL:+traefik.http.routers.taiko-hoodi-geth-archive-pebble-hash.rule=Path(`/taiko-hoodi-archive`) || Path(`/taiko-hoodi-archive/`)} + - traefik.http.routers.taiko-hoodi-geth-archive-pebble-hash.middlewares=taiko-hoodi-geth-archive-pebble-hash-stripprefix, ipallowlist + + taiko-hoodi-archive-node: + image: ${TAIKO_DRIVER_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-client}:${TAIKO_HOODI_DRIVER_VERSION:-} + ports: + - 17190:17190 + - 17190:17190/udp + - 37190:37190 + - 37190:37190/udp + env_file: + - ./taiko/hoodi.env + environment: + - ENABLE_PRECONFS_P2P=true + - JWT_SECRET=/jwtsecret + - L1_BEACON=${ETHEREUM_HOODI_BEACON_REST} + - L1_WS=${ETHEREUM_HOODI_EXECUTION_WS} + - L2_AUTH=http://taiko-hoodi-archive:8551 + - L2_WS=ws://taiko-hoodi-archive:8545 + - NODE_IMAGE=us-docker.pkg.dev/evmchain/images/taiko-client + - P2P_CHECK_POINT_SYNC_URL= + - P2P_SYNC=true + - PRECONFIRMATION_P2P_ADVERTISE_IP=${IP} + - PRECONFIRMATION_P2P_ADVERTISE_TCP_PORT=37190 + - PRECONFIRMATION_P2P_ADVERTISE_UDP_PORT=37190 + - PRECONFIRMATION_P2P_BOOTNODES= + - PRECONFIRMATION_P2P_LISTEN_TCP_PORT=37190 + - PRECONFIRMATION_P2P_LISTEN_UDP_PORT=37190 + - PRECONFIRMATION_SERVER_PORT=9871 + entrypoint: [taiko-client, driver] + restart: unless-stopped + depends_on: + - taiko-hoodi-archive + networks: + - chains + volumes: + - .jwtsecret:/jwtsecret:ro + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=false + +volumes: + taiko-hoodi-geth-archive-pebble-hash: + +x-upstreams: + - id: $${ID} + labels: + provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: taiko + method-groups: + enabled: + - debug + - filter + methods: + disabled: + enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes + # standard geth only + - name: debug_getRawBlock + - name: debug_getRawTransaction + - name: debug_getRawReceipts + - name: debug_getRawHeader + - name: debug_getBadBlocks + # non standard geth only slightly dangerous + - name: debug_intermediateRoots + - name: debug_dumpBlock + # standard geth and erigon + - name: debug_accountRange + - name: debug_getModifiedAccountsByNumber + - name: debug_getModifiedAccountsByHash + # non standard geth and erigon + - name: eth_getRawTransactionByHash + - name: eth_getRawTransactionByBlockHashAndIndex +... \ No newline at end of file diff --git a/taiko/geth/taiko-hoodi-geth-pruned-pebble-path.yml b/taiko/geth/taiko-hoodi-geth-pruned-pebble-path.yml new file mode 100644 index 00000000..57abb0d5 --- /dev/null +++ b/taiko/geth/taiko-hoodi-geth-pruned-pebble-path.yml @@ -0,0 +1,182 @@ +--- +x-logging-defaults: &logging-defaults + driver: json-file + options: + max-size: "10m" + max-file: "3" + +# Usage: +# +# mkdir rpc && cd rpc +# +# git init +# git remote add origin https://github.com/StakeSquid/ethereum-rpc-docker.git +# git fetch origin vibe +# git checkout origin/vibe +# +# docker run --rm alpine sh -c "printf '0x'; head -c32 /dev/urandom | xxd -p -c 64" > .jwtsecret +# +# env +# ... +# IP=$(curl ipinfo.io/ip) +# DOMAIN=${IP}.traefik.me +# COMPOSE_FILE=base.yml:rpc.yml:taiko/geth/taiko-hoodi-geth-pruned-pebble-path.yml +# +# docker compose up -d +# +# curl -X POST https://${IP}.traefik.me/taiko-hoodi \ +# -H "Content-Type: application/json" \ +# --data '{"jsonrpc":"2.0","method":"eth_blockNumber","params":[],"id":1}' + +services: + taiko-hoodi: + image: ${TAIKO_GETH_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-geth}:${TAIKO_HOODI_GETH_VERSION:-v1.16.7} + sysctls: + # TCP Performance + net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle + net.ipv4.tcp_no_metrics_save: 1 # Disable metrics cache + net.ipv4.tcp_rmem: 4096 87380 16777216 # Increase TCP read buffers + net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers + net.core.somaxconn: 32768 # Higher connection queue + # Memory/Connection Management + # net.core.netdev_max_backlog: 50000 # Increase network buffer + net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests + net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 12953:12953 + - 12953:12953/udp + expose: + - 8545 + - 6060 + - 8551 + env_file: + - ./taiko/geth.env + - ./taiko/hoodi.env + environment: + - GETH_GPO_DEFAULTPRICE=10000000 + - GETH_NETWORKID=167000 + - GETH_TAIKO=true + command: + - --datadir=/root/.ethereum + - --db.engine=pebble + - --gcmode=full + - --maxpeers=50 + - --metrics + - --metrics.addr=0.0.0.0 + - --metrics.port=6060 + - --nat=extip:${IP} + - --port=12953 + - --rpc.gascap=600000000 + - --rpc.txfeecap=0 + - --state.scheme=path + - --syncmode=snap + - --http + - --http.addr=0.0.0.0 + - --http.api=eth,net,web3,debug,admin,txpool,engine,taiko + - --http.port=8545 + - --http.vhosts=* + - --ws + - --ws.addr=0.0.0.0 + - --ws.api=eth,net,web3,debug,admin,txpool,engine,taiko + - --ws.origins=* + - --ws.port=8545 + - --authrpc.addr=0.0.0.0 + - --authrpc.jwtsecret=/jwtsecret + - --authrpc.vhosts=* + restart: unless-stopped + stop_grace_period: 5m + networks: + - chains + volumes: + - ${TAIKO_HOODI_GETH_PRUNED_PEBBLE_PATH_DATA:-taiko-hoodi-geth-pruned-pebble-path}:/root/.ethereum + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=true + - prometheus-scrape.port=6060 + - prometheus-scrape.path=/debug/metrics/prometheus + - traefik.enable=true + - traefik.http.middlewares.taiko-hoodi-geth-pruned-pebble-path-stripprefix.stripprefix.prefixes=/taiko-hoodi + - traefik.http.services.taiko-hoodi-geth-pruned-pebble-path.loadbalancer.server.port=8545 + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-pruned-pebble-path.entrypoints=websecure} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-pruned-pebble-path.tls.certresolver=myresolver} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-geth-pruned-pebble-path.rule=Host(`$DOMAIN`) && (Path(`/taiko-hoodi`) || Path(`/taiko-hoodi/`))} + - ${NO_SSL:+traefik.http.routers.taiko-hoodi-geth-pruned-pebble-path.rule=Path(`/taiko-hoodi`) || Path(`/taiko-hoodi/`)} + - traefik.http.routers.taiko-hoodi-geth-pruned-pebble-path.middlewares=taiko-hoodi-geth-pruned-pebble-path-stripprefix, ipallowlist + + taiko-hoodi-node: + image: ${TAIKO_DRIVER_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-client}:${TAIKO_HOODI_DRIVER_VERSION:-} + ports: + - 17953:17953 + - 17953:17953/udp + env_file: + - ./taiko/hoodi.env + environment: + - ENABLE_PRECONFS_P2P=false + - JWT_SECRET=/jwtsecret + - L1_BEACON=${ETHEREUM_HOODI_BEACON_REST} + - L1_WS=${ETHEREUM_HOODI_EXECUTION_WS} + - L2_AUTH=http://taiko-hoodi:8551 + - L2_WS=ws://taiko-hoodi:8545 + - NODE_IMAGE=us-docker.pkg.dev/evmchain/images/taiko-client + - P2P_CHECK_POINT_SYNC_URL= + - P2P_SYNC=true + entrypoint: [taiko-client, driver] + restart: unless-stopped + depends_on: + - taiko-hoodi + networks: + - chains + volumes: + - .jwtsecret:/jwtsecret:ro + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=false + +volumes: + taiko-hoodi-geth-pruned-pebble-path: + +x-upstreams: + - id: $${ID} + labels: + provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: taiko + method-groups: + enabled: + - debug + - filter + methods: + disabled: + # not compatible with path state scheme + - name: debug_traceBlockByHash + enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes + # standard geth only + - name: debug_getRawBlock + - name: debug_getRawTransaction + - name: debug_getRawReceipts + - name: debug_getRawHeader + - name: debug_getBadBlocks + # non standard geth only slightly dangerous + - name: debug_intermediateRoots + - name: debug_dumpBlock + # standard geth and erigon + - name: debug_accountRange + - name: debug_getModifiedAccountsByNumber + - name: debug_getModifiedAccountsByHash + # non standard geth and erigon + - name: eth_getRawTransactionByHash + - name: eth_getRawTransactionByBlockHashAndIndex +... \ No newline at end of file diff --git a/taiko/hoodi.env b/taiko/hoodi.env new file mode 100644 index 00000000..0d56d654 --- /dev/null +++ b/taiko/hoodi.env @@ -0,0 +1,4 @@ +TAIKO_INBOX=0xf6eA848c7d7aC83de84db45Ae28EAbf377fe0eF9 +TAIKO_ANCHOR=0x1670130000000000000000000000000000010001 +TAIKO_TOKEN_L1_ADDRESS=0xf3b83e226202ECf7E7bb2419a4C6e3eC99e963DA +PRECONFIRMATION_WHITELIST=0x8B969Fcf37122bC5eCB4E0e5Ad65CEEC3f1393ba diff --git a/taiko/nethermind/taiko-hoodi-nethermind-pruned-rocksdb-trace.yml b/taiko/nethermind/taiko-hoodi-nethermind-pruned-rocksdb-trace.yml new file mode 100644 index 00000000..59a04278 --- /dev/null +++ b/taiko/nethermind/taiko-hoodi-nethermind-pruned-rocksdb-trace.yml @@ -0,0 +1,152 @@ +--- +x-logging-defaults: &logging-defaults + driver: json-file + options: + max-size: "10m" + max-file: "3" + +# Usage: +# +# mkdir rpc && cd rpc +# +# git init +# git remote add origin https://github.com/StakeSquid/ethereum-rpc-docker.git +# git fetch origin vibe +# git checkout origin/vibe +# +# docker run --rm alpine sh -c "printf '0x'; head -c32 /dev/urandom | xxd -p -c 64" > .jwtsecret +# +# env +# ... +# IP=$(curl ipinfo.io/ip) +# DOMAIN=${IP}.traefik.me +# COMPOSE_FILE=base.yml:rpc.yml:taiko/nethermind/taiko-hoodi-nethermind-pruned-rocksdb-trace.yml +# +# docker compose up -d +# +# curl -X POST https://${IP}.traefik.me/taiko-hoodi-nethermind \ +# -H "Content-Type: application/json" \ +# --data '{"jsonrpc":"2.0","method":"eth_blockNumber","params":[],"id":1}' + +services: + taiko-hoodi-nethermind: + image: ${TAIKO_NETHERMIND_IMAGE:-nethermind/nethermind}:${TAIKO_HOODI_NETHERMIND_VERSION:-1.35.2} + sysctls: + # TCP Performance + net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle + net.ipv4.tcp_no_metrics_save: 1 # Disable metrics cache + net.ipv4.tcp_rmem: 4096 87380 16777216 # Increase TCP read buffers + net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers + net.core.somaxconn: 32768 # Higher connection queue + # Memory/Connection Management + # net.core.netdev_max_backlog: 50000 # Increase network buffer + net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests + net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 11610:11610 + - 11610:11610/udp + expose: + - 8545 + - 9091 + env_file: + - ./taiko/hoodi.env + environment: + - NETHERMIND_CONFIG= + - NETHERMIND_INITCONFIG_BASEDBPATH=/data/db + - NETHERMIND_INITCONFIG_LOGDIRECTORY=/data/logs + - NETHERMIND_INITCONFIG_WEBSOCKETSENABLED=true + - NETHERMIND_JSONRPCCONFIG_ENABLED=true + - NETHERMIND_JSONRPCCONFIG_ENABLEDMODULES=[Eth,Subscribe,TxPool,Web3,Personal,Proof,Net,Parity,Health,Rpc,Debug,Admin,Traces] + - NETHERMIND_JSONRPCCONFIG_ENGINEHOST=0.0.0.0 + - NETHERMIND_JSONRPCCONFIG_ENGINEPORT=8551 + - NETHERMIND_JSONRPCCONFIG_HOST=0.0.0.0 + - NETHERMIND_JSONRPCCONFIG_JWTSECRETFILE=/jwtsecret + - NETHERMIND_JSONRPCCONFIG_PORT=8545 + - NETHERMIND_JSONRPCCONFIG_WEBSOCKETSPORT=8545 + - NETHERMIND_METRICSCONFIG_EXPOSEPORT=9091 + - NETHERMIND_NETWORKCONFIG_DISCOVERYPORT=11610 + - NETHERMIND_NETWORKCONFIG_EXTERNALIP=${IP} + - NETHERMIND_NETWORKCONFIG_MAXACTIVEPEERS=250 + - NETHERMIND_NETWORKCONFIG_P2PPORT=11610 + - NETHERMIND_TRACESTORECONFIG_ENABLED=true + - NETHERMIND_TRACESTORECONFIG_TRACETYPES=Trace,Rewards + restart: unless-stopped + stop_grace_period: 5m + networks: + - chains + volumes: + - ${TAIKO_HOODI_NETHERMIND_PRUNED_ROCKSDB_TRACE_DATA:-taiko-hoodi-nethermind-pruned-rocksdb-trace}:/data + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=true + - prometheus-scrape.port=9091 + - prometheus-scrape.path=/metrics + - traefik.enable=true + - traefik.http.middlewares.taiko-hoodi-nethermind-pruned-rocksdb-trace-stripprefix.stripprefix.prefixes=/taiko-hoodi-nethermind + - traefik.http.services.taiko-hoodi-nethermind-pruned-rocksdb-trace.loadbalancer.server.port=8545 + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-nethermind-pruned-rocksdb-trace.entrypoints=websecure} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-nethermind-pruned-rocksdb-trace.tls.certresolver=myresolver} + - ${NO_SSL:-traefik.http.routers.taiko-hoodi-nethermind-pruned-rocksdb-trace.rule=Host(`$DOMAIN`) && (Path(`/taiko-hoodi-nethermind`) || Path(`/taiko-hoodi-nethermind/`))} + - ${NO_SSL:+traefik.http.routers.taiko-hoodi-nethermind-pruned-rocksdb-trace.rule=Path(`/taiko-hoodi-nethermind`) || Path(`/taiko-hoodi-nethermind/`)} + - traefik.http.routers.taiko-hoodi-nethermind-pruned-rocksdb-trace.middlewares=taiko-hoodi-nethermind-pruned-rocksdb-trace-stripprefix, ipallowlist + + taiko-hoodi-nethermind-node: + image: ${TAIKO_DRIVER_IMAGE:-us-docker.pkg.dev/evmchain/images/taiko-client}:${TAIKO_HOODI_DRIVER_VERSION:-} + ports: + - 16610:16610 + - 16610:16610/udp + env_file: + - ./taiko/hoodi.env + environment: + - ENABLE_PRECONFS_P2P=false + - JWT_SECRET=/jwtsecret + - L1_BEACON=${ETHEREUM_HOODI_BEACON_REST} + - L1_WS=${ETHEREUM_HOODI_EXECUTION_WS} + - L2_AUTH=http://taiko-hoodi-nethermind:8551 + - L2_WS=ws://taiko-hoodi-nethermind:8545 + - NODE_IMAGE=us-docker.pkg.dev/evmchain/images/taiko-client + - P2P_CHECK_POINT_SYNC_URL= + - P2P_SYNC=true + entrypoint: [taiko-client, driver] + restart: unless-stopped + depends_on: + - taiko-hoodi-nethermind + networks: + - chains + volumes: + - .jwtsecret:/jwtsecret:ro + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=false + +volumes: + taiko-hoodi-nethermind-pruned-rocksdb-trace: + +x-upstreams: + - id: $${ID} + labels: + provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: taiko + method-groups: + enabled: + - debug + - filter + - trace + methods: + disabled: + enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes +... \ No newline at end of file