diff --git a/0g/geth/0g-galileo-geth-pruned-leveldb-hash.yml b/0g/geth/0g-galileo-geth-pruned-leveldb-hash.yml new file mode 100644 index 00000000..a7362345 --- /dev/null +++ b/0g/geth/0g-galileo-geth-pruned-leveldb-hash.yml @@ -0,0 +1,184 @@ +--- +x-logging-defaults: &logging-defaults + driver: json-file + options: + max-size: "10m" + max-file: "3" + +# Usage: +# +# mkdir rpc && cd rpc +# +# git init +# git remote add origin https://github.com/StakeSquid/ethereum-rpc-docker.git +# git fetch origin vibe +# git checkout origin/vibe +# +# docker run --rm alpine sh -c "printf '0x'; head -c32 /dev/urandom | xxd -p -c 64" > .jwtsecret +# +# env +# ... +# IP=$(curl ipinfo.io/ip) +# DOMAIN=${IP}.traefik.me +# COMPOSE_FILE=base.yml:rpc.yml:0g/geth/0g-galileo-geth-pruned-leveldb-hash.yml +# +# docker compose up -d +# +# curl -X POST https://${IP}.traefik.me/0g-galileo-geth \ +# -H "Content-Type: application/json" \ +# --data '{"jsonrpc":"2.0","method":"eth_blockNumber","params":[],"id":1}' + +services: + 0g-galileo-geth: + image: ${0G_GETH_IMAGE:-ethereum/client-go}:${0G_GALILEO_GETH_VERSION:-v1.15.11} + sysctls: + # TCP Performance + net.ipv4.tcp_slow_start_after_idle: 0 # Disable slow start after idle + net.ipv4.tcp_no_metrics_save: 1 # Disable metrics cache + net.ipv4.tcp_rmem: 4096 87380 16777216 # Increase TCP read buffers + net.ipv4.tcp_wmem: 4096 87380 16777216 # Increase TCP write buffers + net.core.somaxconn: 32768 # Higher connection queue + # Memory/Connection Management + # net.core.netdev_max_backlog: 50000 # Increase network buffer + net.ipv4.tcp_max_syn_backlog: 30000 # More SYN requests + net.ipv4.tcp_max_tw_buckets: 2000000 # Allow more TIME_WAIT sockets + ulimits: + nofile: 1048576 # Max open files (for RPC/WS connections) + user: root + ports: + - 11779:11779 + - 11779:11779/udp + expose: + - 8545 + - 6060 + - 8551 + entrypoint: [/usr/local/bin/init.sh, geth] + command: + - --datadir=/root/.ethereum + - --db.engine=leveldb + - --gcmode=full + - --maxpeers=50 + - --metrics + - --metrics.addr=0.0.0.0 + - --metrics.port=6060 + - --nat=extip:${IP} + - --networkid= + - --port=11779 + - --rpc.gascap=600000000 + - --rpc.txfeecap=0 + - --state.scheme=hash + - --syncmode=snap + - --http + - --http.addr=0.0.0.0 + - --http.api=eth,net,web3,debug,admin,txpool,engine + - --http.port=8545 + - --http.vhosts=* + - --ws + - --ws.addr=0.0.0.0 + - --ws.api=eth,net,web3,debug,admin,txpool,engine + - --ws.origins=* + - --ws.port=8545 + - --authrpc.addr=0.0.0.0 + - --authrpc.jwtsecret=/jwtsecret + - --authrpc.vhosts=* + restart: unless-stopped + stop_grace_period: 5m + networks: + - chains + volumes: + - ${0G_GALILEO_GETH_PRUNED_LEVELDB_HASH_DATA:-0g-galileo-geth-pruned-leveldb-hash}:/root/.ethereum + - .jwtsecret:/jwtsecret:ro + - /slowdisk:/slowdisk + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=true + - prometheus-scrape.port=6060 + - prometheus-scrape.path=/debug/metrics/prometheus + - traefik.enable=true + - traefik.http.middlewares.0g-galileo-geth-pruned-leveldb-hash-stripprefix.stripprefix.prefixes=/0g-galileo-geth + - traefik.http.services.0g-galileo-geth-pruned-leveldb-hash.loadbalancer.server.port=8545 + - ${NO_SSL:-traefik.http.routers.0g-galileo-geth-pruned-leveldb-hash.entrypoints=websecure} + - ${NO_SSL:-traefik.http.routers.0g-galileo-geth-pruned-leveldb-hash.tls.certresolver=myresolver} + - ${NO_SSL:-traefik.http.routers.0g-galileo-geth-pruned-leveldb-hash.rule=Host(`$DOMAIN`) && (Path(`/0g-galileo-geth`) || Path(`/0g-galileo-geth/`))} + - ${NO_SSL:+traefik.http.routers.0g-galileo-geth-pruned-leveldb-hash.rule=Path(`/0g-galileo-geth`) || Path(`/0g-galileo-geth/`)} + - traefik.http.routers.0g-galileo-geth-pruned-leveldb-hash.middlewares=0g-galileo-geth-pruned-leveldb-hash-stripprefix, ipallowlist + + 0g-galileo-geth-node: + image: ${0G_0G_IMAGE:-}:${0G_GALILEO_0G_VERSION:-v2.0.3} + ports: + - 16779:16779 + - 16779:16779/udp + environment: + - IP=${IP} + - MONIKER=d${DOMAIN:-local} + command: + - --chaincfg.block-store-service.enabled + - --chaincfg.chain-spec=devnet + - --chaincfg.engine.jwt-secret-path=/jwtsecret + - --chaincfg.engine.rpc-dial-url=http://0g-galileo-geth:8551 + - --chaincfg.kzg.implementation=crate-crypto/go-kzg-4844 + - --chaincfg.kzg.trusted-setup-path=/0g/kzg-trusted-setup.json + - --chaincfg.node-api.address=0.0.0.0:3500 + - --chaincfg.node-api.enabled + - --chaincfg.node-api.logging + - --home=/root/.0g + - --p2p.external_address=${IP}:16779 + - --p2p.seeds=${0G_GALILEO_0G_SEEDS:-} + - --pruning=default + - --rpc.laddr=tcp://0.0.0.0:16779 + - 0gchaind + - start + restart: unless-stopped + depends_on: + - 0g-galileo-geth + networks: + - chains + volumes: + - .jwtsecret:/jwtsecret:ro + - 0g-galileo-geth-pruned-leveldb-hash_config:/root/.0g/config + logging: *logging-defaults + labels: + - prometheus-scrape.enabled=false + +volumes: + 0g-galileo-geth-pruned-leveldb-hash: + 0g-galileo-geth-pruned-leveldb-hash_config: + +x-upstreams: + - id: $${ID} + labels: + provider: $${PROVIDER} + connection: + generic: + rpc: + url: $${RPC_URL} + ws: + frameSize: 20Mb + msgSize: 50Mb + url: $${WS_URL} + chain: 0g-galileo-testnet + method-groups: + enabled: + - debug + - filter + methods: + disabled: + enabled: + - name: txpool_content # TODO: should be disabled for rollup nodes + # standard geth only + - name: debug_getRawBlock + - name: debug_getRawTransaction + - name: debug_getRawReceipts + - name: debug_getRawHeader + - name: debug_getBadBlocks + # non standard geth only slightly dangerous + - name: debug_intermediateRoots + - name: debug_dumpBlock + # standard geth and erigon + - name: debug_accountRange + - name: debug_getModifiedAccountsByNumber + - name: debug_getModifiedAccountsByHash + # non standard geth and erigon + - name: eth_getRawTransactionByHash + - name: eth_getRawTransactionByBlockHashAndIndex +... \ No newline at end of file