- Prerequisites
- These playbooks do
- These playbooks do not
- Setting up your Pocket node
- Check the correctness of your setup
- Tested on
- Contributions
- Control node - the machine that runs Ansible, e.g. your laptop or desktop computer
- Managed node - the target machine, e.g. your server
- Playbook - a blueprint of automation tasks (more info)
- Inventory - a file that defines the hosts and groups of hosts upon which commands, modules, and tasks in a playbook operate
- UNIX system, e.g. Arch Linux, Ubuntu, Debian, CentOS, Red Hat, macOS, any of the BSDs, etc.
- Windows is not supported, but you can use WSL 2
-
Ansible 2.9 or later:
- ansible-core package on Arch Linux
- ansible package on Ubuntu 20.04
-
python-dnspython
-
python-jmespath
- Python 3.5 or later
Before continuing and running any of the playbooks you should have a domain name and DNS record type A pointing to your server's IPv4 address. If you don't already have it, read Your Pocket node domain name and DNS record.
If you don't already have an SSL certificate for your domain, here are instructions on how to Obtain SSL certificate with certbot.
- Install and configure the firewall (nftables)
- Check Pocket binary installed on the target system
- Check installed Pocket version is the latest
- Create Pocket user, group, and home directory
- Create Pocket systemd service
- Install and configure web server (Nginx)
- Check your Pocket node is publicly available
- Check you have the correct mainnet genesis.json config file
- Check your Pocket node is fully synced
- Check your Pocket node relays requests to the chains successfully
-
Build Pocket and install the binary
- Follow instructions in the official guide
- Copy Pocket binary to /usr/local/bin directory or if it's not in the PATH set
pocket_pathvariable in host_vars/<host>.yaml
-
Configure your SSH server
- You should already have your SSH server configured with access by SSH key
- On the control node add your SSH key to the ssh-agent, make sure you can connect to the server without a password
- If using not default SSH port, set
sshd_portvariable in host_vars/<host>.yaml
Before continuing, you should have followed the steps in the These playbooks do not section above, got your domain name with a DNS record, and have an SSL certificate on the target node.
- Clone this repository on your control node:
git clone https://github.com/crabvk/pocket-ansible.git
cd pocket-ansible-
Create file hosts and write a list of your servers (probably you have only one for now). Use the same
Hostnames as in your ~/.ssh/config file. -
Copy host_vars/host.example.yaml to host_vars/<host>.yaml, read comments and set the variables accordingly.
-
Setup your Pocket node:
ansible-playbook -i hosts setup.yaml- Follow the steps in Deploy Your Validator & Full Nodes.
NOTE: To execute
sudo -u pocket bashWARNING: Don't forget to check your Pocket node's config file at ~/.pocket/config/config.json
It is auto-generated within the "Create an account" step.
After your Pocket node and all the chains are fully synced, start pocket in test mode:
pocket start --simulateRelayand check the correctness of setup with:
ansible-playbook -i hosts check.yamlTo start your Pocket node in production mode run:
systemctl start pocketControl node: Artix Linux
Managed node: Arch Linux, Ubuntu 20.04
Contributions are very welcome. Feel free to create an issue if you found a bug, want to request a feature, or have a question. You can also contact me on Telegram or Discord.