Docker Machine utility provides convenient command-line tool for managing multiple virtual machines, both running locally with virtualbox and running
in clouds such as Azure or AWS.
Having nodes deployed separately you will need to provide DNS name resolving so containers from different organizations can see each other.
There several options to implement this:
Docker Swarmautomatically provides virtual sub-net for all nodes in Swarm. Recommendedonly for test\devpurposes as Swarm manager has unrestricted access to nodes. See Swarm.mdextra-hostssetting which is added by docker-composer to each container's /etc/hosts file. See Extra hosts.DNSservice specific for particular blockchain network (either central or DNS-cluster). See dns.md.
Install docker-machine.
Install VirtualBox.
Use script network-docker-machine-create.sh to create a network with an arbitrary
number of member organizations each running in its own virtual host (orderer node is started on the org1's host):
./network-docker-machine-create.sh org1 org2 org3Of course you can override the defaults with env variables.
DOMAIN=mynetwork.org \
CHANNEL=a-b \
WEBAPP_HOME=/home/oleg/webapp \
CHAINCODE_HOME=/home/oleg/chaincode \
CHAINCODE_INSTALL_ARGS='example02 1.0 chaincode_example02 golang' \
CHAINCODE_INSTANTIATE_ARGS="a-b example02 [\"init\",\"a\",\"10\",\"b\",\"0\"] 1.0 collections.json AND('a.member','b.member')" \
./network-docker-machine-create.sh a bThe script network-create-docker-machine.sh combines
host-create.sh to create host machines with docker-machine and
network-create.sh to create container with docker-compose.
If you don't want to recreate hosts every time you can re-run ./network-create.sh with the same arguments and
env variables to recreate the network on the same remote hosts by clearing and creating containers.
-
Define
amazonec2driver for docker-machine and open ports indocker-machinesecurity group. -
Make sure your AWS credentials are saved in env variables (
AWS_ACCESS_KEY_ID,AWS_SECRET_ACCESS_KEY) or~/.aws/credentialsor passed as arguments --amazonec2-access-keyand--amazonec2-secret-key`. -
Determine the AWS
region(e.g.us-east-1orus-west-1) and find thevpc_idcorresponded to this region (or make sure theregionhas a defaultvpc) -
Determine which AWS
instance typesyou are going to use (instance types with at least 4Gb RAM are recommended, e.g.c5.xlarge) -
Provide AWS related flags environment for
docker-machine:
export DOCKER_MACHINE_FLAGS="--driver amazonec2 \
--amazonec2-region us-east-1 \
--amazonec2-vpc-id vpc-0e3f0c2243772be49 \
--amazonec2-instance-type c5.xlarge \
--amazonec2-open-port 80 --amazonec2-open-port 7050 --amazonec2-open-port 7051 --amazonec2-open-port 4000"
More settings are described on the driver page.
- Stop the local docker images registry if started:
docker stop docker-registry- Then start the network:
./network-docker-machine-create.sh org1 org2 org3Define azure driver for docker-machine and open ports in network security groups.
Give your subscription id (the one looking like deadbeef-8bad-f00d-989d-5fbe969ccb9e) and the script will prompt you
to login to your Microsoft account and authorize Docker Machine for Azure application to manage your Azure instances.
More settings are described on the driver page.
DOCKER_MACHINE_FLAGS="--driver azure --azure-size Standard_A1 --azure-subscription-id <your subs-id> --azure-open-port 80 --azure-open-port 7050 --azure-open-port 7051 --azure-open-port 4000" \
./network-create-docker-machine.sh org1 org2If you have already created remote hosts in the cloud or on premises you can connect docker-machine to these hosts and operate with the same scripts and commands.
Make sure the remote hosts have open inbound ports for Fabric network: 80, 4000, 7050, 7051 and for docker: 2376.
Connect via generic driver
to hosts orderer, a and b at specified public IPs with ssh private key ~/docker-machine.pem.
docker-machine create --driver generic --generic-ssh-key ~/docker-machine.pem --generic-ssh-user ubuntu \
--generic-ip-address 34.227.123.456 orderer
docker-machine create --driver generic --generic-ssh-key ~/docker-machine.pem --generic-ssh-user ubuntu \
--generic-ip-address 54.173.123.457 a
docker-machine create --driver generic --generic-ssh-key ~/docker-machine.pem --generic-ssh-user ubuntu \
--generic-ip-address 54.152.123.458 bNow the hosts are known to docker-machine and you can run network-create.sh script to create
docker containers running the network and create organizations, channel and chaincode.
DOMAIN=mynetwork.org CHANNEL=a-b WEBAPP_HOME=/home/oleg/webapp CHAINCODE_HOME=/home/oleg/chaincode CHAINCODE_INSTALL_ARGS='example02 1.0 chaincode_example02 golang' CHAINCODE_INSTANTIATE_ARGS="a-b example02 [\"init\",\"a\",\"10\",\"b\",\"0\"] 1.0 collections.json AND('a.member','b.member')" \
./network-create.sh a bNow we will use two separate hosts and setup network of two organizations manually.
In test\dev mode, if you use Oracle VirtualBox's machines you can use local docker registry which results faster docker images downloading.
- Start local registry with:
./extra/docker-registry-local/start-docker-registry-local.shThis will start the registry docker container which provides docker registry on port 5000.
Having registry container is running start virtual machines with:
./host-create.sh org1 org2On virtualbox machines you'll specify address of the local registry (if used):
export DOCKER_REGISTRY=192.168.99.1:5000start orderer:
export DOCKER_REGISTRY=192.168.99.1:5000
WWW_PORT=81 WORK_DIR=./ docker-compose -f docker-compose-orderer.yaml -f docker-compose-orderer-multihost.yaml up -dThen start peer:
export DOCKER_REGISTRY=192.168.99.1:5000
BOOTSTRAP_IP=192.168.99.xx MY_IP=192.168.99.xx ORG=org1 MULTIHOST=true WORK_DIR=./ docker-compose -f docker-compose.yaml -f docker-compose-multihost.yaml -f docker-compose-api-port.yaml up -d export DOCKER_REGISTRY=192.168.99.1:5000
ORG=org2 BOOTSTRAP_IP=192.168.99.xx MY_IP=192.168.99.yy MULTIHOST=true WORK_DIR=./ docker-compose -f docker-compose.yaml -f docker-compose-multihost.yaml -f docker-compose-api-port.yaml up -d-
open Admin Dashboard :4000/admin
-
see channel "common" is already created
-
wait for chaincode
dnsis auto-instantiated (this can take couple of minutes), when done thednsappears in the Chaincodes List -
organizations: Use
Add organization to channelspecifying IP and ports: "org2", "192.168.99.yy" (this will add dns-information for org2) -
organizations:
Add organization to channel"org3", "192.168.99.zz" (this will add dns-information for org3) -
or a dns-information of an Org can be registered the blockchain-network:
chaincode:dnsinvoke functionregisterOrgwith params"org2.example.com" "192.168.99.yy" -
install custom chaincode
-
instantiate custom chaincode
-
Use Consortium sub-form to add orgs to Consortium, specify org name, ip, WWW Port where certificates are served
- join channel "common"
- install custom chaincode
- join channel "common"
- install custom chaincode
To understand the script please read the below step by step instructions for the network of two member organizations org1 and org2.
Create 3 hosts: orderer and member organizations org1 and org2.
docker-machine create orderer
docker-machine create org1
docker-machine create org2Tell the scripts to use extra multihost docker-compose yaml files.
export MULTIHOST=trueConnect docker client to the orderer host. The docker commands that follow will be executed on the host not local machine.
eval "$(docker-machine env orderer)"
Inspect created hosts' IPs and collect them into hosts file to copy to the hosts. This file will be mapped to the
docker containers' /etc/hosts to resolve names to IPs.
This is better done by the script.
Alternatively, edit extra_hosts in docker-compose-multihost.yaml and docker-compose-orderer-multihost.yaml to specify host IPs directly.
docker-machine ip orderer
docker-machine ip org1
docker-machine ip org2Start orderer docker containers (crypto-material will be auto-generated).
docker-compose -f docker-compose-orderer.yaml -f docker-compose-orderer-multihost.yaml up -dOpen a new console. Use env variables to tell the scripts to use multihost config yaml and to name your organization.
export MULTIHOST=true && export ORG=org1Copy chaincode and webapp folders to the host.
docker-machine scp -r chaincode $ORG:chaincode && docker-machine scp -r webapp $ORG:webappConnect docker client to the organization host.
eval "$(docker-machine env $ORG)"Start peer docker containers (again, crypto-material for peer will be auto-generated).
docker-compose -f docker-compose.yaml -f docker-compose-multihost.yaml -f docker-compose-api-port.yaml up -dTo create other organizations repeat the above steps in separate consoles
and giving them names by export ORG=org2 in the first step.
Return to the orderer console.
Now the member organizations are up and serving their certificates. The orderer host can download them to add to the consortium definition.
./consortium-add-org.sh org1
./consortium-add-org.sh org2Return to the org1 console.
The first organization creates channel common and joins to it.
./channel-create.sh common
./channel-join.sh commonAnd adds other organizations to channel common.
./channel-add-org.sh common org2And installs and instantiates chaincode reference.
./chaincode-install.sh reference
./chaincode-instantiate.sh common referenceTest the chaincode by invoke and query.
./chaincode-invoke.sh common reference '["put","account","1","{\"name\":\"one\"}"]'
./chaincode-query.sh common reference '["list","account"]'Return to org2 console.
Join common and install reference.
./channel-join.sh common
./chaincode-install.sh referenceTest the chaincode by a query by org2.
./chaincode-query.sh common reference '["list","account"]'