ARCHIVE/xrpl-dev-portal
1
0
Fork 0
mirror of https://github.com/XRPLF/xrpl-dev-portal.git synced 2025-11-19 11:15:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

[DOC] merge rippled setup docs and add context

Browse Source
This commit is contained in:
mDuo13
2015-04-03 19:00:03 -07:00
parent bb8698869c
commit 4a3657fbea
23 changed files with 470 additions and 173 deletions
Download Patch File Download Diff File Expand all files Collapse all files

255
content/rippled-setup.md Normal file
View File

@@ -0,0 +1,255 @@
# Operating rippled Servers #
The core server of the Ripple peer-to-peer network is [`rippled`](rippled-apis.html). Anyone can run their own `rippled` server (also known as a _`rippled` node_) that follows the network and keeps a complete copy of the Ripple ledger. You can even have your server perform validations and participate in the consensus process.
## Types of rippled Servers ##
The `rippled` server software can run in several modes depending on its configuration, including:
* Stock node - follows the network with a local copy of the ledger.
* Validating node - participates in consensus.
* Stand-alone mode - for basic testing.
You can also run `rippled` as a client application for accessing [rippled APIs](rippled-apis.html) locally. (Two instances of the same binary can run side-by-side in this case; one as a server, and the other running briefly as a client and then terminating.)
## Parallel Networks ##
Most of the time, we describe the Ripple Network as one collective, singular entity -- and that's mostly true. There is one production Ripple Network, and all business that takes place on Ripple occurs within the production Ripple Network.
However, sometimes you may want to do tests and experiments without interacting with the core network. That's why Ripple Labs started the [Ripple Test Net](https://rippletest.net/), an "alternate universe" network, which can act as a testing ground for applications and the `rippled` server itself, without impacting the business operations of everyday Ripple users.
**Caution:** Ripple Labs makes no guarantees about the stability of the test network. It has been and continues to used to test various properties of server configuration, network topology, and network performance.
Organizations who want to contribute to the Ripple Network as a validator can start by demonstrating reliability in the [Ripple Test Net](https://rippletest.net/). <span class='draft-comment'>Should we mention anything about earning XRP for running a Ripple Test Net validator?</span>
Over time, there may also be additional, smaller test networks for specific purposes.
## Reasons to Run a Stock Node ##
There are lots of reasons you might want to run your own `rippled` server, but most of them can be summarized as: you can trust your own server, you have control over its workload, and you're not at the mercy of others to decide when and how you can access it.
It is important that you can trust the `rippled` you use, so you can be certain that the software you are running will behave in the manner specified in its source code. Of course, you must also practice good network security to protect your server from malicious hackers. If you connect to a malicious server, there are myriad ways that it can take advantage of you or cause you to lose money. For example:
* A malicious server could report that you were paid when no such payment was made
* It could selectively show or hide payment paths and currency exchange offers to guarantee its own profit while not providing you the best deal
* If you sent it your account's secret, it could make arbitrary transactions on your behalf, and even transfer or destroy all the money in your account's balances.
Additionally, running your own server gives you admin control over it, which allows you to run important admin-only and load-intensive commands. If you use a shared server, you have to worry about other users of the same server competing with you for the server's computing power. Many of the commands in the WebSocket API can put a lot of strain on the server, so `rippled` has the option to scale back its responses when it needs to. If you share a server with others, you may not always get the best results possible.
## Reasons to Run a Validating Node ##
The robustness of the Ripple network depends on an interconnected web of validators who each trust a few other validators _not to collude_. The more operators with different interests there are who run validating nodes, the more certain each member of the network can be that it continues to run impartially. If you or your organization relies on the Ripple Network, it is in your interest to contribute to the consensus process.
Not all `rippled` nodes need to be validating nodes: trusting additional nodes from the same operator does not provide additional protection against collusion. However, an organization may run nodes in multiple regions in order to provide better redundancy in case of natural disasters and other emergencies.
If your organization runs a validating node, you may also run one or more stock nodes, to balance the computing load of API access, or as a proxy between your validation server and the outside network.
## System Requirements ##
A `rippled` server should run comfortably on commodity hardware, to make it easy to participate in the network. At present, we recommend the following:
- Operating System:
- Production: Ubuntu Linux (latest LTS) supported
- Development: Mac OS X, Windows (64-bit), or most Linux distributions
- CPU: 64-bit x86_64, 2+ cores
- Disk: Minimum 50GB SSD recommended (500+ IOPS, more is better) for the database partition
- RAM: 4+GB
Amazon EC2's m3.medium or m3.large VM sizes may be appropriate depending on your workload. (Validating nodes need more resources.)
Naturally, a fast network connection is preferable.
# Installing rippled #
For development, you can [compile `rippled` from source](https://wiki.ripple.com/Rippled_build_instructions).
Production `rippled` instances can use Ripple Labs' binary executable, available from the Ripple Labs apt-get repository.
## Binary Installation on Ubuntu ##
This document assumes that you are using Ubuntu 14.04.
1. Install the Ripple apt repository:
$ sudo apt-get install software-properties-common
$ sudo apt-add-repository 'deb http://mirrors.ripple.com/ubuntu/ trusty stable contrib'
$ sudo apt-get update
2. Install the `rippled` package:
$ sudo apt-get install rippled
3. Configure `rippled` in `/etc/rippled/rippled.cfg`:
[server]
port_peer
port_rpc
port_ws
[port_peer]
port = 51235
ip = 0.0.0.0
protocol = peer
[port_rpc]
port = 51234
ip = 0.0.0.0
admin = allow
protocol = http
[port_ws]
port = 51233
ip = 0.0.0.0
admin = allow
protocol = ws
[peer_private]
1
[ledger_history]
full
[ssl_verify]
0
[sntp_servers]
time.windows.com
time.apple.com
time.nist.gov
pool.ntp.org
[rpc_allow_remote]
1
[node_db]
type=nudb
path=/mnt/rippled/db/nudb
[database_path]
/mnt/rippled/db
[rpc_startup]
{"command": "log_level", "severity": "warning"}
See [the rippled GitHub repository](https://github.com/ripple/rippled/blob/develop/doc/rippled-example.cfg) for additional configuration options.
4. Give rippled permission to mount:
$ sudo mkdir /mnt/rippled
$ sudo chown rippled:rippled -R /mnt/rippled
5. Start the rippled service:
$ sudo service rippled start
It can take several minutes for `rippled` to sync with the rest of the network, during which time it outputs warnings about missing ledgers. After that, you have a fully functional stock `rippled` node that you can use for local signing and API access to the Ripple Network.
# Running a Validating Node #
Becoming a validator that participates in the network involves several steps. Initially, the network probably ignores any validations your node provides: this is called being an _untrusted validator_. Later, after the operators of other `rippled` validators add your node to their configuration, your node's validations actually contribute to the consensus process. At this point, you have become a _trusted validator_.
## Validator Setup ##
1. [Install and configure a `rippled` node](#installing-rippled)
2. Start `rippled`:
$ sudo service rippled start
3. Generate a validator key and save the output to a secure place:
$ rippled --conf /etc/rippled/rippled.cfg -q validation_create
{
"status" : "success",
"validation_key" : "FOLD WERE CHOW WIT SWIM RANK WED DAN LAIN TRIO MURK NELL",
"validation_public_key" : "n9KHn8NfbBsZV5q8bLfS72XyGqwFt5mgoPbcTV4c6qKiuPTAtXYk",
"validation_seed" : "ssdecohJMDPFuUPDkmG1w4objZyp4"
}
4. Stop rippled:
$ sudo service rippled stop
5. Add the generated validator signing key from above to your `rippled.cfg`:
[validation_seed]
ssdecohJMDPFuUPDkmG1w4objZyp4
6. (Optional) If connecting to a [parallel network](#parallel-networks), add core validator IP addresses of parallel network to `rippled.cfg`:
For example the following IP addresses are the current [Ripple Test Net](#parallel-networks) core validators:
[ips_fixed]
54.92.66.122 51235
54.67.72.173 51235
52.16.66.76 51235
54.93.66.235 51235
52.74.67.18 51235
52.64.9.71 51235
54.207.20.165 51235
54.172.212.33 51235
52.11.28.194 51235
54.94.245.104 51235
54.65.200.22 51235
52.1.205.132 51235
7. Add core validator validation public keys to `rippled.cfg`:
The default configuration includes core validators operated by Ripple Labs for the production Ripple Network:
[validators]
n949f75evCHwgyP4fPVgaHqNHxUVN15PsJEZ3B3HnXPcPjcZAoy7 RL1
n9MD5h24qrQqiyBC8aeqqCWvpiBiYQ3jxSr91uiDvmrkyHRdYLUj RL2
n9L81uNCaPgtUJfaHh89gmdvXKAmSt5Gdsw2g1iPWaPkAHW5Nm4C RL3
n9KiYM9CgngLvtRCQHZwgC2gjpdaZcCcbt3VboxiNFcKuwFVujzS RL4
n9LdgEtkmGB9E2h3K4Vp7iGUaKuq23Zr32ehxiU8FWY7xoxbWTSA RL5
If you want to connect to the [Ripple Test Net](#parallel-networks), you would add the validation public keys of the core validators on that network instead:
[validators]
n9LnZ1AiyHmytkhLUr89dmL76uxZLzzyregvQVZFkVfqEQTCpg7B
n9LJWexXc9wxzUKWZe4faTS4N9DUba3jNsByERZSa8MJc2bhCF7c
n9MnXUt5Qcx3BuBYKJfS4fqSohgkT79NGjXnZeD9joKvP3A5RNGm
n9LxyXSSrTZ482ceep9WGQnT2nknfzFMFgNL4wMjTUn3SfF3rhtS
n9MTPLhEEjxcWHfqsXQhFoSUKaqYvU4E7B4yke39EMFm2DhFr43F
n9Lw3j7THPhKLz2uDqBBWwyxHQC1Foyr3M6JeWCVyu7uhnhL6HA5
n9L2XLFvcdriK34bCNXexzKMVcsZ9i4UG9J4pykR5c3J8gvBB6fw
n9JCK3M4ci7b1XRq2wr1Ckd1HNq3Cg7NWrWiKyzJa4R5J489QGer
n9LXZBs2aBiNsgBkhVJJjDX4xA4DoEBLycF6q8zRhXD1Zu3Kwbe4
n9Kk6U5nSF8EggfmTpMdna96UuXWAVwSsDSXRkXeZ5vLcAFk77tr
n9J1voqeu6iZQiLXaMofLeMbv8mbPskJWGYRtjdo8rmpvNdQRyEn
n9KuCFBLq2GD4vJtoL3tebQJbhcHSd7tMqFM1x9bPK9wSagPJdd1
8. Adjust the validation quorum value in `rippled.cfg`:
This sets the minimum of trusted validations a ledger must have before the server considers it fully validated. Note that if you are validating, your validation counts.
For example, a validation quorum for a new [Ripple Test Net](#parallel-networks) validator could be set as follows:
[validation_quorum]
10
9. Start `rippled` untrusted validator
$ sudo service rippled start
## Starting a Parallel Network ##
<span class='draft-comment'>Do we really want to instruct people how to start a fork of the network?</span>
Starting a parallel `rippled` network is very similar to [running a validator](#running-a-validating-node), with the following exceptions:
1. Stop `rippled` if it is running:
$ sudo service rippled stop
2. Set the validation quorum value to 0 in `rippled.cfg`:
[validation_quorum]
0
3. Start rippled validator as the first node starting at a fresh ledger
$ sudo start-stop-daemon --start --quiet --background -m --pidfile /var/run/rippled.pid --exec /usr/sbin/rippled --chuid rippled --group rippled -- --start --conf /etc/rippled/rippled.cfg
<span class='draft-comment'>(Wasn't there something about nodes accidentally linking up with the production network? What happens if someone adds nodes from both networks in their UNL? etc.)</span>

23
content/rippled-trusted-validator.md
View File

@@ -1,23 +0,0 @@
The purpose of this document is to describe the steps one must perform to become
a trusted validator on Ripple Altnet.
# Vocabulary
- rippled node - A single running instance of rippled
- Validator - A rippled node that validates transactions
- Untrusted validator - A validator that is not included in the UNL of other validators on the network
- Trusted validator - A validator that is included in the UNL of other validators on the network
# Binary installation
This document assumes that you are using Ubuntu 14.04.
1. [Add an untrusted rippled validator to the Altnet](rippled-untrusted-validator.html)
2. ???
Be monitor for trustworthiness?
Add validator's ip and validation public key to core validators
Increase `[validation_quorum]`

71
content/rippled-untrusted-validator.md
View File

@@ -1,71 +0,0 @@
The purpose of this document is to describe the steps one must perform to run
an "untrusted" rippled validator on an existing network.
# Vocabulary
- rippled node - A single running instance of rippled
- Validator - A rippled node that validates transactions
- Untrusted validator - A validator that is not included in the UNL of other validators on the network
# Binary installation
This document assumes that you are using Ubuntu 14.04.
1. [Install & configure a rippled validator](rippled-validator.html)
2. Stop rippled if it is currently running
$ sudo service rippled stop
3. Add core validator IP addresses of the network you want to connect to to rippled.cfg
For example the following IP addresses are the current Altnet core validators:
[ips_fixed]
54.92.66.122 51235
54.67.72.173 51235
52.16.66.76 51235
54.93.66.235 51235
52.74.67.18 51235
52.64.9.71 51235
54.207.20.165 51235
54.172.212.33 51235
52.11.28.194 51235
54.94.245.104 51235
54.65.200.22 51235
52.1.205.132 51235
4. Add core validator validation public keys to rippled.cfg.
For example the following keys are the current Altnet core validators' validation public keys:
[validators]
n9LnZ1AiyHmytkhLUr89dmL76uxZLzzyregvQVZFkVfqEQTCpg7B
n9LJWexXc9wxzUKWZe4faTS4N9DUba3jNsByERZSa8MJc2bhCF7c
n9MnXUt5Qcx3BuBYKJfS4fqSohgkT79NGjXnZeD9joKvP3A5RNGm
n9LxyXSSrTZ482ceep9WGQnT2nknfzFMFgNL4wMjTUn3SfF3rhtS
n9MTPLhEEjxcWHfqsXQhFoSUKaqYvU4E7B4yke39EMFm2DhFr43F
n9Lw3j7THPhKLz2uDqBBWwyxHQC1Foyr3M6JeWCVyu7uhnhL6HA5
n9L2XLFvcdriK34bCNXexzKMVcsZ9i4UG9J4pykR5c3J8gvBB6fw
n9JCK3M4ci7b1XRq2wr1Ckd1HNq3Cg7NWrWiKyzJa4R5J489QGer
n9LXZBs2aBiNsgBkhVJJjDX4xA4DoEBLycF6q8zRhXD1Zu3Kwbe4
n9Kk6U5nSF8EggfmTpMdna96UuXWAVwSsDSXRkXeZ5vLcAFk77tr
n9J1voqeu6iZQiLXaMofLeMbv8mbPskJWGYRtjdo8rmpvNdQRyEn
n9KuCFBLq2GD4vJtoL3tebQJbhcHSd7tMqFM1x9bPK9wSagPJdd1
5. Adjust the validation quorum value in rippled.cfg
This sets the minimum of trusted validations a ledger must have before the server considers it fully validated. Note that if you are validating, your validation counts.
For example a validation quorum for a new Altnet validator could be set to
[validation_quorum]
10
6. Start rippled untrusted validator
$ sudo service rippled start
The new untrusted validator will first sync with the existing network then start proposing and validating new transactions.
See [Creating a Trusted Rippled Validator](rippled-trusted-validator.html) on how to become a trusted validator on the network.

47
content/rippled-validator.md
View File

@@ -1,47 +0,0 @@
The purpose of this document is to describe the steps one must perform to run
a rippled validator that starts from a fresh ledger and is not connected to any existing network.
# Vocabulary
- rippled node - A single running instance of rippled
- Validator - A rippled node that validates transactions
# Binary installation
This document assumes that you are using Ubuntu 14.04.
1. [Install & configure a rippled node](rippled-stock-node.html)
2. Start rippled
$ sudo service rippled start
3. Generate a validator key and save the output
$ rippled --conf /etc/rippled/rippled.cfg -q validation_create
{
"status" : "success",
"validation_key" : "FOLD WERE CHOW WIT SWIM RANK WED DAN LAIN TRIO MURK NELL",
"validation_public_key" : "n9KHn8NfbBsZV5q8bLfS72XyGqwFt5mgoPbcTV4c6qKiuPTAtXYk",
"validation_seed" : "ssdecohJMDPFuUPDkmG1w4objZyp4"
}
4. Stop rippled
$ sudo service rippled stop
5. Add the generated validator signing key from above to rippled.cfg
[validation_seed]
ssdecohJMDPFuUPDkmG1w4objZyp4
6. Add validation quorum value to rippled.cfg
[validation_quorum]
0
7. Start rippled validator as the first node starting at a fresh ledger
$ sudo start-stop-daemon --start --quiet --background -m --pidfile /var/run/rippled.pid --exec /usr/sbin/rippled --chuid rippled --group rippled -- --start --conf /etc/rippled/rippled.cfg
See [Configuring rippled to trust other validators](rippled-untrusted-validator.html) to learn how additional nodes can be added to the new network.

16
content/rippled.md
View File

@@ -2,9 +2,7 @@
The core peer-to-peer server that operates the Ripple Network is called `rippled`. Each `rippled` server connects to the Ripple Network, relays cryptographically signed transactions, and maintains a local copy of the complete shared global ledger. The source code for `rippled` is written in C++, and is [available on GitHub under an open-source license](https://github.com/ripple/rippled).
* [Building from source](https://wiki.ripple.com/Rippled_build_instructions)
* [Installing from precompiled binaries](rippled-stock-node.html)
* [Setting up a validator](rippled-validator.html)
* [`rippled` Setup](rippled-setup.html)
* [API Reference](#api-methods)
* [Transaction Reference](transactions.html)
* Client Library - [Javascript](https://github.com/ripple/ripple-lib)
@@ -28,19 +26,9 @@ https://groups.google.com/forum/#!forum/ripple-server
Before you can run any commands against a `rippled` server, you must know which server you are connecting to. Most servers are configured not to accept requests directly from the outside network.
Alternatively, you can run your own local copy of [`rippled`](https://ripple.com/wiki/Rippled). This is required if you want to access any of the [Admin Commands](#List-of-Admin-Commands). In this case, you should use whatever IP and port you configured the server to bind. (For example, `127.0.0.1:54321`)
Alternatively, you can [run your own local copy of `rippled`](rippled-setup.html). This is required if you want to access any of the [Admin Commands](#List-of-Admin-Commands). In this case, you should use whatever IP and port you configured the server to bind. (For example, `127.0.0.1:54321`)
### Reasons to Run Your Own rippled ###
There are lots of reasons you might want to run your own `rippled` server, but most of them can be summarized as: you can trust your own server, you have control over its workload, and you're not at the mercy of others to decide when and how you can access it.
It is important that you can trust the `rippled` you use, so you can be certain that the software you are running will behave in the manner specified in its source code. Of course, you must also practice good network security to protect your server from malicious hackers. If you connect to a malicious server, there are myriad ways that it can take advantage of you or cause you to lose money. For example:
* A malicious server could report that you were paid when no such payment was made
* It could selectively show or hide payment paths and currency exchange offers to guarantee its own profit while not providing you the best deal
* If you sent it your account's secret, it could make arbitrary transactions on your behalf, and even transfer or destroy all the money in your account's balances.
Additionally, running your own server gives you admin control over it, which allows you to run important admin-only and load-intensive commands. If you use a shared server, you have to worry about other users of the same server competing with you for the server's computing power. Many of the commands in the WebSocket API can put a lot of strain on the server, so `rippled` has the option to scale back its responses when it needs to. If you share a server with others, you may not always get the best results possible.
### WebSocket API ###