Follow all steps from common.md.
[deployment/ansible/inventory/group_vars/all.yml]
type_name: "VN"
...[deployment/ansible/inventory/hosts.yml]
all:
...
children:
...
validators:
hosts:
<validator node IP address or hostname>
...[deployment/ansible/roles/configure/vars/validator.yml]
config:
p2p:
persistent_peers: "<node1-ID>@<node1-IP>:26656,..."
...persistent_peers value:
- If your VN doesn't use any Private Sentry nodes, then the
persistent_peersfield must point to other orgs' validator/sentry nodes with public IPs.
Fortestnet-2.0ormain-netthepersistent_peersstring can be get from the CSA slack channel. - If Private Sentry Nodes are used, then it must point to
Private Sentrynodes with private IPs. - Use the following command to get
node-IDof a node:./dcld tendermint show-node-id.
4. (Optional) If you are joining a long-running network, enable statesync or use one of the options in running-node-in-existing-network.md
[deployment/ansible/roles/configure/vars/validator.yml]
config:
...
statesync:
enable: true
rpc_servers: "http(s):<node1-IP>:26657, ..."
trust_height: <trust-height>
trust_hash: "<trust-hash>"
...NOTE: You should provide at least 2 addresses for
rpc_servers. It can be 2 identical addresses
You can use the following command to obtain <trust-height> and <trust-hash> of your network
curl -s http(s)://<host>:<port>/commit | jq "{height: .result.signed_header.header.height, hash: .result.signed_header.commit.block_id.hash}"Example for Testnet 2.0 (clickable)
curl -s https://on.test-net.dcl.csa-iot.org:26657/commit | jq "{height: .result.signed_header.header.height, hash: .result.signed_header.commit.block_id.hash}"Example for Mainnet (clickable)
curl -s https://on.dcl.csa-iot.org:26657/commit | jq "{height: .result.signed_header.header.height, hash: .result.signed_header.commit.block_id.hash}"<host>- RPC endpoint host of the network being joined<port>- RPC endpoint port of the network being joined
NOTE: State sync is not attempted if the node has any local state (LastBlockHeight > 0)
ansible-playbook -i ./deployment/ansible/inventory -u <target-host-ssh-user> ./deployment/ansible/deploy.yml<target-host-ssh-username>- target host ssh user- Ansible provisioning can take several minutes depending on number of nodes being provisioned
sudo su -s /bin/bash cosmovisordcld statussudo su -s /bin/bash cosmovisordcld keys add "<admin-account-name>" 2>&1 | tee "<admin-account-name>.dclkey.data"IMPORTANT keep generated data (especially the mnemonic) securely.
address and pubkey can be found using
dcld keys show --output text "<admin-account-name>"-
Make sure the Node Admin account is proposed by a Trustee (usually CSA). The account will appear in the "Accounts" / "All Proposed Accounts" tab in DCL Web UI
- https://testnet.iotledger.io (for
testnet-2.0) - https://webui.dcl.csa-iot.org (for
main-net)
- https://testnet.iotledger.io (for
-
Make sure that the proposed account is approved by at least 2/3 of Trustees. The account must disappear from the "Accounts" / "All Proposed Accounts" tab in Web UI, and appear in "Accounts" / "All Active Accounts" tab.
dcld query auth account --address="<address>"
dcld tx validator add-node --pubkey="<protobuf JSON encoded validator-pubkey>" --moniker="<node-name>" --from="<admin-account-name>"Note: Get
<protobuf JSON encoded validator-pubkey>usingdcld tendermint show-validatorcommand
(once transaction is successfully written you should see "code": 0 in the JSON output.)
dcld query tendermint-validator-set must contain the VN's address
Note: Get your VN's address using
dcld tendermint show-addresscommand.