I have set up a preprod testing pool (NSPPP) with p2p network. It seems running fine. To my surprise, though, I found the producer node has many peers. ( See screenshot attached.) Specifically it has 20 hot peers, 50 outgoing and 1 incoming!
Shouldn’t it only have 1 connection to the relay node? Did I configure it wrong?
Below is my topology for producer and relay. Thanks!
It is no problem to leave your block producer in P2P mode and there may be some advantages in doing so. For example, the duplex connections that P2P mode enables may be preferable???
You simply need to ensure your block producer doesn’t seek other relays to connect with other than your local peers (your relays). Just tell it not to use the ledger to look for other peers.
Delete the line: “useLedgerAfterSlot”.
Then when you start your node ensure you see a log like this:
Jul 18 08:17:01 cardano-node[85210]: Don't use ledger to get root peers.
You can (maybe should) also set how many peers your node will attempt to maintain in your config file (mainnet-config.json):
I have my bp config set to seek 5 peers because I have up to 5 relays. If you only want to rely on 1 relay then you can set these values to 1. Though, you might want to setup another relay, even if it is behind a firewall, only known to you, and not registered on-chain.
Note: You can have a relay running behind a firewall (which blocks all incoming ports) and this relay can still enable blocks to be pulled from it by external relays. This is because this relay can initially set up half duplex connections outwards to external relays and then these can be later upgraded to full duplex if the other external relays are also running in P2P mode. You effectively had your block producer running this way due to the “useLedgerAfterSlot” line you had in your topology file.
I had a similar issue so I kept my BP in Non-p2p mode. I have followed your directions and I am in p2p on relays and BP now. Thanks for the detailed response.
After 30hrs of running, it has set up 50 outgoing connections and 9 of these have been upgraded to duplex. These duplex connections will allow the other end to pull blocks from this hidden relay.
I have set up the relay node in p2p mode while leaving producer node with static topology. I have set them to run in mainnet for 3 days now. Everything seems fine except that there is still no TX recorded. Is this normal?
Right now, I have followed @token and @Terminada advice and enabled P2P for block producer node as well. I also added ““useLedgerAfterSlot”: 79387772” to relay’s topology json file. It has been up for about 10 hours now. Still no TX.
Are the relay and bp on the same network?
Does your firewall (UFW) allow node ports?
I have a relay and bp on the same network. For that I use Tailscale:
It can be easily installed on both relay and bp. It does not need further firewall settings. Then, you
check their new Tailscale IPs and modify both topology files. Finally, restart the nodes
BTW, I should mention that my relay node and producer node are behind NAT. I have not registered the pool or set up port forwarding yet. As such, I only have 1 incoming connection to the relay node (from my own producer node).
Could this be the reason for relay node not seeing any TX? It shouldn’t though, at least with earlier versions of Cardano and without P2P.
@token I don’t know why you keep recommending tailscale. Are you affiliated with the project in some way?
On their website they make lots of comments about how they love open source, but then they say this:
A closed source coordination server.
I don’t know what this coordination server is used for but it sounds like, well, “coordination”. So to me this means you are sending your meta data about which end points you are communicating with to their “coordination server”.
Consequently I thought it necessary to add this post so that anyone reading might think twice.
You don’t need to do that with wireguard which is what Tailscale is using under the hood. It might be better to invest the time to get wireguard working properly because it is a fantastic tool that works flawlessly and then you don’t need to send your private metadata to someone you don’t know.
It might be true that tailscale is easier. It is also easier to leave your money in a TradFi bank and outsource the control over your money.
I don’t think we want to encourage SPOs to outsource any control over their servers. These guys are running the Cardano network.
If you want wireguard VPN features then just use wireguard. It is fully open source, easy to use, and doesn’t require any “closed source coordination server”.
OK. To prove my sanity, I have disabled P2P and reverted back to the clio.one ping/pull style. Sure enough, only after a few hours my nodes start to see incoming TXs.
After looking at the whole issue again, here is my hypothesis. Please confirm or rebut.
My pool is not registered yet and relay node is behind NAT. As a result its public IP/port are not published in ledger. Nor can they be discovered automatically. Consequently when P2P is enabled, I think that is the reason why there is only 1 incoming connection as shown by gLiveview. (my own producer node)
With P2P disabled, my relay node IP/ports are registered with clio.one server. Pretty soon clio.one server will tell other relay node and I start to see incoming connections reach 2.
It seems only when my relay node has external incoming connections (other than my own producer node obviously), relay node starts to see TXs.
Can anyone confirm this? This might be a bug somewhere…
BTW It is confusing to see all the different p2p listings in gLiveview, including incoming, outgoing, uni-dir, bi-dir, duplex. Is there an explanation somewhere?
Another BTW, I will switch back to P2P right now for more testing. My predication is that, since I already registered with clio.one server, this time I should see more than 1 incoming connections even with P2P enabled and I should see TX.
