In the coming days I will be setting up my core nodes in separate machines and have them talk to my relay nodes and wanted to see if you guys have any efficient frameworks on:
- keys and key management (cold/hot)
- server/network security
I know the p2p layer isn’t out yet but it is my understanding that your core nodes will have to have public IP addresses to talk to your relay nodes. Moreover, your relay nodes will contain the ip addresses of your core nodes, which means a security breach on a relay node reveals the critical info about your core node–> opens it to attacks.
What steps do you take to protect your core nodes from such breaches?
Overall, I would like to start with the right architecture/structure and approach to node management that would allow me the most flexibility and reduce the need to spend hours changing scripts, files, etc. when system parameters change or when I need to make changes to the node.