Skip to content

Latest commit

 

History

History
556 lines (401 loc) · 15.9 KB

README.md

File metadata and controls

556 lines (401 loc) · 15.9 KB

![Entrust Computer Technology Center]

EquihashNompPool

May 14, 2022

We started signing all commits with our gpg key
Requires node >=v14
use this to install ```nvm install 14```

Stats for single user address are all messed up, I'll be working on it
this week, I hope.

Were still working on upgrading all possible modules to latest if possible
without breaking everything or major changes to code or esm updates.


May 6, 2022
dev branch

Starting to clean up hacked-up js code and extra repositories not needed.


Warning - Grafana Dashboards, prometheus scrapers, and influxdb is not included 
in this repository yet.

Warning - And dont forget this pool is pretty dedicated to Pirate-chain (ARRR), 
however it runs all equihash coins without many of the coin specific features, 
like pricing, "TradeOgre Private Wallet" balances, etc...

Warning - Its a hacked-up piece of nodejs. LOL...  Just a nice warning.

Warning - ALL POOL OPERATERS - Keep an eye on your Redis databases. Look for new 
databases created with 5 ways to download "b.sh" from the bot network. Firewall 
the shit out of this port. And update Redis.

I'll get all the relevant items gathered up into another repository to help others get it all setup. Its a lot of work. I have about 60-80 man hours in it all so far.

It should be usable on any nomp based pool server with api available. there will be new stats api's added specificly for grafana in next few weeks. JSON scrapers dont like the available api much.

[Update 7-19-2021] New updates to dashboard, grafna, infludb, prometheus, and numerous prometheus exporters added

We've been under constant bot attack for last 3 weeks. This was all developed to monitor and ban offending ip bots.

"fail2ban" has been outragously awesome for our site. Every pool should have it running.

Forked from Raven coin Updated to use Equihash

This is a badly hacked version that no one should use without modifications and bug/security checking.

[Setup]

To start, get Ubuntu setup with all desktop functions disabled. You'll have to learn to use vscode w/ssh & Putty.

[Grafana]

Grafana, infludb, prometheus. fail2ban (all servers) should be setup on their own server. We use tiny Lenovo ThinkCentre i5's for the data & grafana server. (16GB ram, 500GB SSD drive, Ubuntu 18 server)

You do not want this on the pool server. The load will be too heavy and cause problems. These i5's can be bought on eBay for $69 stripped, $80 SSD drive, $60 Ram.

On the right worldmap is the BANNED HACKER BOTS, on the left is legit connections, mostly Wallet Node Peers.

Prometheus scrapers provide all the data for the dashboard and are easy to install and configure.

Screenshots

Grafana Stats

Block Explorer

Pool Stats

Block Explorer

[UFW/fail2ban install]

iptables sucks for users "ufw is much easier and it creates the iptable entries for you.

Install "ufw" with apt and enable

sudo apt-get install ufw
ufw allow ssh
ufw enable

sudo apt-get install fail2ban
sudo systemctl enable fail2ban
sudo systemctl start fail2ban

View rules like this:
sudo ufw status numbered

Add rules like this:
sudo ufw insert 2 allow proto tcp from 192.168.2.103 to any port 8443
sudo ufw insert 2 allow proto tcp from 192.168.2.0/24 to any port 9144
sudo ufw insert 2 allow proto tcp from 127.0.0.1 to any port 10853

All outgoing and current ports will still be enabled. make sure to set the ignore * config options for your local network and any ip's you dont want banned.

The previous and following files are located in the ./docs

here.

Setup aggressive firewall rules to ban at 1 probed/scanned non-open port. SSH is automatically setup for you on 3rd bad password

set ban time: 600000 plus minutes or what you want. Should be huge number.

Then, install the follow additional ufw-Aggressive/s-nomp-fail2ban rules, I'll include them in docs also. Set super aggressive.

open these links and follow them.

  1. Thanks to: jasongo https://forum.iredmail.org/topic15982-aggressive-fail2ban-rules-using-ufw.html
  2. Thanks to: Oink70/s-nomp-fail2ban https://github.com/Oink70/s-nomp-fail2ban
Look in ./docs for files I use.

Create /etc/fail2ban/jail.d/ufw-aggressive.local
Create /etc/fail2ban/filter.d/ufw.aggressive.conf

Restart Fail2Ban. In Ubuntu  "service fail2ban restart"

sudo tail -f /var/log/fail2ban.log 	to verify its working.

[Wallet Node installs]

Next, setup Wallet (Pirate, Komodo, zcash) daemons installed and working. Sync or bootstrap them.

Next, install latest versions of all these packages (do not use apt for them)

[Grafana install]

sudo apt-get install -y adduser libfontconfig1
wget https://dl.grafana.com/oss/release/grafana_8.0.6_amd64.deb
sudo dpkg -i grafana_8.0.6_amd64.deb

[prometheus install]

wget https://github.com/prometheus/prometheus/releases/download/v2.0.0/
prometheus-2.0.0.linux-amd64.tar.gz

sudo mkdir /etc/prometheus
sudo mkdir /var/lib/prometheus

sudo useradd --no-create-home --shell /bin/false prome
sudo useradd --no-create-home --shell /bin/false node_exporter

tar xvf prometheus-2.0.0.linux-amd64.tar.gz

sudo cp prometheus-2.0.0.linux-amd64/prometheus /usr/local/bin/
sudo cp prometheus-2.0.0.linux-amd64/promtool /usr/local/bin/

sudo chown prome:prome /usr/local/bin/prometheus
sudo chown prome:prome /usr/local/bin/promtool

sudo cp -r prometheus-2.0.0.linux-amd64/consoles /etc/prometheus
sudo cp -r prometheus-2.0.0.linux-amd64/console_libraries /etc/prometheus

sudo chown -R prome:prome /etc/prometheus/consoles
sudo chown -R prome:prome /etc/prometheus/console_libraries

sudo cp docs/prometheus.yml /etc/prometheus
sudo nano /etc/prometheus/prometheus.yml

configure to your ip's and ports.

Edit for your server ip's or localhost, I'll show how to install all the prometheus exports in this file.

add each prometheus scraper "address:port" to Firewall only local network, in addition to other ports 80,844,22, etc...

 sudo ufw insert 2 allow proto tcp from 192.168.2.103 to any port 8443
 sudo ufw insert 2 allow proto tcp from 192.168.2.0/24 to any port 9144

[Update 5-24-2021]

added: coinbase pro reference btc prices,

added: new charts for network hash & network difficulty

WIP: to get coin switching working again, all the current modules for prices are defuct or not working.

[Update 4-27-2021] I should change my fork to EquiHash Nomp Dashboard. Added about 10 more stats and live balances from exchange. So far using TradeOrgre, but im trying to keep it generic so it works with many exchanges api.

added: node wallet balances added: tradeOgre wallet balances added: tradeOgre BTC converted balances & values

Automated exchange conversion to BTC is next.

[Update 4-21-2021]

Testing Z to Z payments, working for Pirate coin so far. Need to test all parts of payment system now to confirm I didnt break anything on KMD payments.

Im tying to keep this compatible with other nomp forks, new stats and data are appended and previous order not changed, so it should work

but no warranty...

[Update 4-14-2021]

Thanks to the Knomp code i got z_addresses working in authorization, and payments -- I hope.

Added POSIX module and testing usage with root. How can we run as root with PM2 without manually sudo - like at reboot. It must be 100% automatically loaded at reboot --cron - ??

I was having problems with rejected blocks and found my system lagging, and not responding as fast as it should. After disabling all the unused services and background processes I resolved the issue.

Testing the system with only Pirate chain full node wallet running to decrease RPC response times

New items added to dashboard, testing z_transactions, z_ only working for solo mining. Most work focused on stats, dashboard, and bug fixes

This fork is for solo miners that want a full Dashboard to monitor their mining. I'm using the best parts of many forks to get what i personally want for a large screen/format Dashboard for our 65" display at Entrust's office.

Im still hacking away and adding features and stats. the code is a mess for now, but works great on Komodo as my own pool. no z_ transactions yet so use it for solo mining only on those coins. Just got zen full node wallet synced today and seems to work fine for Horizen.

Changing UI to dark theme. More to come in next few days as i work on mor important items.

I use webworker's stratum-pool package/

The raven repository wasn't setup for sheilded coins, so it might take lots to get working, help would be appreciated. paymentProcessor.js needs to be reworked.


Screenshots

Pool Charts

Block Explorer

Worker Stats

Block Explorer

Miner Wallets

Miner's Wallets

Miners

Miner's Wallets


Node Open Mining Portal consists of 3 main modules:

Project Link
EasyNOMP https://github.com/EasyX-Community/EasyNOMP
[Stratum Pool] https://github.com/webworker01/node-stratum-pool.git

Requirements

NOTE: These requirements will be installed in the install section!

  • Ubuntu Server 18.04.* LTS
  • Coin daemon
  • Node Version Manager
  • Node 10
  • Process Manager 2 / pm2
  • Redis Server
  • ntp

Install Pool

sudo apt install git -y
cd ~
git clone https://github.com/49handyman/equihashnomppool.git
cd EasyEquihashNomp/
npm install
npm start

Configure Pool

Change "stratumHost": "192.168.0.200", to your IP or DNS in file config.json:

cd ~/equihashnomppool
nano config.json
{
    
    "poolname": "Entrust Private Pool",
    
    "devmode": false,
    "devmodePayMinimim": 0.25,
    "devmodePayInterval": 120,
    
    "logips": true,       
    "anonymizeips": true,
    "ipv4bits": 16,
    "ipv6bits": 16,
    
     "defaultCoin": "komodo",
    
    "poollogo": "/static/icons/entrustcircle.png",
    
    "discordtwitterfacebook": "",
    
    "pagetitle": "Entrust Private Coin Pool - 0% Fees",
    "pageauthor": "My Name Is...",
    "pagedesc": "A reliable, low fee, easy to use mining pool for cryptocurrency! No matter your experience with mining cryptocurrency, we make it easy! Get started mining today!",
    "pagekeywds": "equihash,komodo,pirate,zec,zen,GPU,CPU,Hash,Hashrate,Cryptocurrency,Crypto,Mining,Pool,Bitcoin,,Easy,Simple,How,To",

    "btcdonations": "",
    "ltcdonations": "",
    "ethdonations": "",
    "etcdonations": "",

    "logger" : {
        "level" : "debug",
        "file" : "logs/nomp_debug.log"
    },

    "cliHost": "127.0.0.1",
    "cliPort": 17117,

    "clustering": {
        "enabled": false,
        "forks": "auto"
    },

    "defaultPoolConfigs": {
        "blockRefreshInterval": 0,
        "jobRebroadcastTimeout": 55,
        "connectionTimeout": 600,
        "emitInvalidBlockHashes": false,
        "validateWorkerUsername": true,
        "tcpProxyProtocol": false,
        "banning": {
            "enabled": true,
            "time": 600,
            "invalidPercent": 50,
            "checkThreshold": 500,
            "purgeInterval": 300
        },
        "redis": {
            "host": "127.0.0.1",
            "port": 6379
        }
    },

    "website": {
        "enabled": true,
        "sslenabled": false,
        "sslforced": false,
        "host": "0.0.0.0",
        "port": 8081,
        "sslport": 8443,
        "sslkey": "certs/privkey.pem",
        "sslcert": "certs/fullchain.pem",
        "stratumHost": "192.168.0.200",
        "stats": {
            "updateInterval": 5,
            "historicalRetention": 43200,
            "hashrateWindow": 600
        },
        "adminCenter": {
            "enabled": false,
            "password": "NOT_WORKING_YET_:P_LESHACAT_CAN_DO_ADMIN_PANEL_FUNCTIONALITY_TOO"
        }
    },

    "redis": {
        "host": "127.0.0.1",
        "port": 6379
    },

    "switching": {
        "switch1": {
            "enabled": false,
            "algorithm": "sha256",
            "ports": {
                "3333": {
                    "diff": 10,
                    "varDiff": {
                        "minDiff": 16,
                        "maxDiff": 512,
                        "targetTime": 15,
                        "retargetTime": 90,
                        "variancePercent": 30
                    }
                }
            }
        },
        "switch2": {
            "enabled": false,
            "algorithm": "scrypt",
            "ports": {
                "4444": {
                    "diff": 10,
                    "varDiff": {
                        "minDiff": 16,
                        "maxDiff": 512,
                        "targetTime": 15,
                        "retargetTime": 90,
                        "variancePercent": 30
                    }
                }
            }
        },
        "switch3": {
            "enabled": false,
            "algorithm": "x11",
            "ports": {
                "5555": {
                    "diff": 0.001,
                    "varDiff": {
                        "minDiff": 0.001,
                        "maxDiff": 1, 
                        "targetTime": 15, 
                        "retargetTime": 60, 
                        "variancePercent": 30 
                    }
                }
            }
        }
    },

    "profitSwitch": {
        "enabled": false,
        "updateInterval": 600,
        "depth": 0.90,
        "usePoloniex": true,
        "useCryptsy": true,
        "useMintpal": true,
        "useBittrex": true
    }

}

Change "address": "RKopFydExeQXSZZiSTtg66sRAWvMzFReUj", to your pool created wallet address in file KMD.json:

cd ~/equihashnomppool/pool_configs/KMD.json
{
    "enabled": true,
    "coin": "KMD.json",

    "address": "RKopFydExeQXSZZiSTtg66sRAWvMzFReUj",
    
    "donateaddress": "",

    "rewardRecipients": {
        
    },

    "paymentProcessing": {
        "enabled": true,
        "schema": "PROP",
        "paymentInterval": 300,
        "minimumPayment": 0.25,
        "maxBlocksPerPayment": 10,
        "minConf": 30,
        "coinPrecision": 8,
        "daemon": {
            "host": "127.0.0.1",
            "port": 17117,
            "user": "user1",
            "password": "pass1"
        }
    },

    "ports": {
	"3338": {
            "diff": 70,
    	    "varDiff": {
    	        "minDiff": 60,
    	        "maxDiff": 9999,
    	        "targetTime": 10,
    	        "retargetTime": 60,
    	        "variancePercent": 30,
    		    "maxJump": 25
    	    }
        }
       
    },

    "daemons": [
        {
            "host": "127.0.0.1",
            "port": 8766,
            "user": "user1",
            "password": "pass1"
        }
    ],

    "p2p": {
        "enabled": true,
        "host": "127.0.0.1",
        "port": 7771,
        "disableTransactions": true
    },

    "mposMode": {
        "enabled": false,
        "host": "127.0.0.1",
        "port": 3306,
        "user": "me",
        "password": "mypass",
        "database": "ltc",
        "checkPassword": true,
        "autoCreateWorker": false
    },

    "mongoMode": {
        "enabled": false,
        "host": "127.0.0.1",
        "user": "",
        "pass": "",
        "database": "ltc",
        "authMechanism": "DEFAULT"
    }

}

Run Pool

cd ~/equihashnomppool
npm start

Donates for developers easyNOMP

BTC: 18TmiWzbMLyf7MvQMcNWh3hUBVrxBgzrWi

LTC: LX1fUwLVcAaRXvP67ZcqUvjjteaKx1nAvL

ETH/ERC20: 0x52fD0B6847E1D3cEc5600359f24d671FdE2Bc65B


equihashnomppool