Install IOTA-Core using Docker
This article guides the recommended setup to run an IOTA-Core node. It includes everything required to set up a public node accessible by wallets and applications:
- IOTA-core
- Traefik - Reverse proxy using SSL certificates to secure access to the node API and dashboard.
- Prometheus - Metrics scraper configured to collect all metrics from IOTA-Core and INX extensions.
- Grafana - Data visualizer that can be used to display the metrics collected by Prometheus.
- inx-dashboard - Node dashboard.
- inx-indexer - Indexer extension for wallets and applications.
- inx-mqtt - MQTT extension providing the Event API.
Requirements
- A recent release of Docker enterprise or community edition. Avoid using the Docker version shipped with your OS since these are mostly out of date. You can find installation instructions in the official Docker documentation.
- Docker Compose CLI plugin.
- A registered domain name pointing to the public IP address of your server. (optional if not using HTTPS)
- Opening up the following ports in your server's firewall:
15600 TCP
- Used for IOTA-Core gossip.80 TCP
- Used for HTTP. (can be changed, see below)443 TCP
- Used for HTTPS. (optional if not using HTTPS)
- curl.
Download the latest release
The commands assume you are using Linux.
Once you have completed all the installation requirements, you can download one of the latest releases, depending on the network you want to join, by running the following command:
TODO: Replace with link to iota2 node docker setup.
mkdir node-docker-setup && cd node-docker-setup && curl -L https://node-docker-setup.iota.org/testnet | tar -zx
Prepare
The commands assume you are using Linux.
1. Generate dashboard credentials
To access your IOTA-Core dashboard, you need to configure credentials. Run the following command to generate a password hash and salt for the dashboard:
docker compose run iota-core tools pwd-hash
Copy the output of the command for the next step.
2. Setup your Environment
Copy the env_template
file to .env
using the following command:
cp env_template .env
Modify the .env
file to fit your needs with the editor of your choice.
We are using nano
in the following example:
nano .env
Follow the instructions provided in the file.
With nano
, you can save your changes and exit the editor using CTRL+O
and CTRL+X
.
You can configure your node to either use HTTP or HTTPS. For publicly exposed nodes, we heavily recommend using HTTPS.
loading...
3. Setup neighbors
Add your IOTA-Core neighbor addresses to the peering.json
file.
This step is recommended but optional if you are using autopeering.
4. Create the data
folder
All files used by IOTA-Core, the INX extensions, Traefik & co will be stored in a directory called data
.
Docker image runs under user with user id 65532
and group id 65532
, so this directory needs to have the correct permissions to be accessed by the containers.
To create this directory with correct permissions, run the contained script:
./prepare_docker.sh
Run
Starting the node
You can start IOTA-Core node and INX extensions by running:
docker compose up -d
-d
Instructs Docker to start the containers in the background.
HTTPS
After starting the node, you will be able to access your services at the following endpoints:
- API:
https://node.your-domain.com/api/routes
- IOTA-Core Dashboard:
https://node.your-domain.com/dashboard
- Grafana:
https://node.your-domain.com/grafana
(optional if using "monitoring" profile)
After starting your node for the first time, please change the default grafana credentials.
User: admin
Password: admin
You can configure your wallet software to use https://node.your-domain.com
.
HTTP
After starting the node, you will be able to access your services at the following endpoints:
- API:
http://localhost/api/routes
- IOTA-Core Dashboard:
http://localhost/dashboard
- Grafana:
http://localhost/grafana
(optional if using "monitoring" profile)
If you changed the default HTTP_PORT
value, you must add the port to the URLs.
You can configure your wallet software to use http://localhost
.
Displaying Log Output
You can display IOTA-Core logs by running:
docker compose logs -f iota-core
-f
Instructs Docker to continue displaying the log tostdout
until CTRL+C is pressed.
Stopping the node
You can stop the IOTA-Core node and INX extensions by running:
docker compose down
Tools
To access IOTA-Core tools, you can use the following command:
docker compose run iota-core tool <tool-name>
To see the list of tools included run the following:
docker compose run iota-core tool -h
JWT Auth
To generate a JWT token to be used to access protected routes, you can run the following:
docker compose run iota-core tool jwt-api --databasePath data/p2pstore
- If you changed the
restAPI.jwtAuth.salt
value in theconfig.json
, then you need to pass that value as a parameter as--salt <restAPI.jwtAuth.salt value from your config.json>
.
INX
This setup includes the INX extensions listed at the beginning of this guide.
If you want to disable certain extensions, you can comment out the different services in the docker-compose.yml
file and restart the node.
More Information
You can find more information in the GitHub repository