How to start the client Nodes including Setup for Nodes
SSH into the node system and run
rudl-project
cd /root/
cat <plainPassword> > node_client_secret
docker swarm init
cat node_client_secret | docker secret create node_client_secret -
curl -o rudl-node-stack.yml https://raw.githubusercontent.com/rudl-project/rudl.infracamp.org/main/docs/setup/node/rudl-node-stack.yml
Edit the rudl-node-stack.yml file
Then run the stack
docker stack deploy -c rudl-node-stack.yml rudl
Base Install Ubuntu 26.04 - then login via root password.
Create a new User to login via ssh:
apt install vim
update-alternatives --config editor ## Set Edtior to vim.basic
echo "set mouse=" > ~/.vimrc ## Disable mouse support for vim
sudo adduser $NEW_USER_NAME
sudo usermod -aG sudo $NEW_USER_NAME
Then add [new_user_name] ALL=(ALL) NOPASSWD:ALL to visudo -f /etc/sudoers.d/nopasswd to allow passwordless sudo bash
Edit /etc/hosts and set the hostname and shortcut than run
hostnamectl set-hostname <new-fqdn>
If you want to server DNS Server on the host, you have to disable the Stub-Listener:
# /etc/systemd/resolved.conf
[Resolve]
DNSStubListener=no
``
### Allow SSH Public Key Login for User
Run and login to new maschine from your workstation to set the SSH Key. Make sure login and sudo bash works.
```bash
ssh-copy-id [new_user_name]@host
Edit /etc/ssh/sshd_config
[new_user_name] ALL=(ALL) NOPASSWD:ALL
sudo rm /etc/ssh/sshd_config.d/permit_root.conf
sudo bash -c 'cat > /etc/ssh/sshd_config.d/hardened.conf <<EOF
PermitRootLogin no
PasswordAuthentication no
PubkeyAuthentication yes
ChallengeResponseAuthentication no
UsePAM yes
PermitEmptyPasswords no
MaxAuthTries 3
PerSourceMaxStartups 3
PerSourcePenalties authfail:300
Banner none
DebianBanner no
EOF'
Using nftables add nftables.conf to /etc/nftables.conf and aktivate
the Firewall by running
sudo systemctl enable nftables
sudo nft -f /etc/nftables.conf
sudo nft list ruleset