The next tool is primarily used to manage your relay fleet, but it is also used to configure Network Next and generate keypairs, and to select between local, dev, staging and production environments.
You can get a quick overview of commands available to you by just typing next at the root directory of the code repository:
gaffer@batman next % next
Network Next Operator Tool
USAGE
next <subcommand>
SUBCOMMANDS
keygen Generate new keypairs for network next
config Configure network next
secrets Zip up secrets directory
select Select environment to use (local|dev|staging|prod)
env Display environment
ping Ping the REST API in the current environment
database Update local database.bin from the current environment Postgres DB and print it
commit Commit the local database.bin to the current environment runtime (server and relay backends)
relays List relays in the current environment
datacenters List datacenters in the current environment
ssh SSH into the specified relay(s)
logs View the journalctl log for a relay
setup Setup the specified relay(s)
start Start the specified relay(s)
stop Stop the specified relay(s)
load Load the specific relay binary version onto one or more relays
upgrade Upgrade the specified relay(s)
reboot Reboot the specified relay(s)
cost Get cost matrix from current environment
optimize Optimize cost matrix into a route matrix
analyze Analyze route matrix from optimize
routes Print list of routes from one relay to anotherThis command generates new keypairs for Network Next. Please run this only once during setup. If you run it again and say "yes" to the prompt, it will overwrite your existing keypairs, and you will completely lose access to any Network Next instances you have created.
This command reads in config.json and updates files in the source code repository with your configuration. It also updates the configuration for various sellers like google, amazon and akamai, and updates the terraform files with the latest complete set of datacenters for each seller.
It's safe to call this whenever you want. It's not destructive like next keygen.
Zips up your ~/secrets directory and writes it to ~/next/secrets.tar.gz
Call this during initial setup and anytime when your secrets change and you need to upload them to semaphore ci.
Selects the current Network Next environment.
Valid environments include:
- local
- dev
- staging
- prod
Example:
next select prod
Prints out information about the currently selected environment.
Example:
gaffer@macbook next % next env
[dev]
+ API URL = https://api-dev.virtualgo.net
+ Portal API Key = eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhZG1pbiI6ZmFsc2UsInBvcnRhbCI6dHJ1ZSwiaXNzIjoibmV4dCBrZXlnZW4iLCJpYXQiOjE3MDExNTc5NjN9.hnXL5hXnytNUBvGI_xkxiuPYmAzwiPYR_usBQ-xrm90
+ VPN Address = 45.79.157.168
+ SSH Key File = ~/secrets/next_ssh
+ Relay Backend URL = https://relay-dev.virtualgo.net
+ Relay Backend Public Key = bKjCNngZ1H+XJppN6MymZ9UoTgewgOsLeAMAOiiWuws=
+ Relay Artifacts Bucket Name = helsinki_network_next_relay_artifacts
+ Raspberry Backend URL = https://raspberry-dev.virtualgo.netPings the currently selected environment and prints a pong response. Use this to verify that the REST API is up and running for the current environment, and at which tag.
Example:
gaffer@macbook next % next ping
pong [dev-674]
Downloads the contents of the postgres database for the currently selected environment and saves it to database.bin
It also prints out the complete contents of the database. So if you want to inspect what is in the postgres database, run this command:
gaffer@macbook next % next database
downloading database.bin from Postgres SQL instance
Headers:
┌──────────────────┬────────────────────────────────────────┐
│ Creator │ CreationTime │
├──────────────────┼────────────────────────────────────────┤
│ extract_database │ Thursday 30 November 2023 13:46:45 UTC │
└──────────────────┴────────────────────────────────────────┘
Buyers:
┌───────────┬──────────────────┬──────┬───────┬──────────────────────────────────────────────────────────┐
│ Name │ Id │ Live │ Debug │ PublicKeyBase64 │
├───────────┼──────────────────┼──────┼───────┼──────────────────────────────────────────────────────────┤
│ Raspberry │ bcb85f5e6e1c05fc │ true │ true │ /AUcbl5fuLxmPYEjtjBbVFnPJDlUuWrcntrVL5na6NsYzP2lsoOR5A== │
│ Test │ 74004ae334c6acf6 │ true │ true │ 9qzGNONKAHTBaPsm+b9pPUgEvekv3iKZBdXJt7eSBePFkeWtoxpGig== │
└───────────┴──────────────────┴──────┴───────┴──────────────────────────────────────────────────────────┘
Sellers:
┌────────┬────┐
│ Name │ Id │
├────────┼────┤
│ Google │ 1 │
│ Akamai │ 2 │
│ Amazon │ 3 │
└────────┴────┘
etc...
Commits the local database.bin to the currently selected environment runtime.
Typical usage is:
next database
next commit... after any changes have been made to the postgres database via terraform.
Displays the set of relays in the current environment:
gaffer@macbook next % next relays
┌──────────────────────┬───────────────────────┬──────────────────┬────────┬────────┬──────────┬─────────┐
│ Name │ PublicAddress │ Id │ Status │ Uptime │ Sessions │ Version │
├──────────────────────┼───────────────────────┼──────────────────┼────────┼────────┼──────────┼─────────┤
│ google.iowa.2 │ 34.27.134.240:40000 │ 4d1e4c14ead5399f │ online │ 2d │ 87 │ 1.0.0 │
│ google.iowa.3 │ 34.67.226.145:40000 │ eeb892f0e5987cab │ online │ 2d │ 77 │ 1.0.0 │
│ google.iowa.1 │ 34.70.248.202:40000 │ 415a4b04c11869d3 │ online │ 2d │ 73 │ 1.0.0 │
│ amazon.virginia.2 │ 52.91.235.169:40000 │ 58fc285691a56bdc │ online │ 2d │ 59 │ 1.0.0 │
│ amazon.virginia.1 │ 3.219.234.25:40000 │ cb63819eeb3c55b4 │ online │ 2d │ 55 │ 1.0.0 │
│ google.virginia.1 │ 34.48.60.13:40000 │ 190eb911aab75ecc │ online │ 2d │ 39 │ 1.0.0 │
│ google.virginia.2 │ 34.86.70.97:40000 │ 829e7cc3362f7fed │ online │ 2d │ 38 │ 1.0.0 │
│ google.virginia.3 │ 34.86.226.87:40000 │ e6fdc3f2691ae06b │ online │ 2d │ 26 │ 1.0.0 │
│ google.ohio.1 │ 34.162.208.240:40000 │ d4704315a3524a49 │ online │ 2d │ 22 │ 1.0.0 │
│ google.iowa.6 │ 104.197.125.59:40000 │ 16dc95a70f52f5d │ online │ 2d │ 13 │ 1.0.0 │
│ amazon.ohio.1 │ 18.227.209.61:40000 │ 80edbdd686d730e9 │ online │ 2d │ 11 │ 1.0.0 │
│ amazon.ohio.2 │ 3.12.111.230:40000 │ f5114d3661b34651 │ online │ 2d │ 7 │ 1.0.0 │
│ akamai.newyork │ 45.79.181.218:40000 │ be6dbe8727a1edf9 │ online │ 2d │ 6 │ 1.0.0 │
│ google.ohio.2 │ 34.162.226.25:40000 │ 419a50f5f7e1c9a0 │ online │ 2d │ 5 │ 1.0.0 │
│ google.ohio.3 │ 34.162.227.168:40000 │ 257d19a147ec3d1 │ online │ 2d │ 4 │ 1.0.0 │
│ akamai.frankfurt │ 172.105.66.56:40000 │ 1d9ec868ccbfa402 │ online │ 2d │ 0 │ 1.0.0 │
│ akamai.london │ 213.168.248.111:40000 │ 27e4be28dc29e16f │ online │ 2d │ 0 │ 1.0.0 │
│ amazon.stockholm.1 │ 16.171.55.52:40000 │ 3c8715c652e415a4 │ online │ 2d │ 0 │ 1.0.0 │
│ amazon.stockholm.2 │ 16.171.230.198:40000 │ 53f5cf9f09b92256 │ online │ 2d │ 0 │ 1.0.0 │
│ amazon.stockholm.3 │ 16.16.107.28:40000 │ 928894bc0d909d9f │ online │ 2d │ 0 │ 1.0.0 │
│ google.finland.1 │ 34.88.17.12:40000 │ 9c646938f1aab47d │ online │ 2d │ 0 │ 1.0.0 │
│ google.finland.2 │ 35.228.232.136:40000 │ 44ca7d086dd5e8a8 │ online │ 2d │ 0 │ 1.0.0 │
│ google.finland.3 │ 34.88.20.86:40000 │ f3447a6ba05317ba │ online │ 2d │ 0 │ 1.0.0 │
│ google.frankfurt.1 │ 34.159.182.25:40000 │ da0d00aca0b7bc17 │ online │ 2d │ 0 │ 1.0.0 │
│ google.frankfurt.2 │ 35.246.166.104:40000 │ 4da037d5c86df659 │ online │ 2d │ 0 │ 1.0.0 │
│ google.frankfurt.3 │ 35.198.159.40:40000 │ f9965823aa737ac2 │ online │ 2d │ 0 │ 1.0.0 │
│ google.london.1 │ 34.105.217.183:40000 │ 8bcbf1a45c56752 │ online │ 2d │ 0 │ 1.0.0 │
│ google.london.2 │ 34.39.5.91:40000 │ bf2db1aeab1c21e9 │ online │ 2d │ 0 │ 1.0.0 │
│ google.london.3 │ 35.246.125.202:40000 │ 5b686bad4600e94f │ online │ 2d │ 0 │ 1.0.0 │
│ google.netherlands.1 │ 34.141.152.221:40000 │ 9a59e55a442d55 │ online │ 2d │ 0 │ 1.0.0 │
│ google.netherlands.2 │ 35.234.166.43:40000 │ 5d35faefa1beffb0 │ online │ 2d │ 0 │ 1.0.0 │
│ google.netherlands.3 │ 35.204.240.65:40000 │ a88bfe2e3ccae516 │ online │ 2d │ 0 │ 1.0.0 │
└──────────────────────┴───────────────────────┴──────────────────┴────────┴────────┴──────────┴─────────┘
You can also pass in a pattern, and it will print only relays matching that regex:
gaffer@batman next % next relays akamai
┌──────────────────┬───────────────────────┬──────────────────┬────────┬────────┬──────────┬─────────────┐
│ Name │ PublicAddress │ Id │ Status │ Uptime │ Sessions │ Version │
├──────────────────┼───────────────────────┼──────────────────┼────────┼────────┼──────────┼─────────────┤
│ akamai.newyork │ 50.116.55.244:40000 │ 95d452eef2604bc4 │ online │ 1d │ 9 │ relay-debug │
│ akamai.frankfurt │ 170.187.190.118:40000 │ c223d2eb62b013f5 │ online │ 22h │ 0 │ relay-debug │
│ akamai.london │ 212.71.249.92:40000 │ 33cf1e5d5af28532 │ online │ 22h │ 0 │ relay-debug │
└──────────────────┴───────────────────────┴──────────────────┴────────┴────────┴──────────┴─────────────┘Displays the set of datacenters in the current environment:
gaffer@batman next % next datacenters
┌────────────────────────────┬────────────────────────────────────────┬──────────┬───────────┐
│ Name │ Native │ Latitude │ Longitude │
├────────────────────────────┼────────────────────────────────────────┼──────────┼───────────┤
│ akamai.atlanta │ us-southeast │ 33.75 │ -84.39 │
│ akamai.dallas │ us-central │ 32.78 │ -96.8 │
│ akamai.frankfurt │ eu-central │ 50.11 │ 8.68 │
│ akamai.fremont │ us-west │ 37.55 │ -121.99 │
│ akamai.london │ eu-west │ 51.51 │ -0.13 │
│ akamai.mumbai │ ap-west │ 19.08 │ 72.88 │
│ akamai.newyork │ us-east │ 40.71 │ -74.01 │
│ akamai.singapore │ ap-south │ 1.35 │ 103.82 │
│ akamai.sydney │ ap-southeast │ -33.87 │ 151.21 │
│ akamai.toronto │ ca-central │ 43.65 │ -79.38 │
│ amazon.atlanta.1 │ use1-atl1-az1 (us-east-1-atl-1a) │ 33.75 │ -84.39 │
│ amazon.bahrain.1 │ mes1-az1 (me-south-1a) │ 26.07 │ 50.56 │
│ amazon.bahrain.2 │ mes1-az2 (me-south-1b) │ 26.07 │ 50.56 │
│ amazon.bahrain.3 │ mes1-az3 (me-south-1c) │ 26.07 │ 50.56 │
│ amazon.bangkok.1 │ apse1-bkk1-az1 (ap-southeast-1-bkk-1a) │ 13.76 │ 100.5 │
│ amazon.boston.1 │ use1-bos1-az1 (us-east-1-bos-1a) │ 42.36 │ -71.06 │
│ amazon.buenosaires.1 │ use1-bue1-az1 (us-east-1-bue-1a) │ -34.6 │ -58.38 │
etc...You can also pass in a pattern, and it will print only relays matching that regex:
gaffer@batman next % next datacenters akamai
┌──────────────────┬──────────────┬──────────┬───────────┐
│ Name │ Native │ Latitude │ Longitude │
├──────────────────┼──────────────┼──────────┼───────────┤
│ akamai.atlanta │ us-southeast │ 33.75 │ -84.39 │
│ akamai.dallas │ us-central │ 32.78 │ -96.8 │
│ akamai.frankfurt │ eu-central │ 50.11 │ 8.68 │
│ akamai.fremont │ us-west │ 37.55 │ -121.99 │
│ akamai.london │ eu-west │ 51.51 │ -0.13 │
│ akamai.mumbai │ ap-west │ 19.08 │ 72.88 │
│ akamai.newyork │ us-east │ 40.71 │ -74.01 │
│ akamai.singapore │ ap-south │ 1.35 │ 103.82 │
│ akamai.sydney │ ap-southeast │ -33.87 │ 151.21 │
│ akamai.toronto │ ca-central │ 43.65 │ -79.38 │
└──────────────────┴──────────────┴──────────┴───────────┘If your pattern is a location, the tool will print out datacenters that are nearby for planning purposes. This helps catch cases like ashburn/virginia and siliconvalley/sf/sanjose/santaclara:
gaffer@batman next % next datacenters siliconvalley
┌───────────────────────┬───────────────────────┬──────────┬───────────┐
│ Name │ Native │ Latitude │ Longitude │
├───────────────────────┼───────────────────────┼──────────┼───────────┤
│ akamai.fremont │ us-west │ 37.55 │ -121.99 │
│ amazon.sanjose.1 │ usw1-az1 (us-west-1b) │ 37.34 │ -121.89 │
│ amazon.sanjose.3 │ usw1-az3 (us-west-1a) │ 37.34 │ -121.89 │
│ colocrossing.sanjose │ │ 37.3387 │ -121.8853 │
│ datapacket.sanjose │ │ 37.3387 │ -121.8853 │
│ equinix.siliconvalley │ SV │ 37.3387 │ -121.8853 │
│ gcore.santaclara │ │ 37.3541 │ -121.9552 │
│ i3d.santaclara │ │ 37.3541 │ -121.9552 │
│ serversdotcom.sanfran │ │ 37.7749 │ -122.4194 │
└───────────────────────┴───────────────────────┴──────────┴───────────┘SSH into a relay by name. For example:
next relay google.london.1
View the logs for a relay. Equivalent to SSH'ing into the relay and running sudo journalctl -fu relay
Example:
next logs google.london.1
Loads the relay software onto a relay after it has been setup by terraform.
This will run only once. If you try to setup a relay a second time, it will just ignore you.
You can pass in a pattern, so:
next setup google
will call setup on all relays with a name containing the string 'google'.
You can also setup only a single relay:
next setup google.london.1
Or be lazy and call setup across all relays, it will SSH in and then skip any relays that have already been setup:
next setup
Starts the service on a relay. This is equivalent to SSH'ing in and calling sudo systemctl start relay
Examples:
next start google
Start all google relays. If they are already started, do nothing.
next start google.london.1
Start a specific relay only.
next start
Start all relays.
Stops the relay service. Equivalent to SSH'ing into the relay and calling sudo systemctl stop relay
Accepts a pattern, which will be matched against the relay name. Omitting the pattern will stop all relays.
next stop google
Stops all google relays.
next stop google.london.1
Stops only the google.london.1 relay (or any relays matching that string... eg. a/b/c...)
next stop
Stops all relays.
Load a specific relay version onto a relay.
The name is equivalent to the name of the relay binary in google cloud storage.
For example:
next load debug google.london.1
Loads the debug relay binary onto the relay 'london.google.1'
next load relay-release
Loads the release relay binary onto all relays.
Upgrades system software on the relay including security patches. Equivalent to SSH'ing into the relay and running sudo apt update && sudo apt upgrade -y
Example:
next upgrade
Upgrades all relays. You might need to reboot some relays afterwards for parts of the upgrade to take effect.
Reboots the relay! Equivalent to SSH'ing into the relay, stopping the relay service and then calling sudo reboot.
sudo reboot google
Reboots all google relays.
sudo reboot
Reboots all relays.
Downloads the cost matrix from the currently selected environment and saves it to cost.bin.
Also writes out cost.html (which you can open, to visualize the current cost matrix).
The cost matrix is the scalar cost (in milliseconds ping RTT time) between each relay in your relay fleet.
Runs the route optimization algorithm over the cost matrix in cost.bin and generates optimize.bin
Analyzes the contents of the local optimize.bin and prints out information about the route matrix
gaffer@macbook next % next analyze
RTT Improvement
None: 0.0%
0-5ms: 100.0%
5-10ms: 0.0%
10-15ms: 0.0%
15-20ms: 0.0%
20-25ms: 0.0%
25-30ms: 0.0%
30-35ms: 0.0%
35-40ms: 0.0%
40-45ms: 0.0%
45-50ms: 0.0%
50ms+: 0.0%
Route Summary:
32 relays
362 total routes
3.1 routes per-relay pair on average
2.9 relays per-route on average
0.0% of relay pairs have only one route
0.0% of relay pairs have no direct route
0.0% of relay pairs have no routePrints out the set of routes between two relays in the route matrix in optimize.bin, make sure you have called next cost && next optimize prior.
Example:
gaffer@macbook next % next routes google.iowa.1 amazon.virginia.1
routes from google.iowa.1 -> amazon.virginia.1:
+ 27: google.iowa.1 - google.virginia.3 - amazon.virginia.1
+ 27: google.iowa.1 - google.virginia.2 - amazon.virginia.1
+ 27: google.iowa.1 - google.virginia.1 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.6 - google.virginia.3 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.6 - google.virginia.2 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.6 - google.virginia.1 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.6 - google.iowa.3 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.3 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.2 - google.virginia.3 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.2 - google.virginia.2 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.2 - google.virginia.1 - amazon.virginia.1
+ 27: google.iowa.1 - google.iowa.2 - google.iowa.3 - amazon.virginia.1
+ 28: google.iowa.1 - google.ohio.1 - amazon.virginia.1
+ 28: google.iowa.1 - google.iowa.6 - google.ohio.1 - amazon.virginia.1
+ 28: google.iowa.1 - google.iowa.2 - google.ohio.1 - amazon.virginia.1
+ 29: google.iowa.1 - google.ohio.2 - amazon.virginia.1Each of the routes listed above have lower latency than directly sending packets directly between google.iowa.1 and amazon.virginia.1 IP addresses. Crazy huh?!