TzProxy is a reverse proxy specifically designed for Tezos nodes, offering a range of features that enhance Tezos node performance, security, and manageability. In this blog post, we will delve into the various aspects of TzProxy and how it can significantly optimize your Tezos node setup.
At Marigold, we developed TzProxy to make our public nodes more reliable. You can know more about our Tezos Nodes on our Status Page.
Setting up TzProxy for your Tezos node is straightforward and can yield remarkable benefits.
TzProxy acts as an intermediary between client requests and your Tezos RPC node, effectively offloading tasks that can otherwise impact your node’s performance.
Before we start, it’s important to understand that TzProxy exclusively manages Remote Procedure Calls (RPC) from Tezos and does not handle peer-to-peer interactions between tezos nodes.
To get started, follow these steps:
It’s needed a Tezos node running, you can find more about it below:
If you don’t create this file, it will be created with the below default configurations when starting for the first time:
Then just run the binary:
Finally, you can test with:
We will talk more about these configurations on next topics.
Rate Limit and Cache
TzProxy allows you to set up a memory cache and rate limit to reduce requests of users that are sending a large bunch of requests in a short period of time, with a cache and rate limit your Tezos node will be hit fewer times, meaning a more stable and reliable node.
If a user reaches the maximum number of requests, they will receive an error message.
Moreover, the user will receive HTTP response headers with rate limit information: the total amount of request allowed, the number of requests left, and the time at which the limit will reset, below an example:
Enabling compression with TzProxy can substantially reduce your bandwidth usage, making it cost-effective, especially when running your node on cloud platforms.
With Compression, you can reduce the load on your bandwidth, in case that you are running your node on a cloud platforms, this can be a good way to save on networking costs.
TzProxy handles Cross-Origin Resource Sharing (CORS) by default, ensuring communication between external clients and your Tezos node.
Control the routes of your node
TzProxy provides the flexibility to control the routes exposed by your Tezos Node. By default, we disable some sensible routes, That you probably don’t want any user to access. You can set these routes with Regular Expression too.
Deny malicious users from using your node
TzProxy enables you to deny access to malicious users by specifying their IP addresses in a deny list.
TzProxy brings metrics with Prometheus by default, using the /metrics route you will have some important metrics related to Go runtime and the HTTP server, this could be used for alerts or dashboard for your needs.
Furthermore, we provide PProf for debugging purposes on /debug/pprof/ route, that permits following resources like allocations, heap state, go routines and threads usage. Essential when you want to tune TzProxy.
It’s important to know that enabling PProf can impact your performance by around 5%.
Setting up TzProxy alongside your Tezos node is straightforward and can provide significant benefits, incorporating TzProxy into your Tezos node infrastructure can lead to a more reliable, secure, and efficient blockchain node, contributing to the overall success of your Tezos-based projects.