How to restrict DHT routing table servers

smnzhu · September 3, 2021, 6:14pm

Hi guys, is there a way to enforce DHT client mode for all peers other than a specified set of server peers?

I want to only allow a “privileged” set of peers on my network (who are known to everyone beforehand) to run as DHT servers. The convention is that all other peers should start the DHT module in “client” mode, but since this is a permissionless network, there is no way to guarantee that they will all obey this convention.

Is there a way to enforce this “defensively”? For example, some way to specify a filter / validator that checks each new peer that is added to our routing table, and only allow it to be added if it is one of the “privileged” set of peers?

My worry is that some unprivileged peer will run as DHT server, resulting in it being added to other peers’ routing tables.

adin · September 3, 2021, 6:39pm

If you’re using go-libp2p-kad-dht check out the available options for building your network (and remember to set a custom protocol prefix). There are both routing table and query filters that should be able to help you out here.

smnzhu · September 9, 2021, 3:37pm

Could you point me to the exact fields / methods in the godocs or code by any chance?

Were you referring to peerdiversity package - github.com/libp2p/go-libp2p-kbucket/peerdiversity - pkg.go.dev?

Topic		Replies	Views
DHT peers not appear in routing table go	1	686	August 10, 2020
Create own DHT bootstrap node Users and Developers	9	1527	September 27, 2021
Specifics of peer addition in libp2p's kademlia routing table Implementers and Contributors	2	975	September 3, 2019
Go-libp2p-kad-dht 0.3.0 released with breaking changes News and announcements	0	836	November 6, 2019
Save and restore the DHT state? Users and Developers	1	252	May 24, 2023

How to restrict DHT routing table servers

Related Topics