Security
Since the WorldLand network is a peer-to-peer network, it must be able to communicate with all nodes.
Default Port Settings
| Protocol | Port | Description |
|---|---|---|
| P2P | 30303 | Peer-to-peer communication |
| HTTP-RPC | 8545 | HTTP JSON-RPC server |
| WS-RPC | 8546 | WebSocket JSON-RPC server |
The P2P network is enabled by default. HTTP and WebSocket (WS) are disabled by default unless explicitly enabled with the corresponding flags.
Firewall Configuration
Required (P2P Network)
- Allow TCP 30303 (or your custom port) — This allows nodes to connect to peers
- Allow UDP 30303 (or your custom port) — This allows node discovery
JSON-RPC Security
Security Warning
When enabling RPC servers on WorldLand nodes, security must be taken into account. When a node allows external access, an attacker with an unlocked account can easily transfer the assets stored in the wallet.
See: How to reduce the chances of your wallet getting hacked
If enabling a JSON-RPC server:
- Block all traffic to port 8545 (or your custom HTTP-RPC port) — except traffic from explicitly defined trusted systems
- Block all traffic to port 8546 (or your custom WS-RPC port) — except traffic from explicitly defined trusted systems
Changing Ports
If you want to change the P2P port, see the port options in Command-Line Options:
bash
--discovery.port value # (default: 30303) Use a custom UDP port for P2P discovery
--port value # (default: 30303) Network listening port
--http.port value # (default: 8545) HTTP-RPC server listening port
--ws.port value # (default: 8546) WS-RPC server listening port