Install the universe repository and packages for certbot and ensure other packages are installed and up to date from the official guide

Skip adding the universe repository on Debian systems, DO NOT SKIP THE OTHER ENTRIES IN THIS STEP

Be sure to copy the entire command, especially for long command strings

Update the package cache

Install curl and add the nodejs repository and update the package cache

NOTE: Skip this step for Ubuntu

Debian 9 only

Install npm, upgrading it to the version 10.12.0

Stop the node tracker

NOTE: If for some reason you have more than one tracker running in pm2, you may have to change "0" to the number that corresponds with your tracker, and stop those as well. You can get a listing of the numbers from running: pm2 list

Change directory to where the node tracker was cloned, this will be ~/nodetracker for the official guide and typically ~/zencash/secnodetracker for older documentation or other guides

Perform the following command if the above command fails due to the directory not existing

Update git with the new repository URL and retrieve the latest source code

NOTE: If git returns an error regarding any files run the following command (replacing 'filename with the file returned in the error message) and repeat the commands above

Install the latest set of node modules required for the tracker

Locate your node's public IPv4 and/or IPv6 address(es) and append them to the zen.conf file as external IP address(es) connected over port 9033 (default)

ONLY SUPER NODES ARE REQUIRED TO PERFORM EVERY COMMAND IN THIS STEP

SECURE NODES REQUIRE AT LEAST ONE EXTERNAL ADDRESS AND PORT APPENDED INTO ZEN.CONF

NOTE: Secure Nodes only require one type of IP, Super Nodes require both

NOTE: Replace <IPv4> with the public IPv4 of your node, remove <brackets>

NOTE: Replace <IPv6> with the public IPv6 of your node in compressed notation without leading zeros, remove <brackets>

Use the following link to ensure your IPv6 address is in compressed notation:

https://www.ultratools.com/tools/ipv6Compress

Create environmental variables for IPv4

Append external IPv4 into zen.conf

Create environmental variables for IPv6

Append external IPv6 into zen.conf

Append port into zen.conf - SECURE AND SUPER

Run node setup again to refresh the list of tracker servers and initialise the new tracker, press enter through each of the values to retain the current set

• Enter 'secure' for the 'node category' prompt

Stop zend with monit, then stop monit. Both commands are shown to stop via systemctl and sysinit (only one should be needed, but both are here for completeness)

Create a systemd unit file for zend, copy and paste the entire block of text

Test the zend unit file

Create a systemd unit file for the Node Tracker, copy and paste the entire block of text

Test the tracker unit file

Follow the tracker output log to check everything looks OK, if all appears fine, exit with CTRL+c

Check the status of both zend and the tracker, both should return active (running). If the status doesn't send you back to a command prompt, exit the status details by pressing CTRL + c

If both work correctly, enable them at boot

Use systemctl to enable the firewall

NOTE: Many guides lacked enabling this under systemctl

If the firewall is not installed, see: Part 5 - Securing the Host

Remove pm2 from startup

Kill and remove PM2 (if all of the above executed without error)

You may see a message about updating npm, you may ignore this

Remove monit from startup (you may not require both commands, both are present to accommodate either systemd, or init script)

Run both commands if you're unsure of which way monit was configured

NOTE: It is expected that you will see an error if you execute the command that doesn't correspond with how monit was setup. You can safely dismiss errors from the one command of the two presented here.

Remove and purge monit from system and remove old repositories (if all of the above executed without error)

acme.sh - Migration to certbot