Welcome to Your Mysterium Node Guide
Introduction
Welcome to our comprehensive guide on running a Mysterium end node. Here, you’ll find best practices to ensure your node operates efficiently and securely.
Best Practices
- Firewall Rules (optional)
To enhance security, configure your firewall to restrict DNS server usage to 1.0.0.3 and drop all traffic going to other DNS servers.
1.0.0.3 will block porn websites and known malware.
- Step-by-Step Guide:
- Access your firewall settings.
- Add a rule to allow traffic only to DNS server 1.0.0.3 on port 53 from the IP of your Myst Node.
- Add a rule to drop traffic on port 53 from the IP of your Myst Node.
- Save and apply the changes.
Making sure that the accept traffic rule is above the drop traffic rule at the top of the firewall table.
- Port Forwarding
To make your network more secure disable UPNP and manually open ports.
Manually open ports on your router in the range of 10000-60000 UDP for the Mysterium node.
- Step-by-Step Guide:
- Log in to your router’s admin panel.
- Navigate to the port forwarding section.
- Add a new rule for UDP ports 10000-60000 for the IP address of your Mysterium Node.
- Save and apply the changes.
- Go into the mysterium node dashboard settings -> advanced and drag manual port to the top of the list and UPNP to the bottom.
- Automatic Updates on Ubuntu 22.04
Ensure your system is always up-to-date by setting up automatic updates.
- Step-by-Step Guide:
- Open the terminal.
- Run the following commands:
sudo apt update</li>
<li>sudo apt install unattended-upgrades</li>
<li>sudo dpkg-reconfigure –priority=low unattended-upgrades
-
- Follow the prompts to configure automatic updates.
- Setting Up Watchtower on Docker
Use Watchtower to automatically update your Docker containers and remove old images.
- Step-by-Step Guide:
- Install Watchtower:
<ul>
<li>docker run -d \</li>
<li>–name watchtower \</li>
<li>-v /var/run/docker.sock:/var/run/docker.sock \</li>
<li>containrrr/watchtower</li>
</ul>
Configure Watchtower to clean up old images:
docker run -d \
–name watchtower \
-v /var/run/docker.sock:/var/run/docker.sock \
containrrr/watchtower –cleanup
- Install Watchtower:
- Use Strong Passwords
Ensure all your accounts, especially those related to your node and router, use strong, unique passwords.
Tips:
- Use a mix of uppercase, lowercase, numbers, and special characters.
- Avoid using easily guessable information like birthdays or common words.
- Consider using a password manager to generate and store complex passwords.
- Backup your node ID
One of the first things you should do is backup the ID of your Mysterium Node since the ID of the node can not be recovered once lost.
- On Ubuntu.
myst config show | grep data-dir
the output will show something similar to
data-dir: /var/lib/mysterium-node- Copy and store all the files and directories under mysterium-node.
- For more support use the Mysterium Discord Server.
The fastest way to get support is via the Mysterium discord server
- Node Runner Support: https://discord.gg/NGqpnR7nUF
- VPN client users support: https://discord.gg/QRvSeHmGwe