Initial Setup
-First install monero from the repositories:
+First install monero and tor from the repositories:
[ nowhere.moe ] [ /dev/pts/0 ] [/srv/nowhere.moe]
-→ apt install monero -y
-
+→ apt install monero tor -y
+Then, create the following systemd service if you want to have a monero node to be publicly accessible via the IP directly:
+
[ nowhere.moe ] [ /dev/pts/0 ] [/srv/nowhere.moe]
→ vim /etc/systemd/system/moneronode.service
-[ nowhere.moe ] [ /dev/pts/0 ] [/srv/nowhere.moe]
+[ Wonderland ] [ /dev/pts/9 ] [/srv]
→ cat /etc/systemd/system/moneronode.service
[Unit]
Description=monerod
@@ -92,18 +94,22 @@ After=network.target
Wants=network.target
[Service]
+
+# sync the monero node without going through Tor
ExecStart=/usr/bin/monerod --zmq-pub tcp://127.0.0.1:18083 --disable-dns-checkpoints --enable-dns-blocklist --data-dir /srv/XMR --block-sync-size=50 --out-peers 100 --prep-blocks-threads=128 --prune-blockchain --sync-pruned-blocks --rpc-bind-port=18081 --rpc-bind-ip=0.0.0.0 --p2p-bind-ip=0.0.0.0 --p2p-bind-port=18080 --confirm-external-bind --non-interactive
+
+
Restart=on-failure
RestartSec=10s
-
StandardOutput=journal
StandardError=journal
[Install]
WantedBy=multi-user.target
+
If you want to have a local-only monero node to use over tor, you can use this config instead:
+However if your users are well-educated and are aware that Chainalysis are running malicious tor nodes, then they are NOT going to connect to non-onion monero nodes (and neither should you). Plus if Monero is illegal in your country, you'll also want to synchronize it via Tor instead, so you can use this config instead:
[ Wonderland ] [ /dev/pts/9 ] [/mnt/md3]
→ cat /etc/systemd/system/moneronode.service
@@ -113,7 +119,10 @@ After=network.target
Wants=network.target
[Service]
-ExecStart=/usr/bin/monerod --zmq-pub tcp://127.0.0.1:18083 --disable-dns-checkpoints --enable-dns-blocklist --data-dir /mnt/md3/XMR --block-sync-size=50 --out-peers 100 --prep-blocks-threads=128 --prune-blockchain --sync-pruned-blocks --rpc-bind-port=18081 --rpc-bind-ip=127.0.0.1 --p2p-bind-ip=127.0.0.1 --p2p-bind-port=18080 --non-interactive
+
+# sync the monero node while actually going through Tor (in case if Monero is illegal in your country)
+ExecStart=/usr/bin/monerod --zmq-pub tcp://127.0.0.1:18083 --disable-dns-checkpoints --enable-dns-blocklist --data-dir /srv/XMR --block-sync-size=50 --out-peers 100 --prep-blocks-threads=128 --prune-blockchain --sync-pruned-blocks --rpc-bind-port=18081 --rpc-bind-ip=127.0.0.1 --p2p-bind-ip=127.0.0.1 --p2p-bind-port=18080 --non-interactive --proxy 127.0.0.1:9050 --tx-proxy tor,127.0.0.1:9050
+
Restart=on-failure
RestartSec=10s
@@ -159,20 +168,7 @@ Jul 09 15:39:07 Datura monerod[8410]: 2023-07-09 13:39:07.182 I Synced 89
Jul 09 15:39:07 Datura monerod[8410]: 2023-07-09 13:39:07.376 I Synced 89138/2925934 (3%, 2836796 left)
On a SSD it may take 1 day, and weigh approximately 60 gigs as of writing this tutorial. The synchronisation is a very disk-intensive process, and so it is required to do it on a nvme disk or ssd at least. If you try to do that on a HDD it will take much, much longer. If you don't have a choice, sync it on a nvme somewhere and then rsync it to a server that has only HDDs.
-
-Then allow the ports you want from ufw:
-
-root@XMR:~# sudo ufw allow 18080
-Rules updated
-Rules updated (v6)
-
-root@XMR:~# sudo ufw allow 18081
-Rules updated
-Rules updated (v6)
-
-Once you've finished setting up your monero instance, make sure you have it listed on https://monero.fail or on https://xmr.nowhere.moe.
+On a NVMe SSD it may take 2 days, and weigh approximately 90 gigs at the time of writing this tutorial. The synchronisation is a very disk-intensive process, and so it is required to do it on a nvme disk or ssd at least. If you try to do that on a HDD it will take much, much longer. If you don't have a choice, sync it on a nvme somewhere and then rsync it to a server that has only HDDs.