This article was first published on Horizen
The Secure Node certificate check process (certcheck) is being updated to match Super Node logic.
Currently for Secure Nodes, if the tracking server cannot establish a TLS connection to zen running on a node, it will check TLS peer connections from other nodes to see if they have a connection to the first node.
On Super Nodes, there is no fall back to check peer connections to the target node. Instead, the tracking server performs a handshake with zend after establishing the connection and checks the data returned.
In order for this to work for Secure Nodes the following must be in place
- No maxconnections set in zen.conf. The Tracking Server must be able to establish a connection.
- The port and IP address must be set in zen.conf. Only one IPv4 or IPv6 is required, but it is suggested to have both to help the network.
- The Nodetracker must establish the outgoing connection to the tracking servers from the same IP address specified in zen.conf
- A DNS record has to be in place, either IPv4 or IPv6, for the same IP as in zen.conf
- Nodetracker version must be 0.3.1 or above
Notices have been sent out to all node operators explaining how to update from older versions to v0.3.1. Older versions will no longer be eligible for earnings starting on December 18th, 2018.
On or about December 19th, the TLS peer checking fall back method will be disabled and the direct handshake method will be enabled....
To keep reading, please go to the original article at: