github/v2ray-examples
1
0
Fork 0
mirror of https://github.com/v2fly/v2ray-examples.git synced 2025-04-06 02:49:29 +08:00
Code Issues Packages Projects Releases Wiki Activity

Create Shadowsocks-Websocket-Web-TLS

Browse Source
This commit is contained in:
touamano 2020-08-29 17:14:40 +08:00 committed by GitHub
parent 019d5c8510
commit a01b2521b0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 247 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

42
Shadowsocks-Websocket-Web-TLS/README - zh-CN.md Normal file
View File

@ -0,0 +1,42 @@
# 这是一个使用 V2Ray 作为 ss + v2ray plugin 服务端的示例
> 完整的设置还需要一个web服务器解密TLS后将请求转发给后端的v2ray位于127.0.0.1:10000。由于 https://guide.v2fly.org/advanced/wss_and_web.html#%E9%85%8D%E7%BD%AE 已经有了服务器的设置这里不再赘述可以按需参考白话文教程里的web服务器设置。
**config_server_redirect.json 和 config_server_domainsocket.json 选其一**
如果使用domain socket需要修改/etc/systemd/system/v2ray.service
在[Service]部分添加
```
RuntimeDirectory=ss-loop
```
'ss-loop'对应config.json里的"dsSettings"部分的path里的文件夹"/var/run/ss-loop"
修改完成后需要执行
```
systemctl disable v2ray.service
systemctl enable v2ray.service
```
否者由于fhs脚本使用的nobody用户的权限无法在/var/run里新建文件夹而导致启动失败。
## 客户端配置示意
**你应该按照服务端的设置修改对应的参数**
### shadowsocks windows 客户端关键部分示例如下:
```
Server IP: example.com
Server Port: 443
Passowrd: ifYouWantToKeepYourPassphraseSafeChangeThis!!
Encryption: chacha20-ietf-poly1305
Plugin Program: pathToYourV2ray-plugin_windows_arch.exe
Plugin Options: tls;mode=websocket;path=/michi;host=example.com
```
### shadowsocks Android plugin 关键部分示例如下:
**需安装 shadowsocks 和 v2ray plugin并搭配一同使用**
```
Plugin: v2ray
Configure:
Transport mode: websocket-tls
Hostname: example.com
Path: /michi
Concurrent connections: 1
Certificate for TLS verification: Not set
```

45
Shadowsocks-Websocket-Web-TLS/README.md Normal file
View File

@ -0,0 +1,45 @@
# This is the server config.json example to utilizing V2ray as the server for Shadowsocks + V2Ray Plugin
> The complete setup also requires a webserver to handle the TLS and proxy pass the deciphered request to the backend v2ray server at 127.0.0.1:10000
> You can find the web server example at https://guide.v2fly.org/en_US/advanced/wss_and_web.html#server-side-configuration
中文用户请看 Readme - zh-CN. md
**Choose either one of config_server_redirect.json and config_server_domainsocket.json**
If you choose to use config_server_domainsocket.json remember to modify the systemd service file @ /etc/systemd/system/v2ray.service.
Add the following line to the block starting with [Service]
```
RuntimeDirectory=ss-loop
```
'ss-loop'corresponds to the "/var/run/ss-loop" folder in the "dsSettings" part of the config.json.
Execute the following commands to re-enable the v2ray.service.
```
systemctl disable v2ray.service
systemctl enable v2ray.service
```
Since nobody user does not have the right permission to create the 'ss-loop' folder in /var/run.
## Client configuration examples
**You should change the parameters according to your server configs**
### shadowsocks windows client configuration examples
```
Server IP: example.com
Server Port: 443
Passowrd: ifYouWantToKeepYourPassphraseSafeChangeThis!!
Encryption: chacha20-ietf-poly1305
Plugin Program: pathToYourV2ray-plugin_windows_arch.exe
Plugin Options: tls;mode=websocket;path=/michi;host=example.com
```
### shadowsocks Android plugin configuration examples
> Both the shadowsocks android and the V2Ray plugin android are mandatory, they are available on Google Play Store.
```
Plugin: v2ray
Configure...:
Transport mode: websocket-tls
Hostname: example.com
Path: /michi
Concurrent connections: 1
Certificate for TLS verification: Not set
```

83
Shadowsocks-Websocket-Web-TLS/config_server_domainsocket.json Normal file
View File

@ -0,0 +1,83 @@
{
"log": {
"loglevel": "warning"
},
"routing": {
"domainStrategy": "AsIs",
"rules": [
{
"type": "field",
"inboundTag": "wsdoko",
"outboundTag": "ssmux"
},
{
"type": "field",
"ip": [
"geoip:private"
],
"outboundTag": "blocked"
}
]
},
"inbounds": [
{
"port": 10000,
"listen": "127.0.0.1",
"protocol": "dokodemo-door",
"tag": "wsdoko",
"settings": {
"address": "v1.mux.cool",
"followRedirect": false,
"network": "tcp, udp"
},
"sniffing": {
"enabled": true,
"destOverride": [
"http",
"tls"
]
},
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/michi"
}
}
},
{
"port": 9000,
"protocol": "shadowsocks",
"settings": {
"method": "chacha20-ietf-poly1305",
"ota": false,
"password": "ifYouWantToKeepYourPassphraseSafeChangeThis!!",
"network": "tcp,udp"
},
"streamSettings": {
"network": "domainsocket"
}
}
],
"outbounds": [
{
"protocol": "freedom",
"settings": {},
"tag": "direct"
},
{
"protocol": "blackhole",
"settings": {},
"tag": "blocked"
},
{
"protocol": "freedom",
"tag": "ssmux",
"streamSettings": {
"network": "domainsocket"
}
}
],
"dsSettings": {
"path": "/var/run/ss-loop/ss-loop.sock"
}
}

77
Shadowsocks-Websocket-Web-TLS/config_server_redirect.json Normal file
View File

@ -0,0 +1,77 @@
{
"log": {
"loglevel": "warning"
},
"routing": {
"domainStrategy": "AsIs",
"rules": [
{
"type": "field",
"inboundTag": "wsdoko",
"outboundTag": "ssredirect"
},
{
"type": "field",
"ip": [
"geoip:private"
],
"outboundTag": "blocked"
}
]
},
"inbounds": [
{
"port": 10000,
"listen": "127.0.0.1",
"protocol": "dokodemo-door",
"tag": "wsdoko",
"settings": {
"address": "v1.mux.cool",
"followRedirect": false,
"network": "tcp, udp"
},
"sniffing": {
"enabled": true,
"destOverride": [
"http",
"tls"
]
},
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/michi"
}
}
},
{
"port": 9000,
"protocol": "shadowsocks",
"settings": {
"method": "chacha20-ietf-poly1305",
"ota": false,
"password": "ifYouWantToKeepYourPassphraseSafeChangeThis!!",
"network": "tcp,udp"
}
}
],
"outbounds": [
{
"protocol": "freedom",
"settings": {},
"tag": "direct"
},
{
"protocol": "blackhole",
"settings": {},
"tag": "blocked"
},
{
"protocol": "freedom",
"tag": "ssredirect",
"settings": {
"redirect": "127.0.0.1:9000"
}
}
]
}