From c9219c532fd0606b075435c5729017489048d664 Mon Sep 17 00:00:00 2001 From: RPRX <63339210+rprx@users.noreply.github.com> Date: Fri, 25 Sep 2020 17:17:22 +0000 Subject: [PATCH] VLESS over TCP with XTLS --- VLESS-TCP-XTLS-WHATEVER/README.md | 13 ++ .../config_client/vless_tcp_tls.json | 42 ++++++ .../config_client/vless_tcp_xtls.json | 43 ++++++ .../config_client/vless_ws_tls.json | 45 ++++++ .../config_client/vmess_tcp_tls.json | 52 +++++++ .../config_client/vmess_ws_tls.json | 45 ++++++ VLESS-TCP-XTLS-WHATEVER/config_server.json | 136 ++++++++++++++++++ 7 files changed, 376 insertions(+) create mode 100644 VLESS-TCP-XTLS-WHATEVER/README.md create mode 100644 VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_tls.json create mode 100644 VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_xtls.json create mode 100644 VLESS-TCP-XTLS-WHATEVER/config_client/vless_ws_tls.json create mode 100644 VLESS-TCP-XTLS-WHATEVER/config_client/vmess_tcp_tls.json create mode 100644 VLESS-TCP-XTLS-WHATEVER/config_client/vmess_ws_tls.json create mode 100644 VLESS-TCP-XTLS-WHATEVER/config_server.json diff --git a/VLESS-TCP-XTLS-WHATEVER/README.md b/VLESS-TCP-XTLS-WHATEVER/README.md new file mode 100644 index 0000000..fc18473 --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/README.md @@ -0,0 +1,13 @@ +# VLESS over TCP with XTLS + 回落 & 分流 to WHATEVER(终极配置) + +这里是 [进阶配置]() 的超集,利用 VLESS 强大的回落分流特性,实现了 443 端口尽可能多的协议、配置的完美共存,包括 XTLS + +客户端可以同时通过下列方式连接到服务器,其中 WS 都可以通过 CDN + +1. VLESS over TCP with XTLS +2. VLESS over TCP with TLS +3. VLESS over WS with TLS +4. VMess over TCP with TLS +5. VMess over WS with TLS + +你还可以配置回落到 Caddy 的 forwardproxy 等其它防探测的代理,以及分流到任何支持 WebSocket 的代理,都没有问题 diff --git a/VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_tls.json b/VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_tls.json new file mode 100644 index 0000000..a93646d --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_tls.json @@ -0,0 +1,42 @@ +{ + "log": { + "loglevel": "warning" + }, + "inbounds": [ + { + "port": 10800, + "listen": "127.0.0.1", + "protocol": "socks", + "settings": { + "udp": true + } + } + ], + "outbounds": [ + { + "protocol": "vless", + "settings": { + "vnext": [ + { + "address": "example.com", // 换成你的域名或服务器 IP(发起请求时无需解析域名了) + "port": 443, + "users": [ + { + "id": "", // 填写你的 UUID + "encryption": "none", + "level": 0 + } + ] + } + ] + }, + "streamSettings": { + "network": "tcp", + "security": "tls", + "tlsSettings": { + "serverName": "example.com" // 换成你的域名 + } + } + } + ] +} \ No newline at end of file diff --git a/VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_xtls.json b/VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_xtls.json new file mode 100644 index 0000000..949366a --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/config_client/vless_tcp_xtls.json @@ -0,0 +1,43 @@ +{ + "log": { + "loglevel": "warning" + }, + "inbounds": [ + { + "port": 10800, + "listen": "127.0.0.1", + "protocol": "socks", + "settings": { + "udp": true + } + } + ], + "outbounds": [ + { + "protocol": "vless", + "settings": { + "vnext": [ + { + "address": "example.com", // 换成你的域名或服务器 IP(发起请求时无需解析域名了) + "port": 443, + "users": [ + { + "id": "", // 填写你的 UUID + "flow": "xtls-rprx-origin", + "encryption": "none", + "level": 0 + } + ] + } + ] + }, + "streamSettings": { + "network": "tcp", + "security": "xtls", // 需要使用 XTLS + "xtlsSettings": { + "serverName": "example.com" // 换成你的域名 + } + } + } + ] +} \ No newline at end of file diff --git a/VLESS-TCP-XTLS-WHATEVER/config_client/vless_ws_tls.json b/VLESS-TCP-XTLS-WHATEVER/config_client/vless_ws_tls.json new file mode 100644 index 0000000..8df0f6f --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/config_client/vless_ws_tls.json @@ -0,0 +1,45 @@ +{ + "log": { + "loglevel": "warning" + }, + "inbounds": [ + { + "port": 10800, + "listen": "127.0.0.1", + "protocol": "socks", + "settings": { + "udp": true + } + } + ], + "outbounds": [ + { + "protocol": "vless", + "settings": { + "vnext": [ + { + "address": "example.com", // 换成你的域名或服务器 IP(发起请求时无需解析域名了) + "port": 443, + "users": [ + { + "id": "", // 填写你的 UUID + "encryption": "none", + "level": 0 + } + ] + } + ] + }, + "streamSettings": { + "network": "ws", + "security": "tls", + "tlsSettings": { + "serverName": "example.com" // 换成你的域名 + }, + "wsSettings": { + "path": "/websocket" // 必须换成自定义的 PATH,需要和服务端的一致 + } + } + } + ] +} \ No newline at end of file diff --git a/VLESS-TCP-XTLS-WHATEVER/config_client/vmess_tcp_tls.json b/VLESS-TCP-XTLS-WHATEVER/config_client/vmess_tcp_tls.json new file mode 100644 index 0000000..b8e8258 --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/config_client/vmess_tcp_tls.json @@ -0,0 +1,52 @@ +{ + "log": { + "loglevel": "warning" + }, + "inbounds": [ + { + "port": 10800, + "listen": "127.0.0.1", + "protocol": "socks", + "settings": { + "udp": true + } + } + ], + "outbounds": [ + { + "protocol": "vmess", + "settings": { + "vnext": [ + { + "address": "example.com", // 换成你的域名或服务器 IP(发起请求时无需解析域名了) + "port": 443, + "users": [ + { + "id": "", // 填写你的 UUID + "security": "none", + "level": 0 + } + ] + } + ] + }, + "streamSettings": { + "network": "tcp", + "security": "tls", + "tlsSettings": { + "serverName": "example.com" // 换成你的域名 + }, + "tcpSettings": { + "header": { + "type": "http", + "request": { + "path": [ + "/vmesstcp" // 必须换成自定义的 PATH,需要和服务端的一致 + ] + } + } + } + } + } + ] +} \ No newline at end of file diff --git a/VLESS-TCP-XTLS-WHATEVER/config_client/vmess_ws_tls.json b/VLESS-TCP-XTLS-WHATEVER/config_client/vmess_ws_tls.json new file mode 100644 index 0000000..eba28ef --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/config_client/vmess_ws_tls.json @@ -0,0 +1,45 @@ +{ + "log": { + "loglevel": "warning" + }, + "inbounds": [ + { + "port": 10800, + "listen": "127.0.0.1", + "protocol": "socks", + "settings": { + "udp": true + } + } + ], + "outbounds": [ + { + "protocol": "vmess", + "settings": { + "vnext": [ + { + "address": "example.com", // 换成你的域名或服务器 IP(发起请求时无需解析域名了) + "port": 443, + "users": [ + { + "id": "", // 填写你的 UUID + "security": "none", + "level": 0 + } + ] + } + ] + }, + "streamSettings": { + "network": "ws", + "security": "tls", + "tlsSettings": { + "serverName": "example.com" // 换成你的域名 + }, + "wsSettings": { + "path": "/vmessws" // 必须换成自定义的 PATH,需要和服务端的一致 + } + } + } + ] +} \ No newline at end of file diff --git a/VLESS-TCP-XTLS-WHATEVER/config_server.json b/VLESS-TCP-XTLS-WHATEVER/config_server.json new file mode 100644 index 0000000..885c200 --- /dev/null +++ b/VLESS-TCP-XTLS-WHATEVER/config_server.json @@ -0,0 +1,136 @@ +{ + "log": { + "loglevel": "warning" + }, + "inbounds": [ + { + "port": 443, + "protocol": "vless", + "settings": { + "clients": [ + { + "id": "", // 填写你的 UUID + "flow": "xtls-rprx-origin", + "level": 0, + "email": "love@v2fly.org" + } + ], + "decryption": "none", + "fallbacks": [ + { + "dest": 80 // 也可以回落到其它防探测的代理 + }, + { + "path": "/websocket", // 必须换成自定义的 PATH + "dest": 1234, + "xver": 1 + }, + { + "path": "/vmesstcp", // 必须换成自定义的 PATH + "dest": 2345, + "xver": 1 + }, + { + "path": "/vmessws", // 必须换成自定义的 PATH + "dest": 3456, + "xver": 1 + } + ] + }, + "streamSettings": { + "network": "tcp", + "security": "xtls", + "xtlsSettings": { + "alpn": [ + "http/1.1" + ], + "certificates": [ + { + "certificateFile": "/path/to/fullchain.crt", // 换成你的证书,绝对路径 + "keyFile": "/path/to/private.key" // 换成你的私钥,绝对路径 + } + ] + } + } + }, + { + "port": 1234, + "listen": "127.0.0.1", + "protocol": "vless", + "settings": { + "clients": [ + { + "id": "", // 填写你的 UUID + "level": 0, + "email": "love@v2fly.org" + } + ], + "decryption": "none" + }, + "streamSettings": { + "network": "ws", + "security": "none", + "wsSettings": { + "acceptProxyProtocol": true, // 提醒:若你用 Nginx/Caddy 等反代 WS,需要删掉这行 + "path": "/websocket" // 必须换成自定义的 PATH,需要和分流的一致 + } + } + }, + { + "port": 2345, + "listen": "127.0.0.1", + "protocol": "vmess", + "settings": { + "clients": [ + { + "id": "", // 填写你的 UUID + "level": 0, + "email": "love@v2fly.org" + } + ] + }, + "streamSettings": { + "network": "tcp", + "security": "none", + "tcpSettings": { + "acceptProxyProtocol": true, + "header": { + "type": "http", + "request": { + "path": [ + "/vmesstcp" // 必须换成自定义的 PATH,需要和分流的一致 + ] + } + } + } + } + }, + { + "port": 3456, + "listen": "127.0.0.1", + "protocol": "vmess", + "settings": { + "clients": [ + { + "id": "", // 填写你的 UUID + "level": 0, + "email": "love@v2fly.org" + } + ] + }, + "streamSettings": { + "network": "ws", + "security": "none", + "wsSettings": { + "acceptProxyProtocol": true, // 提醒:若你用 Nginx/Caddy 等反代 WS,需要删掉这行 + "path": "/vmessws" // 必须换成自定义的 PATH,需要和分流的一致 + } + } + } + ], + "outbounds": [ + { + "protocol": "freedom" + } + ] +} \ No newline at end of file