vmess over wss ss vmess 这些自发明的翻墙协议最终都跑在tls里面:)
选择 caddy 因为支持自动续签证书,请先解析自己域名到部署服务的 ip 地址生效后再使用,
默认占用 80 433 端口, 要使用其他端口,自行修改 Caddyfile 配置
安装 docker-ce
sudo curl -L "https://github.com/docker/compose/releases/download/1.25.0/docker-compose-$(uname -s)-$(uname -m)" \
-o /usr/local/bin/docker-compose
sudo chmod +x /usr/local/bin/docker-compose
替换 uuid
git clone https://github.com/luoqeng/caddy-v2ray-docker.git && cd caddy-v2ray-docker
UUID=$(cat /proc/sys/kernel/random/uuid) && echo ${UUID}
sed -i "s/uuid/${UUID}/" ./v2ray/config.json
替换域名
DOMAIN=www.xxxx.com
sed -i "s/your.domain/${DOMAIN}/" ./caddy/Caddyfile
默认页面
echo 'hello' > ./caddy/srv/index.html
启动 caddy + v2ray
sudo docker-compose up -d
v2ray 客户端配置
sed -i "s/uuid/${UUID}/" ./v2ray/client-simple-config.json
sed -i "s/your.domain/${DOMAIN}/" ./v2ray/client-simple-config.json
以下可选步骤
启用 https 代理,替换默认账号密码 admin pass123456 支持 h2 tls1.3
cp ./caddy/forwardproxyCaddyfile ./caddy/Caddyfile
DOMAIN=www.xxxx.com
sed -i "s/your.domain/${DOMAIN}/" ./caddy/Caddyfile
HTTPS_USER=ubuntu
sed -i "s/admin/${HTTPS_USER}/" ./caddy/Caddyfile
HTTPS_PASSWD=pass2048
sed -i "s/pass123456/${HTTPS_PASSWD}/" ./caddy/Caddyfile
# https代理地址 https://ubuntu:pass2048@www.xxxx.com
sudo docker-compose stop caddy
sudo docker-compose rm caddy
docker-compose -f docker-compose-forwardproxy.yml up -d
v2ray 4.21 版本支持 https 代理作为 outbounds
但目前很多 v2ray 客户端不支持 https 代理作为 outbounds。
客户端启动 v2ray socks2https
sudo docker run -dit --restart always --name v2ray-socks -p 1080:1080 -d -v $PWD/v2ray/client-https-config.json:/etc/v2ray/config.json v2ray/official
透明代理推荐 openwrt + luci-app-ssr-plus 预编译好的下载
- https://downloads.openwrt.org/releases/19.07.1/targets/x86/64/
- https://github.com/coolsnowwolf/lede/tree/master/package/lean/luci-app-ssr-plus
透明代理推荐使用 koolshare x64 固件离线安装科学上网
https://github.com/hq450/fancyss_history_package/tree/master/fancyss_X64https://firmware.koolshare.cn/LEDE_X64_fw867
参考