关闭防火墙:ufw disable

xray官方一键安装脚本:bash -c "$(curl -L github.com/XTLS/Xray-install/raw/main/install-release.sh)" @ install -u root

启动v2ray:systemctl start xray.service
重启v2ray:systemctl restart xray.service
v2ray状态:systemctl status xray.service

申请证书:
安装acme:curl https://get.acme.sh| sh
安装socat:apt install socat
添加软链接:ln -s /root/.acme.sh/acme.sh /usr/local/bin/acme.sh
切换CA机构:acme.sh --set-default-ca --server letsencrypt
申请证书: acme.sh --issue -d s1.pigyy.xyz --standalone -k ec-256
安装证书: acme.sh --installcert -d s1.pigyy.xyz --ecc --key-file /usr/local/etc/xray/server.key --fullchain-file /usr/local/etc/xray/server.crt

xray配置文件:

{
    "log": {
        "loglevel": "warning"
    },
    "inbounds": [
        {
            "port": 443,
            "protocol": "vless",
            "settings": {
                "clients": [
                    {
                        "id": "5baf43a5-3e9f-4d36-966a-6debc0fc383e",
                        "flow": "xtls-rprx-direct"
                    }
                ],
                "decryption": "none",
                "fallbacks": [
                    {
                        "dest": "xxx.xxx.xxx.xxx:80"
                    }
                ]
            },
            "streamSettings": {
                "network": "tcp",
                "security": "xtls",
                "xtlsSettings": {
                    "alpn": [
                        "http/1.1"
                    ],
                    "certificates": [
                        {
                            "certificateFile": "/usr/local/etc/xray/server.crt",
                            "keyFile": "/usr/local/etc/xray/server.key"
                        }
                    ]
                }
            }
        }
    ],
    "outbounds": [
        {
            "protocol": "freedom"
        }
    ]
}

标签: 科学上网, xray

添加新评论