v2ray 客户端配置
{
"log": {
"loglevel": "warning",
"access": "/var/log/v2ray/access.log",
"error": "/var/log/v2ray/error.log"
},
"inbounds": [
{
"port": 1080, // SOCKS 代理端口,在浏览器中需配置代理并指向这个端口
"listen": "127.0.0.1",
"protocol": "socks",
"settings": {
"auth":"noauth",
"udp": false
},
"sniffing": {
"enabled": true,
"destOverride": ["http", "tls"]
}
}
],
"outbounds": [
{
"protocol": "vmess",
"settings": {
"vnext": [
{
"address": "your_domain", // 服务器地址,请修改为你自己的服务器 ip 或域名
"port": 443, // 服务器端口
"users": [
{
"id": "your_id",
"alterId": 64
}
]
}
]
},
"streamSettings": {
"network":"ws",
"security": "tls",
"wsSettings" :{
"path": "your_path"
}
}
},
{
"protocol": "freedom",
"tag": "direct"
}
],
"routing": {
"domainStrategy": "IPOnDemand",
"rules": [
{
"type": "field",
"ip": [
"geoip:private"
],
"outboundTag": "direct"
}
]
}
}
v2ray 服务端配置
{
"log": {
"loglevel": "warning"
},
"routing": {
"domainStrategy": "AsIs", //只使用域名进行路由选择,默认值.
"rules": [
{
"type": "field",
"ip": [
"geoip:private" //private包含所有私有地址,如127.0.0.1
],
"outboundTag": "block"//阻塞所有对本机私有地址的访问
}
]
},
"inbounds": [
{
"listen": "0.0.0.0",
"port": 12345, //这里的端口要与nginx的端口一致
"protocol": "vmess",//使用VMess协议与v2ray客户端的协议一致
"settings": {
"clients": [
{
"id": "your_UUID", //你的UUID要与客户端的UUID一致
"alterId": 64
}
]
},
"streamSettings": {
"network": "ws", //使用WebSocket传输
"wsSettings": {
"path": "your_nginx_path" //路径要与nginx的路径一致
}
}
}
],
"outbounds": [
{
"protocol": "freedom",
"tag": "direct"
},
{
"protocol": "blackhole",
"tag": "block"
}
]
}
nginx配置
注意: 将example.com换成自己的域名
server {
# Redirect all http requests to https.
listen 80 default_server;
listen [::]:80 default_server;
server_name _;
return 301 https://$host$request_uri;
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name www.example.com example.com;
server_tokens off;
ssl_certificate /path/to/certs/example.com.crt; //将path/to/certs替换为自己的证书所在路径
ssl_certificate_key /path/to/certs/example.com.key;
ssl_client_certificate /path/to/certs/cloudflare.crt;
ssl_verify_client on; //开启来路认证,判断是否来自cloudflare的流量
location / {
root /path/to/example.com; //换成自己example.com站点内容所在路径
index index.html index.htm;
try_files $uri $uri $uri/ =404;
}
# This path must be as same as v2ray path
location /your_nginx_path {
proxy_redirect off;
proxy_pass http://127.0.0.1:12345; //与v2ray的端口要一致
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $http_host;
}
}
