trojan隧道中转

2020-04-19 07:19:53 -0400

1.简介

trojan是一个使用体验不错的软件,相当于v2ray的简化版,开发人员是大火酱,好像没有社区运行,这是trojan的github

2.trojan安装也很简单,官方一键脚本:sudo bash -c “$(curl -fsSL https://raw.githubusercontent.com/trojan-gfw/trojan-quickstart/master/trojan-quickstart.sh)”

3.trojan隧道国内配置文件

{

"run_type": "forward",
"local_addr": "0.0.0.0",//国内机器的监听ip
"local_port": 5901,//国内机器的监听端口
"remote_addr": "example.com",//国外机器的ip
"remote_port": 443,//国外机器的端口
"target_addr": "127.0.0.1",//目的地的ip
"target_port": 5901,//目的地的端口

//password是密码的可以添加多个,用用英语逗号并回车分开

"password": [
    "password1"
],
"udp_timeout": 60,
"log_level": 1,
"ssl": {
    "verify": true,
    "verify_hostname": true,
    "cert": "",
    "cipher": "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:AES128-SHA:AES256-SHA:DES-CBC3-SHA",
    "cipher_tls13": "TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
    "sni": "",
    "alpn": [
        "h2",
        "http/1.1"
    ],
    "reuse_session": true,
    "session_ticket": false,
    "curves": ""
},
"tcp": {
    "no_delay": true,
    "keep_alive": true,
    "reuse_port": false,
    "fast_open": false,
    "fast_open_qlen": 20
}

} 国外trojan配置文件

{

"run_type": "server",
"local_addr": "0.0.0.0",//监听ip
"local_port": 443,//监听端口
"remote_addr": "127.0.0.1",//当主动嗅探时,转到web监听IP
"remote_port": 80,//web监听端口

//password要和国内机一致

"password": [
    "password1",
    "password2"
],
"log_level": 1,
"ssl": {
    "cert": "/path/to/certificate.crt",//tls公钥
    "key": "/path/to/private.key",//tls私钥
    "key_password": "",
    "cipher": "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384",
    "cipher_tls13": "TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
    "prefer_server_cipher": true,
    "alpn": [
        "http/1.1"
    ],
    "reuse_session": true,
    "session_ticket": false,
    "session_timeout": 600,
    "plain_http_response": "",
    "curves": "",
    "dhparam": ""
},
"tcp": {
    "prefer_ipv4": false,
    "no_delay": true,
    "keep_alive": true,
    "reuse_port": false,
    "fast_open": false,
    "fast_open_qlen": 20
},
"mysql": {
    "enabled": false,
    "server_addr": "127.0.0.1",
    "server_port": 3306,
    "database": "trojan",
    "username": "trojan",
    "password": ""
}

} 4.trojan配合nginx或者caddy伪装网站使用更好,这里的web就必须是http的了,控制命令systemctl start/stop/restart/status trojan。trojan相当于一个精简版的v2ray了。

«Newer      Older»
Comment:
Name:
Back to home

Subscribe | Register | Login | N