Trojan-Go的中转,全部数据经TLS隧道
中转机:中国电信,公网路由 CPU MT7621 (挂动态域名)
落地机:新加坡VPS,同时部署443Trojan 和 SS
Trojan:www.sgvps.com:443密码trpasswd
SS: www.sgvps.com:11234密码sspassword
电信路由IP192.168.2.1,添加端口转发规则:
37000端口转发到路由ip192.168.2.1
U盘跑Trojan-Go
==================config.json==========================
{
"run_type": "forward",
"local_addr": "0.0.0.0",
"local_port": 37000,
"remote_addr": "www.sgvps.com",
"remote_port": 443,
"target_addr": "www.sgvps.com",
"target_port": 11234,
"password": [
"trpasswd"
]
}
==================================================
============启动脚本start.sh============================
#!/bin/sh
cd /volume1/other/trojan-go-fandai
sh stop.sh
sleep 1
SSL_CERT_FILE=./cacert.pem ./trojan-go -config /volume1/other/trojan-go-fandai/config.json >/dev/null 2>&1 &
echo "[Trojan-go start]"
==================================================
(本文紫色路径都要改为你的)
================停止脚本stop.sh===========================
#!/bin/sh
pid=$(ps | awk '/[t]rojan-go -config/{print $1}')
if [ "$pid" == "" ]; then
echo "[Trojan-go not running]"
else
echo "[Trojan-go stop]"
kill $pid
fi
==================================================
#电信的全部775权限
chmod +x start.sh
#然后启动Trojan-Go中转
sh /volume1/other/trojan-go-fandai/start.sh
假如你在移动内网,SS客户端地址填电信域名
端口37000
密码和加密方式,填落地机的SS,
即可实现经电信访问到VPS。
SS数据流,经Trojan tls加密出墙,理论更稳。
SS轻量,可随意分享/放进路由;chacha20-ietf
还有另一种玩法,上面红字SS节点,不局限于落地机,
没有评论:
发表评论