|
|
本帖最后由 Renzheng 于 2020-2-27 11:48 编辑
错误原因
始末:通过 nginx 分流博客网站和小飞机的流量,使得 博客 和 v2ray-plugin 插件共存,也同时可以更好的伪装小飞机的流量,即 Shadowsocks over websocket (HTTPS) 。博客是基于 LNMP.org 搭建的。
以下错误原因在于 nginx 的配件文件的这一行:
[ol] include rewrite/typecho.conf;[/ol]复制代码
重写 typecho 会使得分流失败。
[ol]root@sg:/usr/local/nginx/conf/vhost# cat ../rewrite/typecho.conf if (!-e $request_filename) { rewrite ^(.*)$ /index.php$1 last; }[/ol]复制代码
但是只需要在网站根目录新建一个文件夹就好:
[ol]# image 为 SS 分流的 pathmkdir /home/wwwroot/example.com/image[/ol]复制代码
以下是原帖
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
今天尝试使用 Nginx 反向代理 shadowsocks-libev + v2ray-plugin 实现分流,使得网站和 v2ray-plugin 共存,但是好像配置失败了,一直连不上。在这里问问各位大佬到底是哪里出了问题?谢谢
无需推荐 v2ray 了, 这和 v2ray 的 WebSocket+TLS+Web 如出一辙。机场也就别来打广告了。
shadowsocks-libev 配置文件
[ol]root@iZt4ngiff6xe6fa04n7ew4Z:~# cat /etc/shadowsocks-libev/config.json { "server":"0.0.0.0", "server_port":8443, "password":"password", "timeout":300, "user":"nobody", "method":"chacha20-ietf-poly1305", "fast_open":false, "nameserver":"8.8.8.8", "mode":"tcp_and_udp", "plugin":"v2ray-plugin", "plugin_opts":"server;path=/image;loglevel=none"}[/ol]复制代码
nginx 配置文件,域名已经使用 example.com 替代了。
[ol]root@iZt4ngiff6xe6fa04n7ew4Z:~# cat /usr/local/nginx/conf/vhost/example.com.conf server { listen 80; #listen [::]:80; server_name example.com; return 301 https://example.com$request_uri; }server { listen 443 ssl http2; #listen [::]:443 ssl http2; server_name example.com ; index index.html index.htm index.php default.html default.htm default.php; root /home/wwwroot/example.com; ssl_certificate /usr/local/nginx/conf/ssl/example.com/fullchain.pem; ssl_certificate_key /usr/local/nginx/conf/ssl/example.com/private.key; ssl_session_timeout 5m; ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; ssl_prefer_server_ciphers on; ssl_ciphers "TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-128-CCM-8-SHA256:TLS13-AES-128-CCM-SHA256:EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5"; ssl_session_cache builtin:1000 shared:SSL:10m; # openssl dhparam -out /usr/local/nginx/conf/ssl/dhparam.pem 2048 ssl_dhparam /usr/local/nginx/conf/ssl/dhparam.pem; include rewrite/typecho.conf; #error_page 404 /404.html; # Deny access to PHP files in specific directory #location ~ /(wp-content|uploads|wp-includes|images)/.*\.php$ { deny all; } include enable-php-pathinfo.conf; location /image { proxy_redirect off; proxy_http_version 1.1; proxy_pass http://127.0.0.1:8443; proxy_set_header Host $http_host; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; } location ~ .*\.(gif|jpg|jpeg|png|bmp|swf)$ { expires 30d; } location ~ .*\.(js|css)?$ { expires 12h; } location ~ /.well-known { allow all; } location ~ /\. { deny all; } access_log /home/wwwlogs/example.com.log; }[/ol]复制代码
本地客户端配置
shadowsocks-libev status
example.com 访问日志
[ol]cat /home/wwwlogs/example.com.log[/ol]复制代码
|
|
