- 您的服务器上安装了 docker
- 您已经安装好了 v2ray
# 备份默认v2ray默认配置
mv /etc/v2ray/config.json /etc/v2ray/config.json.bak
# 覆盖 v2ray 配置
echo '{
"api": {
"services": [
"HandlerService",
"LoggerService",
"StatsService"
],
"tag": "api"
},
"inboundDetour": [
{
"listen": "127.0.0.1",
"port": 62789,
"protocol": "dokodemo-door",
"settings": {
"address": "127.0.0.1"
},
"tag": "api"
}
],
"log": {
"loglevel": "info"
},
"inbounds": [
{
"listen": "127.0.0.1",
"port": 6001,
"protocol": "vmess",
"settings": {
"clients": [],
"disableInsecureEncryption": false
},
"sniffing": {
"destOverride": [
"http",
"tls"
],
"enabled": true
},
"streamSettings": {
"network": "ws",
"security": "none",
"wsSettings": {
"headers": {},
"path": "/ws/"
}
},
"tag": "6001"
}
],
"outbounds": [
{
"protocol": "freedom",
"settings": {}
},
{
"protocol": "blackhole",
"settings": {},
"tag": "blocked"
}
],
"policy": {
"system": {
"statsInboundDownlink": true,
"statsInboundUplink": true
}
},
"routing": {
"rules": [
{
"inboundTag": [
"api"
],
"outboundTag": "api",
"type": "field"
},
{
"ip": [
"geoip:private"
],
"outboundTag": "blocked",
"type": "field"
},
{
"outboundTag": "blocked",
"protocol": [
"bittorrent"
],
"type": "field"
}
]
},
"stats": {}
}' > /etc/v2ray/config
# 重启v2ray
service v2ray restart以下标注了
请修改的地方,都需要关注,并根据需要修改。原则上是都需要改的。
mkdir -p ~/conf
echo "admin:
#[请修改]第一次启动时候的账号和密码
email: admin@admin.com
password: 123456
proxy:
#[请修改]与porxy交互的密码,也是各种token的私钥
authPassword: ''
subscriptionTemplate: /subscribe/%s?type=%s×tamp=%s&token=%s
email:
#smtp地址
host:
#用户名称
userName:
#密码
password:
#端口
port:
#默认false ,邮件不支持startTls不要开启
startTlsEnabled: false
exceedConnections: 你当前的连接数已经超过账号最大限制,当前风险系统自动降低你一半的连接数,并且持续一个小时;如果你在一个小时后,不在触发监控指标,你的账号连接数将恢复。
vCodeTemplate: '你的验证码为: %s,请在10分钟内使用'
overdueDate: 你的账号即将于:%s 过期,请留意续费。
logging:
file: /opt/jar/logs/admin.log
file.max-history: 7
level:
root: info
server:
port: 9091
tomcat:
max-threads: 5
min-threads: 2
spring:
datasource:
driver-class-name: org.sqlite.JDBC
hikari:
maximum-pool-size: 5
minimum-idle: 2
password: ''
type: com.zaxxer.hikari.HikariDataSource
url: jdbc:sqlite:/opt/jar/db/admin.db
username: ''
jackson:
date-format: yyyy-MM-dd HH:mm:ss
time-zone: GMT+8
jpa:
hibernate:
ddl-auto: update
properties:
hibernate:
dialect: com.jhl.admin.util.SQLiteDialect
enable_lazy_load_no_trans: true
format_sql: ''
show_sql: true
" > ~/conf/admin.yaml
echo "proxy:
#[请修改]与admin.yaml中的proxy.authPassword配置相同
authPassword: ''
localPort: 8081
maxConnections: 300
logging:
file: /opt/jar/logs/v2ray-proxy.log
file.max-history: 7
level:
root: info
manager:
#如果admin端不在本机需要修改
address: http://127.0.0.1:9091
getProxyAccountUrl: ${manager.address}/proxy/proxyAccount/ac?accountNo={accountNo}&domain={domain}
reportFlowUrl: ${manager.address}/report/flowStat
reportOverConnectionLimitUrl: ${manager.address}/report/connectionLimit?accountNo={accountNo}
server:
port: 8091
tomcat:
max-threads: 1
min-threads: 1
" > ~/conf/proxy.yaml
echo 'server {
listen 80;
server_name 127.0.0.1; #[请修改]修改为自己的IP/域名. 如果设置为域名,则稍后在浏览器上输入域名即可.
root /opt/jar/web;
location /api {
proxy_pass http://127.0.0.1:9091/;
}
location /ws/ {
proxy_redirect off;
proxy_pass http://127.0.0.1:8081;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $http_host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
}' > ~/conf/v2ray-mng.confdocker run -d --name v2 --net=host -v ~/conf:/opt/conf greatbody/v2ray-web-manager:0.0.19然后就可以在浏览器上输入 http://IP 或者 http://你的域名 访问了。 请注意防火墙是否允许 80 端口的传入请求。
- nginx 暂未提供tls支持
- 只能在一个服务器上运行
- 排查问题将会更加困难
- 占用资源更多
- admin、proxy 服务分容器,可以基于
docker-compose、Docker Swarm - 容器日志支持通过
docker logs查看对应服务日志 - nginx tls
此文档由@greatbody提供。