下述教程安装环境为:Centos 6.9
安装Nginx配置SSL
yum install -y nginx
接着进入
/etc/nginx/conf.d
编辑文件
default.conf
为以下内容,注意修改证书路径、域名与V2Ray监听端口
server {
listen 80;
server_name luckykills.xyz;
rewrite ^(.*)$ https://${server_name}$1 permanent;
}
server {
listen 443 ssl;
ssl on;
ssl_certificate /etc/nginx/v2ray.crt;
ssl_certificate_key /etc/nginx/v2ray.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
server_name luckykills.xyz;
location /ray {
proxy_redirect off;
proxy_pass http://127.0.0.1:8080;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header Host $http_host;
}
}
第1行至第5行,我添加的监听http跳转至https,亦可删除这几行
最后启动Nginx:service nginx start {status|stop|reload}
以及设置开机自启动:chkconfig nginx on
PS:证书请自行购买,或者想办法申请,例如这里的泛域名证书?:https://ssl.ni-co.moe (所需的免费单域名企业邮局https://www.migadu.com/en/index.html)
后端配置文件修改
后端文件
v2ray.json
中的
streamSettings
段内修改为
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/ray"
}
},
修改后的全文如下:
{
"api": {
"services": [
"HandlerService",
"StatsService"
],
"tag": "api"
},
"stats": {
},
"inbound": {
"port": 8300,
"protocol": "vmess",
"settings": {
"clients": []
},
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/ray"
}
},
"tag": "proxy"
},
"inboundDetour": [{
"listen": "0.0.0.0",
"port": 8301,
"protocol": "dokodemo-door",
"settings": {
"address": "0.0.0.0"
},
"tag": "api"
}],
"log": {
"loglevel": "debug",
"access": "/var/log/v2ray/access.log",
"error": "/var/log/v2ray/error.log"
},
"outbound": {
"protocol": "freedom",
"settings": {}
},
"routing": {
"settings": {
"rules": [{
"inboundTag": [
"api"
],
"outboundTag": "api",
"type": "field"
}]
},
"strategy": "rules"
},
"policy": {
"levels": {
"1": {
"handshake": 4,
"connIdle": 300,
"uplinkOnly": 5,
"downlinkOnly": 30,
"statsUserUplink": true,
"statsUserDownlink": true
}
}
}
}
然后就启动后端,愉快的使用了,记得客户端的连接端口为443。