V2ray ws+tls+Nginx+CDN的配置方法
hyui 6/9/2019 linuxv2raynginxcloudflare
# 申请SSL
- 可以去Let's Encrypt申请一个免费的SSL证书,申请教程网上有很多
- 如果嫌麻烦也可以装个宝塔面板,可以直接一键申请SSL
# 配置Nginx
修改网站对应的Nginx配置文件。
ssl_protocols处可以改为:
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers处可以改为:
ssl_ciphers HIGH:!aNULL:!MD5;
然后在当前server的最后一个"}"号之前加入:
location /v/ {
proxy_redirect off;
proxy_pass http://127.0.0.1:{端口号}/;
proxy_http_version 1.1;
proxy_set_header Host "{网址}";
proxy_set_header Connection "Upgrade";
proxy_set_header Upgrade "WebSocket";
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_intercept_errors on;
}
#{端口号}处改为你要让v2ray运行的端口号
#{网址}处写你的网址就行
# 修改V2ray配置
修改V2ray的配置文件config.json
{
"log" : {
"access": "/var/log/v2ray/access.log",
"error": "/var/log/v2ray/error.log",
"loglevel": "info"
},
"inbound": {
"port": {端口},
"listen": "127.0.0.1",
"protocol": "vmess",
"settings": {
"clients": [
{
"id": "{UUID}",
"level": 1,
"alterId": 64,
"security": "none"
}
]
},
"streamSettings": {
"network": "ws",
"security": "auto",
"wsSettings": {
"path": "/"
}
}
},
"outbound": {
"protocol": "freedom",
"settings": {}
}
}
#{端口}处填写V2ray运行端口
#{UUID}处填写自己随机生成的UUID
# 在客户端测试
打开客户端 地址填写web的网址 端口443 用户ID是服务端中自己生成的UUID 传输协议选ws 伪装域名填写web的网址 路径填写/v/ 底层传输安全选tls 进行连接测试
# 在CloudFlare中打开CDN(非必需)
# 测试成功以后去cloudflare那里点亮对应解析记录中的灰色的云朵(未使用CDN时是灰色的,使用时是黄色)
# VLESS协议
# 在VMESS协议配置文件上进行改动
{
"log" : {
"access": "/var/log/v2ray/access.log",
"error": "/var/log/v2ray/error.log",
"loglevel": "info"
},
"inbound": {
"port": {端口},
"listen": "127.0.0.1",
"protocol": "vless",
"settings": {
"clients": [
{
"id": "{UUID}",
"level": 1,
"alterId": 64,
"security": "none"
}
],
"decryption": "none"
},
"streamSettings": {
"network": "ws",
"security": "auto",
"wsSettings": {
"path": "/"
}
}
},
"outbound": {
"protocol": "freedom",
"settings": {}
}
}
- 对protocol项进行更改,将"vmess"替换为"vless"
- 增添一个"decryption": "none"项