下述教程安装环境为:Centos 6.9
安装Nginx配置SSL
yum install -y nginx
接着进入/etc/nginx/conf.d
编辑文件default.conf
为以下内容,注意修改证书路径、域名与V2Ray监听端口
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 | server { listen 80; server_name luckykills.xyz; rewrite ^(.*)$ https://${server_name}$1 permanent; } server { listen 443 ssl; ssl on; ssl_certificate /etc/nginx/v2ray.crt; ssl_certificate_key /etc/nginx/v2ray.key; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers HIGH:!aNULL:!MD5; server_name luckykills.xyz; location /ray { proxy_redirect off; proxy_pass http://127.0.0.1:8080; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host $http_host; } } |
第1行至第5行,我添加的监听http跳转至https,亦可删除这几行
最后启动Nginx:service nginx start {status|stop|reload}
以及设置开机自启动:chkconfig nginx on
PS:证书请自行购买,或者想办法申请,例如这里的泛域名证书?:https://ssl.ni-co.moe (所需的免费单域名企业邮局https://www.migadu.com/en/index.html)
后端配置文件修改
后端文件v2ray.json
中的streamSettings
段内修改为
1 2 3 4 5 6 | "streamSettings": { "network": "ws", "wsSettings": { "path": "/ray" } }, |
修改后的全文如下:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 | { "api": { "services": [ "HandlerService", "StatsService" ], "tag": "api" }, "stats": { }, "inbound": { "port": 8300, "protocol": "vmess", "settings": { "clients": [] }, "streamSettings": { "network": "ws", "wsSettings": { "path": "/ray" } }, "tag": "proxy" }, "inboundDetour": [{ "listen": "0.0.0.0", "port": 8301, "protocol": "dokodemo-door", "settings": { "address": "0.0.0.0" }, "tag": "api" }], "log": { "loglevel": "debug", "access": "/var/log/v2ray/access.log", "error": "/var/log/v2ray/error.log" }, "outbound": { "protocol": "freedom", "settings": {} }, "routing": { "settings": { "rules": [{ "inboundTag": [ "api" ], "outboundTag": "api", "type": "field" }] }, "strategy": "rules" }, "policy": { "levels": { "1": { "handshake": 4, "connIdle": 300, "uplinkOnly": 5, "downlinkOnly": 30, "statsUserUplink": true, "statsUserDownlink": true } } } } |
然后就启动后端,愉快的使用了,记得客户端的连接端口为443。