Initial commit: sing-box Reality + Hysteria2 deploy for 66.hyf2.cc
Ubuntu deployment at /opt/jiedian with pre-filled env for 47.76.87.111. Co-authored-by: Cursor <cursoragent@cursor.com>
This commit is contained in:
@@ -0,0 +1,108 @@
|
||||
# jiedian — VPS 自建节点
|
||||
|
||||
个人/家庭自用的 **VLESS + Reality(主力)** + **Hysteria2(备用)** 双栈方案,基于 [sing-box](https://github.com/SagerNet/sing-box)。
|
||||
|
||||
**仓库**:https://git.bz121.com/dekun/jiedian.git
|
||||
**部署路径**:`/opt/jiedian`(Ubuntu)
|
||||
|
||||
| 项目 | 值 |
|
||||
|------|-----|
|
||||
| VPS IP | `47.76.87.111` |
|
||||
| 域名 | `66.hyf2.cc` |
|
||||
|
||||
> 完整部署步骤见 **[docs/DEPLOY.md](docs/DEPLOY.md)**
|
||||
|
||||
---
|
||||
|
||||
## 快速部署(Ubuntu VPS)
|
||||
|
||||
```bash
|
||||
ssh root@47.76.87.111
|
||||
|
||||
apt update && apt install -y git
|
||||
git clone https://git.bz121.com/dekun/jiedian.git /opt/jiedian
|
||||
cd /opt/jiedian
|
||||
bash scripts/install.sh
|
||||
```
|
||||
|
||||
安装完成后:
|
||||
|
||||
```bash
|
||||
cat /opt/jiedian/client/generated/share-links.txt
|
||||
```
|
||||
|
||||
客户端导入见 [docs/client-import.md](docs/client-import.md)。
|
||||
|
||||
---
|
||||
|
||||
## 架构
|
||||
|
||||
```
|
||||
客户端 (Win/iOS/Android)
|
||||
│
|
||||
├─ TCP 443 ──► sing-box VLESS+Reality ──► 直连出站
|
||||
│
|
||||
└─ UDP 8443 ─► sing-box Hysteria2 ─────► 直连出站
|
||||
|
||||
Nginx 127.0.0.1:8080 ← 伪装静态页(fallback)
|
||||
```
|
||||
|
||||
详细选型见 [docs/STACK.md](docs/STACK.md)。
|
||||
|
||||
---
|
||||
|
||||
## 目录结构
|
||||
|
||||
```
|
||||
/opt/jiedian/
|
||||
├── .env # 环境变量(IP/域名/密钥,已预填)
|
||||
├── scripts/
|
||||
│ ├── generate-keys.sh # 生成 UUID / Reality 密钥 / Hy2 密码
|
||||
│ ├── install.sh # 一键部署
|
||||
│ └── render-client.sh # 本地渲染客户端配置
|
||||
├── server/
|
||||
│ ├── sing-box.json.template
|
||||
│ └── nginx/ # fallback 伪装站
|
||||
├── client/
|
||||
│ └── sing-box-client.json.template
|
||||
└── docs/
|
||||
├── DEPLOY.md # Ubuntu 部署指南(主文档)
|
||||
├── client-import.md # 客户端导入
|
||||
└── troubleshooting.md # 故障排查
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
## 端口与防火墙
|
||||
|
||||
| 端口 | 协议 | 用途 |
|
||||
|------|------|------|
|
||||
| 22 | TCP | SSH |
|
||||
| 443 | TCP | VLESS + Reality |
|
||||
| 8443 | UDP | Hysteria2 |
|
||||
|
||||
---
|
||||
|
||||
## 常用运维
|
||||
|
||||
```bash
|
||||
systemctl status sing-box
|
||||
journalctl -u sing-box -f
|
||||
sing-box check -c /etc/sing-box/config.json && systemctl restart sing-box
|
||||
/root/.acme.sh/acme.sh --renew -d 66.hyf2.cc --force
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
## 防墙要点
|
||||
|
||||
1. 不要公开分享节点链接
|
||||
2. Reality SNI 使用 `www.microsoft.com`,不要用 `66.hyf2.cc`
|
||||
3. 客户端开启 uTLS / chrome 指纹
|
||||
4. 被封后:换 serverName → 换 IP → 换 VPS 地区
|
||||
|
||||
---
|
||||
|
||||
## 免责声明
|
||||
|
||||
本项目仅供学习网络技术使用。请遵守当地法律法规。
|
||||
Reference in New Issue
Block a user