feat: proxy admin panel via nginx port 80 to avoid exposing 8444
Route the panel through a secret subpath on port 80, remove the separate 8444 listener, and document common troubleshooting in docs. Co-authored-by: Cursor <cursoragent@cursor.com>
This commit is contained in:
+11
-8
@@ -6,7 +6,7 @@
|
||||
|------|-----|
|
||||
| VPS IP | `47.76.87.111` |
|
||||
| 域名 | `66.hyf2.cc` |
|
||||
| 管理面板 | `https://66.hyf2.cc:8444` |
|
||||
| 管理面板 | `http://66.hyf2.cc/<PANEL_PATH>/` |
|
||||
| 部署目录 | `/opt/jiedian` |
|
||||
| 系统 | Ubuntu 22.04 / 24.04 |
|
||||
|
||||
@@ -28,7 +28,7 @@ dig +short A 66.hyf2.cc
|
||||
|
||||
### 2. 阿里云安全组
|
||||
|
||||
放行:`22`、`80`、`443/TCP`、`8443/UDP`、`8444/TCP`
|
||||
放行:`22`、`80`、`443/TCP`、`8443/UDP`(**无需 8444**)
|
||||
|
||||
---
|
||||
|
||||
@@ -44,7 +44,8 @@ bash scripts/install.sh
|
||||
安装结束会输出:
|
||||
|
||||
```
|
||||
管理面板: https://66.hyf2.cc:8444
|
||||
管理面板: http://66.hyf2.cc/jiedian-xxxx/
|
||||
面板路径: jiedian-xxxx (见 .env 中 PANEL_PATH)
|
||||
用户名: admin
|
||||
密码: xxxxx
|
||||
```
|
||||
@@ -72,11 +73,11 @@ bash scripts/install.sh
|
||||
## 安装脚本做了什么
|
||||
|
||||
1. 安装 sing-box、nginx、Python 面板依赖
|
||||
2. 防火墙放行 22/80/443/8443/8444
|
||||
2. 防火墙放行 22/80/443/8443(不暴露 8444)
|
||||
3. acme.sh 申请 `66.hyf2.cc` 证书
|
||||
4. 初始化 SQLite 节点库 + 默认管理员
|
||||
5. 生成 sing-box 配置并启动服务
|
||||
6. Nginx 8444 端口提供 HTTPS 管理面板
|
||||
6. Nginx 80 端口子路径反向代理管理面板
|
||||
|
||||
---
|
||||
|
||||
@@ -95,9 +96,10 @@ bash scripts/install.sh
|
||||
|
||||
```bash
|
||||
systemctl status sing-box jiedian-panel
|
||||
ss -tlnp | grep -E '443|8444'
|
||||
ss -tlnp | grep -E '80|443|5080'
|
||||
ss -ulnp | grep 8443
|
||||
curl -k -I https://66.hyf2.cc:8444/login
|
||||
PANEL_PATH=$(grep ^PANEL_PATH= /opt/jiedian/.env | cut -d= -f2)
|
||||
curl -I "http://66.hyf2.cc/${PANEL_PATH}/login"
|
||||
```
|
||||
|
||||
---
|
||||
@@ -106,9 +108,10 @@ curl -k -I https://66.hyf2.cc:8444/login
|
||||
|
||||
| 问题 | 处理 |
|
||||
|------|------|
|
||||
| 面板 404 | 确认 URL 含完整 `PANEL_PATH`,见 `grep PANEL_PATH .env` |
|
||||
| apt 锁被占用 | 等待自动更新结束,或 `bash scripts/install.sh` 会自动等待 |
|
||||
| sing-box 443 被占用 | `ss -tlnp \| grep 443`,停止占用进程后重装 |
|
||||
| 忘记面板密码 | `grep PANEL_PASSWORD /opt/jiedian/.env` 或重新 `generate-keys.sh` |
|
||||
| 忘记面板密码/路径 | `grep PANEL_ /opt/jiedian/.env` 或重新 `generate-keys.sh` |
|
||||
| SSH 主机密钥变更 | 重装系统后本地执行 `ssh-keygen -R 47.76.87.111` |
|
||||
|
||||
更多见 [troubleshooting.md](troubleshooting.md)。
|
||||
|
||||
Reference in New Issue
Block a user