78b85c0d83
Add Nginx SSL panel config, enable-panel-https.sh, secure Flask cookies, and update docs for https login. Co-authored-by: Cursor <cursoragent@cursor.com>
103 lines
2.5 KiB
Markdown
103 lines
2.5 KiB
Markdown
# 运维与故障排查
|
||
|
||
## 服务检查
|
||
|
||
```bash
|
||
systemctl is-active sing-box jiedian-panel nginx
|
||
sing-box check -c /etc/sing-box/config.json
|
||
ss -ulnp | grep 8443 # 默认 8443,多节点还有 8444…
|
||
ss -tlnp | grep :80 # Nginx 面板
|
||
```
|
||
|
||
---
|
||
|
||
## 常见问题
|
||
|
||
### Hy2 连不上 / 延迟 -1
|
||
|
||
**检查顺序:**
|
||
|
||
1. **安全组** 是否放行 `8443–8499/UDP`(不只 8443)
|
||
2. **域名** 是否解析到 VPS IP:`dig +short A 你的域名`
|
||
3. **证书** 是否存在:`ls /etc/sing-box/certs/fullchain.pem`
|
||
4. 从面板 **重新复制** Hy2 链接(增删节点后端口会变)
|
||
5. 重启 sing-box:`systemctl restart sing-box`
|
||
|
||
**客户端核对:**
|
||
|
||
| 项 | 正确值 |
|
||
|----|--------|
|
||
| 地址 | 域名(如 `66.hyf2.cc`),不是 IP |
|
||
| SNI | 与域名相同 |
|
||
| 端口 | 面板显示的端口(8443 / 8444…) |
|
||
|
||
### 面板打不开
|
||
|
||
- 使用 **`https://域名/PANEL_PATH/`** 登录(推荐)
|
||
- 输入 `http://` 也会自动跳转到 HTTPS
|
||
- 安全组需放行 **443/TCP** 与 **80/TCP**(ACME 续期)
|
||
|
||
```bash
|
||
grep PANEL_PATH /opt/jiedian/.env
|
||
curl -Ik "https://$(grep ^DOMAIN= /opt/jiedian/.env | cut -d= -f2)/$(grep ^PANEL_PATH= /opt/jiedian/.env | cut -d= -f2)/login"
|
||
```
|
||
|
||
### 旧 VPS 升级 HTTPS 面板
|
||
|
||
```bash
|
||
cd /opt/jiedian && git pull
|
||
sudo bash scripts/enable-panel-https.sh
|
||
systemctl restart jiedian-panel
|
||
```
|
||
|
||
### 多节点全部显示离线
|
||
|
||
1. 更新并重载:
|
||
|
||
```bash
|
||
cd /opt/jiedian && git pull
|
||
python3 scripts/render-server.py
|
||
systemctl restart sing-box jiedian-panel
|
||
```
|
||
|
||
2. 安全组放行 `8443–8499/UDP`
|
||
3. 各节点 **重新复制** Hy2 链接(第二节点端口 8444…)
|
||
|
||
### 添加/删除节点后白屏或 503
|
||
|
||
创建/删除节点会后台重启 sing-box,等 **5–10 秒** 刷新;新版前端会自动重试。
|
||
|
||
### 忘记面板密码
|
||
|
||
```bash
|
||
grep PANEL_PASSWORD /opt/jiedian/.env
|
||
# 或
|
||
bash /opt/jiedian/scripts/generate-keys.sh
|
||
systemctl restart jiedian-panel
|
||
```
|
||
|
||
### 从旧版 VLESS 迁移后客户端仍连不上
|
||
|
||
1. VPS 执行:`bash /opt/jiedian/scripts/remove-vless.sh`
|
||
2. 客户端 **删除所有 VLESS 节点**
|
||
3. 从面板 **仅导入 Hy2 链接**
|
||
|
||
---
|
||
|
||
## 端口一览
|
||
|
||
| 端口 | 协议 | 用途 |
|
||
|------|------|------|
|
||
| 22 | TCP | SSH |
|
||
| 80 | TCP | ACME 续期 |
|
||
| 443 | TCP | HTTPS 管理面板 |
|
||
| 8443–8499 | UDP | Hysteria2 |
|
||
|
||
---
|
||
|
||
## 相关文档
|
||
|
||
- 部署:[DEPLOY.md](DEPLOY.md)
|
||
- 使用:[GUIDE.md](GUIDE.md)
|
||
- 客户端:[client-import.md](client-import.md)
|