Files
jiedian/README.md
T
2026-06-16 08:30:33 +08:00

110 lines
2.6 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
# jiedian — VPS 自建节点
个人/家庭自用的 **VLESS + Reality(主力)** + **Hysteria2(备用)** 双栈方案,基于 [sing-box](https://github.com/SagerNet/sing-box)。
**仓库**https://git.bz121.com/dekun/jiedian.git
**部署路径**`/opt/jiedian`Ubuntu
| 项目 | 值 |
|------|-----|
| VPS IP | `47.76.87.111` |
| 域名 | `66.hyf2.cc` |
> 完整部署步骤见 **[docs/DEPLOY.md](docs/DEPLOY.md)**
---
## 快速部署(Ubuntu VPS
```bash
ssh root@47.76.87.111
apt update && apt install -y git
git clone https://git.bz121.com/dekun/jiedian.git /opt/jiedian
cd /opt/jiedian
bash scripts/install.sh
```
安装完成后:
```bash
cat /opt/jiedian/client/generated/share-links.txt
```
客户端导入见 [docs/client-import.md](docs/client-import.md)。
---
## 架构
```
客户端 (Win/iOS/Android)
├─ TCP 443 ──► sing-box VLESS+Reality ──► 直连出站
└─ UDP 8443 ─► sing-box Hysteria2 ─────► 直连出站
Nginx 127.0.0.1:8080 ← 伪装静态页(fallback
```
详细选型见 [docs/STACK.md](docs/STACK.md)。
---
## 目录结构
```
/opt/jiedian/
├── .env # 环境变量(IP/域名/密钥,已预填)
├── scripts/
│ ├── generate-keys.sh # 生成 UUID / Reality 密钥 / Hy2 密码
│ ├── install.sh # 一键部署
│ └── render-client.sh # 本地渲染客户端配置
├── server/
│ ├── sing-box.json.template
│ └── nginx/ # fallback 伪装站
├── client/
│ └── sing-box-client.json.template
└── docs/
├── DEPLOY.md # Ubuntu 部署指南(主文档)
├── client-import.md # 客户端导入
└── troubleshooting.md # 故障排查
```
---
## 端口与防火墙
| 端口 | 协议 | 用途 |
|------|------|------|
| 22 | TCP | SSH |
| 80 | TCP | HTTPLet's Encrypt 证书验证) |
| 443 | TCP | VLESS + Reality |
| 8443 | UDP | Hysteria2 |
---
## 常用运维
```bash
systemctl status sing-box
journalctl -u sing-box -f
sing-box check -c /etc/sing-box/config.json && systemctl restart sing-box
/root/.acme.sh/acme.sh --renew -d 66.hyf2.cc --force
```
---
## 防墙要点
1. 不要公开分享节点链接
2. Reality SNI 使用 `www.microsoft.com`,不要用 `66.hyf2.cc`
3. 客户端开启 uTLS / chrome 指纹
4. 被封后:换 serverName → 换 IP → 换 VPS 地区
---
## 免责声明
本项目仅供学习网络技术使用。请遵守当地法律法规。