mirror of https://github.com/dnomd343/TProxy
commit
711df03116
4 changed files with 176 additions and 0 deletions
@ -0,0 +1,18 @@ |
|||
FROM alpine as asset |
|||
COPY ./asset.sh / |
|||
RUN apk --update add --no-cache curl wget && \ |
|||
sh /asset.sh |
|||
|
|||
FROM alpine |
|||
COPY . /tmp/xray |
|||
COPY --from=asset /tmp/asset/ /tmp/xray/asset/ |
|||
RUN apk --update add --no-cache iptables ip6tables net-tools curl && \ |
|||
mkdir -p /etc/xray/conf && \ |
|||
mkdir -p /etc/xray/expose/log && \ |
|||
mkdir -p /etc/xray/expose/segment && \ |
|||
mv /tmp/xray/tproxy.sh / && \ |
|||
mv /tmp/xray/load.sh /etc/xray/ && \ |
|||
mv /tmp/xray/asset/xray /usr/bin/ && \ |
|||
mv /tmp/xray/asset /etc/xray/ && \ |
|||
rm -rf /tmp/xray |
|||
CMD ["sh","/tproxy.sh"] |
|||
@ -0,0 +1,17 @@ |
|||
get_github_latest_version() { |
|||
VERSION=$(curl --silent "https://api.github.com/repos/$1/releases/latest" | grep '"tag_name":' | sed -E 's/.*"([^"]+)".*/\1/'); |
|||
} |
|||
|
|||
ASSET_DIR="/tmp/asset" |
|||
mkdir -p $ASSET_DIR/pkg |
|||
|
|||
XRAY_PKG_NAME="Xray-linux-arm64-v8a.zip" |
|||
get_github_latest_version "XTLS/Xray-core" |
|||
wget -P $ASSET_DIR/pkg "https://hub.fastgit.org/XTLS/Xray-core/releases/download/$VERSION/$XRAY_PKG_NAME" |
|||
unzip $ASSET_DIR/pkg/$XRAY_PKG_NAME -d /$ASSET_DIR/pkg |
|||
cp $ASSET_DIR/pkg/xray $ASSET_DIR |
|||
rm -rf $ASSET_DIR/pkg |
|||
|
|||
get_github_latest_version "Loyalsoldier/v2ray-rules-dat" |
|||
wget -P $ASSET_DIR "https://hub.fastgit.org/Loyalsoldier/v2ray-rules-dat/releases/download/$VERSION/geoip.dat" |
|||
wget -P $ASSET_DIR "https://hub.fastgit.org/Loyalsoldier/v2ray-rules-dat/releases/download/$VERSION/geosite.dat" |
|||
@ -0,0 +1,114 @@ |
|||
XRAY_DIR="/etc/xray" |
|||
LOG_DIR="$XRAY_DIR/expose/log" |
|||
load_inbounds(){ |
|||
cat>$XRAY_DIR/conf/inbounds.json<<EOF |
|||
{ |
|||
"inbounds": [ |
|||
{ |
|||
"port": 7288, |
|||
"protocol": "dokodemo-door", |
|||
"sniffing": { |
|||
"enabled": true, |
|||
"destOverride": [ |
|||
"http", |
|||
"tls" |
|||
] |
|||
}, |
|||
"settings": { |
|||
"network": "tcp,udp", |
|||
"followRedirect": true |
|||
}, |
|||
"streamSettings": { |
|||
"sockopt": { |
|||
"tproxy": "tproxy" |
|||
} |
|||
} |
|||
}, |
|||
{ |
|||
"port": 1080, |
|||
"protocol": "socks", |
|||
"settings": { |
|||
"udp": true |
|||
} |
|||
}, |
|||
{ |
|||
"port": 1081, |
|||
"protocol": "http", |
|||
"settings": { |
|||
"allowTransparent": false |
|||
} |
|||
} |
|||
] |
|||
} |
|||
EOF |
|||
} |
|||
|
|||
load_log(){ |
|||
cat>$XRAY_DIR/conf/log.json<<EOF |
|||
{ |
|||
"log": { |
|||
"loglevel": "warning", |
|||
"access": "$LOG_DIR/access.log", |
|||
"error": "$LOG_DIR/error.log" |
|||
} |
|||
} |
|||
EOF |
|||
} |
|||
|
|||
load_outbounds(){ |
|||
cat>$XRAY_DIR/expose/outbounds.json<<EOF |
|||
{ |
|||
"outbounds": [ |
|||
{ |
|||
"tag": "node", |
|||
"protocol": "freedom" |
|||
} |
|||
] |
|||
} |
|||
EOF |
|||
} |
|||
|
|||
load_routing(){ |
|||
cat>$XRAY_DIR/expose/routing.json<<EOF |
|||
{ |
|||
"routing": { |
|||
"domainStrategy": "AsIs", |
|||
"rules": [ |
|||
{ |
|||
"type": "field", |
|||
"ip": [ |
|||
"0.0.0.0/0" |
|||
], |
|||
"outboundTag": "node" |
|||
} |
|||
] |
|||
} |
|||
} |
|||
EOF |
|||
} |
|||
|
|||
load_ipv4(){ |
|||
cat>$XRAY_DIR/expose/segment/ipv4<<EOF |
|||
224.0.0.0/3 |
|||
EOF |
|||
} |
|||
|
|||
load_ipv6(){ |
|||
cat>$XRAY_DIR/expose/segment/ipv6<<EOF |
|||
FF00::/8 |
|||
EOF |
|||
} |
|||
|
|||
mkdir -p $XRAY_DIR/conf |
|||
mkdir -p $XRAY_DIR/expose/segment |
|||
mkdir -p $LOG_DIR |
|||
[ ! -s "$LOG_DIR/access.log" ] && touch $LOG_DIR/access.log |
|||
[ ! -s "$LOG_DIR/error.log" ] && touch $LOG_DIR/error.log |
|||
load_inbounds |
|||
load_log |
|||
[ ! -s "$XRAY_DIR/expose/outbounds.json" ] && load_outbounds |
|||
[ ! -s "$XRAY_DIR/expose/routing.json" ] && load_routing |
|||
cp $XRAY_DIR/expose/outbounds.json $XRAY_DIR/conf/ |
|||
cp $XRAY_DIR/expose/routing.json $XRAY_DIR/conf/ |
|||
[ ! -s "$XRAY_DIR/expose/segment/ipv4" ] && load_ipv4 |
|||
[ ! -s "$XRAY_DIR/expose/segment/ipv6" ] && load_ipv6 |
|||
@ -0,0 +1,27 @@ |
|||
[ ! -s "/etc/xray/expose/custom.sh" ] && touch /etc/xray/expose/custom.sh |
|||
sh /etc/xray/expose/custom.sh |
|||
sh /etc/xray/load.sh |
|||
|
|||
ip rule add fwmark 1 table 100 |
|||
ip route add local 0.0.0.0/0 dev lo table 100 |
|||
iptables -t mangle -N XRAY |
|||
while read -r segment |
|||
do |
|||
eval "iptables -t mangle -A XRAY -d $segment -j RETURN" |
|||
done < /etc/xray/expose/segment/ipv4 |
|||
iptables -t mangle -A XRAY -p tcp -j TPROXY --on-port 7288 --tproxy-mark 1 |
|||
iptables -t mangle -A XRAY -p udp -j TPROXY --on-port 7288 --tproxy-mark 1 |
|||
iptables -t mangle -A PREROUTING -j XRAY |
|||
|
|||
ip -6 rule add fwmark 1 table 106 |
|||
ip -6 route add local ::/0 dev lo table 106 |
|||
ip6tables -t mangle -N XRAY6 |
|||
while read -r segment |
|||
do |
|||
eval "ip6tables -t mangle -A XRAY6 -d $segment -j RETURN" |
|||
done < /etc/xray/expose/segment/ipv6 |
|||
ip6tables -t mangle -A XRAY6 -p tcp -j TPROXY --on-port 7288 --tproxy-mark 1 |
|||
ip6tables -t mangle -A XRAY6 -p udp -j TPROXY --on-port 7288 --tproxy-mark 1 |
|||
ip6tables -t mangle -A PREROUTING -j XRAY6 |
|||
|
|||
xray -confdir /etc/xray/conf/ |
|||
Loading…
Reference in new issue