mirror of https://github.com/dnomd343/TProxy
commit
711df03116
4 changed files with 176 additions and 0 deletions
@ -0,0 +1,18 @@ |
|||||
|
FROM alpine as asset |
||||
|
COPY ./asset.sh / |
||||
|
RUN apk --update add --no-cache curl wget && \ |
||||
|
sh /asset.sh |
||||
|
|
||||
|
FROM alpine |
||||
|
COPY . /tmp/xray |
||||
|
COPY --from=asset /tmp/asset/ /tmp/xray/asset/ |
||||
|
RUN apk --update add --no-cache iptables ip6tables net-tools curl && \ |
||||
|
mkdir -p /etc/xray/conf && \ |
||||
|
mkdir -p /etc/xray/expose/log && \ |
||||
|
mkdir -p /etc/xray/expose/segment && \ |
||||
|
mv /tmp/xray/tproxy.sh / && \ |
||||
|
mv /tmp/xray/load.sh /etc/xray/ && \ |
||||
|
mv /tmp/xray/asset/xray /usr/bin/ && \ |
||||
|
mv /tmp/xray/asset /etc/xray/ && \ |
||||
|
rm -rf /tmp/xray |
||||
|
CMD ["sh","/tproxy.sh"] |
||||
@ -0,0 +1,17 @@ |
|||||
|
get_github_latest_version() { |
||||
|
VERSION=$(curl --silent "https://api.github.com/repos/$1/releases/latest" | grep '"tag_name":' | sed -E 's/.*"([^"]+)".*/\1/'); |
||||
|
} |
||||
|
|
||||
|
ASSET_DIR="/tmp/asset" |
||||
|
mkdir -p $ASSET_DIR/pkg |
||||
|
|
||||
|
XRAY_PKG_NAME="Xray-linux-arm64-v8a.zip" |
||||
|
get_github_latest_version "XTLS/Xray-core" |
||||
|
wget -P $ASSET_DIR/pkg "https://hub.fastgit.org/XTLS/Xray-core/releases/download/$VERSION/$XRAY_PKG_NAME" |
||||
|
unzip $ASSET_DIR/pkg/$XRAY_PKG_NAME -d /$ASSET_DIR/pkg |
||||
|
cp $ASSET_DIR/pkg/xray $ASSET_DIR |
||||
|
rm -rf $ASSET_DIR/pkg |
||||
|
|
||||
|
get_github_latest_version "Loyalsoldier/v2ray-rules-dat" |
||||
|
wget -P $ASSET_DIR "https://hub.fastgit.org/Loyalsoldier/v2ray-rules-dat/releases/download/$VERSION/geoip.dat" |
||||
|
wget -P $ASSET_DIR "https://hub.fastgit.org/Loyalsoldier/v2ray-rules-dat/releases/download/$VERSION/geosite.dat" |
||||
@ -0,0 +1,114 @@ |
|||||
|
XRAY_DIR="/etc/xray" |
||||
|
LOG_DIR="$XRAY_DIR/expose/log" |
||||
|
load_inbounds(){ |
||||
|
cat>$XRAY_DIR/conf/inbounds.json<<EOF |
||||
|
{ |
||||
|
"inbounds": [ |
||||
|
{ |
||||
|
"port": 7288, |
||||
|
"protocol": "dokodemo-door", |
||||
|
"sniffing": { |
||||
|
"enabled": true, |
||||
|
"destOverride": [ |
||||
|
"http", |
||||
|
"tls" |
||||
|
] |
||||
|
}, |
||||
|
"settings": { |
||||
|
"network": "tcp,udp", |
||||
|
"followRedirect": true |
||||
|
}, |
||||
|
"streamSettings": { |
||||
|
"sockopt": { |
||||
|
"tproxy": "tproxy" |
||||
|
} |
||||
|
} |
||||
|
}, |
||||
|
{ |
||||
|
"port": 1080, |
||||
|
"protocol": "socks", |
||||
|
"settings": { |
||||
|
"udp": true |
||||
|
} |
||||
|
}, |
||||
|
{ |
||||
|
"port": 1081, |
||||
|
"protocol": "http", |
||||
|
"settings": { |
||||
|
"allowTransparent": false |
||||
|
} |
||||
|
} |
||||
|
] |
||||
|
} |
||||
|
EOF |
||||
|
} |
||||
|
|
||||
|
load_log(){ |
||||
|
cat>$XRAY_DIR/conf/log.json<<EOF |
||||
|
{ |
||||
|
"log": { |
||||
|
"loglevel": "warning", |
||||
|
"access": "$LOG_DIR/access.log", |
||||
|
"error": "$LOG_DIR/error.log" |
||||
|
} |
||||
|
} |
||||
|
EOF |
||||
|
} |
||||
|
|
||||
|
load_outbounds(){ |
||||
|
cat>$XRAY_DIR/expose/outbounds.json<<EOF |
||||
|
{ |
||||
|
"outbounds": [ |
||||
|
{ |
||||
|
"tag": "node", |
||||
|
"protocol": "freedom" |
||||
|
} |
||||
|
] |
||||
|
} |
||||
|
EOF |
||||
|
} |
||||
|
|
||||
|
load_routing(){ |
||||
|
cat>$XRAY_DIR/expose/routing.json<<EOF |
||||
|
{ |
||||
|
"routing": { |
||||
|
"domainStrategy": "AsIs", |
||||
|
"rules": [ |
||||
|
{ |
||||
|
"type": "field", |
||||
|
"ip": [ |
||||
|
"0.0.0.0/0" |
||||
|
], |
||||
|
"outboundTag": "node" |
||||
|
} |
||||
|
] |
||||
|
} |
||||
|
} |
||||
|
EOF |
||||
|
} |
||||
|
|
||||
|
load_ipv4(){ |
||||
|
cat>$XRAY_DIR/expose/segment/ipv4<<EOF |
||||
|
224.0.0.0/3 |
||||
|
EOF |
||||
|
} |
||||
|
|
||||
|
load_ipv6(){ |
||||
|
cat>$XRAY_DIR/expose/segment/ipv6<<EOF |
||||
|
FF00::/8 |
||||
|
EOF |
||||
|
} |
||||
|
|
||||
|
mkdir -p $XRAY_DIR/conf |
||||
|
mkdir -p $XRAY_DIR/expose/segment |
||||
|
mkdir -p $LOG_DIR |
||||
|
[ ! -s "$LOG_DIR/access.log" ] && touch $LOG_DIR/access.log |
||||
|
[ ! -s "$LOG_DIR/error.log" ] && touch $LOG_DIR/error.log |
||||
|
load_inbounds |
||||
|
load_log |
||||
|
[ ! -s "$XRAY_DIR/expose/outbounds.json" ] && load_outbounds |
||||
|
[ ! -s "$XRAY_DIR/expose/routing.json" ] && load_routing |
||||
|
cp $XRAY_DIR/expose/outbounds.json $XRAY_DIR/conf/ |
||||
|
cp $XRAY_DIR/expose/routing.json $XRAY_DIR/conf/ |
||||
|
[ ! -s "$XRAY_DIR/expose/segment/ipv4" ] && load_ipv4 |
||||
|
[ ! -s "$XRAY_DIR/expose/segment/ipv6" ] && load_ipv6 |
||||
@ -0,0 +1,27 @@ |
|||||
|
[ ! -s "/etc/xray/expose/custom.sh" ] && touch /etc/xray/expose/custom.sh |
||||
|
sh /etc/xray/expose/custom.sh |
||||
|
sh /etc/xray/load.sh |
||||
|
|
||||
|
ip rule add fwmark 1 table 100 |
||||
|
ip route add local 0.0.0.0/0 dev lo table 100 |
||||
|
iptables -t mangle -N XRAY |
||||
|
while read -r segment |
||||
|
do |
||||
|
eval "iptables -t mangle -A XRAY -d $segment -j RETURN" |
||||
|
done < /etc/xray/expose/segment/ipv4 |
||||
|
iptables -t mangle -A XRAY -p tcp -j TPROXY --on-port 7288 --tproxy-mark 1 |
||||
|
iptables -t mangle -A XRAY -p udp -j TPROXY --on-port 7288 --tproxy-mark 1 |
||||
|
iptables -t mangle -A PREROUTING -j XRAY |
||||
|
|
||||
|
ip -6 rule add fwmark 1 table 106 |
||||
|
ip -6 route add local ::/0 dev lo table 106 |
||||
|
ip6tables -t mangle -N XRAY6 |
||||
|
while read -r segment |
||||
|
do |
||||
|
eval "ip6tables -t mangle -A XRAY6 -d $segment -j RETURN" |
||||
|
done < /etc/xray/expose/segment/ipv6 |
||||
|
ip6tables -t mangle -A XRAY6 -p tcp -j TPROXY --on-port 7288 --tproxy-mark 1 |
||||
|
ip6tables -t mangle -A XRAY6 -p udp -j TPROXY --on-port 7288 --tproxy-mark 1 |
||||
|
ip6tables -t mangle -A PREROUTING -j XRAY6 |
||||
|
|
||||
|
xray -confdir /etc/xray/conf/ |
||||
Loading…
Reference in new issue