环境centos7.9,声明:此贴只作为技术研究所用,因此所导致的一切后果由使用者自己承担

一键安装脚本 
curl -O https://raw.githubusercontent.com/atrandys/trojan/master/trojan_centos7.sh && chmod +x trojan_centos7.sh && ./trojan_centos7.sh

以下是手动按步骤安装

一:准备工作

1.1 关闭防火墙

systemctl stop firewalld
systemctl disable firewalld

vi /etc/selinux/config

SELINUX=disabled

setenforce 0

1.2 安装需要的工具

yum -y install bind-utils wget unzip zip curl tar

1.3 准备个域名,如 abc.yuming.com

并且配置域名解析到要安装trojan服务端的机器的公网IP上

二: 开始操作

2.1 安装nginx

rpm -Uvh http://nginx.org/packages/centos/7/noarch/RPMS/nginx-release-centos-7-0.el7.ngx.noarch.rpm
yum install -y nginx
systemctl enable nginx.service

设置伪装站
rm -rf /usr/share/nginx/html/*
cd /usr/share/nginx/html/
wget https://github.com/atrandys/v2ray-ws-tls/raw/master/web.zip
unzip web.zip
systemctl restart nginx.service

2.2 申请https证书,直接在服务器直接操作即可,不用单独申请

mkdir /usr/src/trojan-cert

curl https://get.acme.sh | sh
    ~/.acme.sh/acme.sh  --issue  -d abc.yuming.com --webroot /usr/share/nginx/html/
        ~/.acme.sh/acme.sh  --installcert  -d  abc.yuming.com \
        --key-file   /usr/src/trojan-cert/private.key \
        --fullchain-file /usr/src/trojan-cert/fullchain.cer \
        --reloadcmd  "systemctl force-reload  nginx.service"

2.3 下载trojan

cd /usr/src

wget https://github.com/trojan-gfw/trojan/releases/download/v1.14.0/trojan-1.14.0-linux-amd64.tar.xz
tar xf trojan-1.*

2.4 配置server.conf文件

vi /usr/src/trojan/server.conf

{
    "run_type": "server",
    "local_addr": "0.0.0.0",
    "local_port": 443,
    "remote_addr": "127.0.0.1",
    "remote_port": 80,
    "password": [
        "自己想个密码,客户端连接需要用到"
    ],
    "log_level": 1,
    "ssl": {
        "cert": "/usr/src/trojan-cert/fullchain.cer",
        "key": "/usr/src/trojan-cert/private.key",
        "key_password": "",
        "cipher_tls13":"TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
    "prefer_server_cipher": true,
        "alpn": [
            "http/1.1"
        ],
        "reuse_session": true,
        "session_ticket": false,
        "session_timeout": 600,
        "plain_http_response": "",
        "curves": "",
        "dhparam": ""
    },
    "tcp": {
        "no_delay": true,
        "keep_alive": true,
        "fast_open": false,
        "fast_open_qlen": 20
    },
    "mysql": {
        "enabled": false,
        "server_addr": "127.0.0.1",
        "server_port": 3306,
        "database": "trojan",
        "username": "trojan",
        "password": ""
    }
}

2.5 测试启动

sh /usr/src/trojan/trojan -c "/usr/src/trojan/server.conf"  

如果启动没问题的话就制作个启动脚本,并配置自启动

vi /usr/lib/systemd/system/trojan.service

[Unit]  
Description=trojan  
After=network.target  
   
[Service]  
Type=simple  
PIDFile=/usr/src/trojan/trojan/trojan.pid
ExecStart=/usr/src/trojan/trojan -c "/usr/src/trojan/server.conf"  
ExecReload=  
ExecStop=/usr/src/trojan/trojan  
PrivateTmp=true  
   
[Install]  
WantedBy=multi-user.target

添加可执行权限

chmod +x /usr/lib/systemd/system/trojan.service
systemctl start trojan.service
systemctl enable trojan.service

至此服务端安装完毕

三:客户端配置

3.1 客户端下载

这个比较全面: 建议下载地址

之后执行 v2rayN.exe

 保存后再界面下方选择代理模式即可