环境centos7.9,声明:此贴只作为技术研究所用,因此所导致的一切后果由使用者自己承担
一键安装脚本curl -O https://raw.githubusercontent.com/atrandys/trojan/master/trojan_centos7.sh && chmod +x trojan_centos7.sh && ./trojan_centos7.sh
以下是手动按步骤安装
一:准备工作1.1 关闭防火墙
systemctl stop firewalld
systemctl disable firewalld
vi /etc/selinux/config
SELINUX=disabled
setenforce 0
1.2 安装需要的工具
yum -y install bind-utils wget unzip zip curl tar
1.3 准备个域名,如 abc.yuming.com
并且配置域名解析到要安装trojan服务端的机器的公网IP上
二: 开始操作2.1 安装nginx
rpm -Uvh http://nginx.org/packages/centos/7/noarch/RPMS/nginx-release-centos-7-0.el7.ngx.noarch.rpm
yum install -y nginx
systemctl enable nginx.service
设置伪装站
rm -rf /usr/share/nginx/html/*
cd /usr/share/nginx/html/
wget https://github.com/atrandys/v2ray-ws-tls/raw/master/web.zip
unzip web.zip
systemctl restart nginx.service
2.2 申请https证书,直接在服务器直接操作即可,不用单独申请
mkdir /usr/src/trojan-cert
curl https://get.acme.sh | sh
~/.acme.sh/acme.sh --issue -d abc.yuming.com --webroot /usr/share/nginx/html/
~/.acme.sh/acme.sh --installcert -d abc.yuming.com \
--key-file /usr/src/trojan-cert/private.key \
--fullchain-file /usr/src/trojan-cert/fullchain.cer \
--reloadcmd "systemctl force-reload nginx.service"
2.3 下载trojan
cd /usr/src
wget https://github.com/trojan-gfw/trojan/releases/download/v1.14.0/trojan-1.14.0-linux-amd64.tar.xz
tar xf trojan-1.*
2.4 配置server.conf文件
vi /usr/src/trojan/server.conf
{
"run_type": "server",
"local_addr": "0.0.0.0",
"local_port": 443,
"remote_addr": "127.0.0.1",
"remote_port": 80,
"password": [
"自己想个密码,客户端连接需要用到"
],
"log_level": 1,
"ssl": {
"cert": "/usr/src/trojan-cert/fullchain.cer",
"key": "/usr/src/trojan-cert/private.key",
"key_password": "",
"cipher_tls13":"TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
"prefer_server_cipher": true,
"alpn": [
"http/1.1"
],
"reuse_session": true,
"session_ticket": false,
"session_timeout": 600,
"plain_http_response": "",
"curves": "",
"dhparam": ""
},
"tcp": {
"no_delay": true,
"keep_alive": true,
"fast_open": false,
"fast_open_qlen": 20
},
"mysql": {
"enabled": false,
"server_addr": "127.0.0.1",
"server_port": 3306,
"database": "trojan",
"username": "trojan",
"password": ""
}
}
2.5 测试启动
sh /usr/src/trojan/trojan -c "/usr/src/trojan/server.conf"
如果启动没问题的话就制作个启动脚本,并配置自启动
vi /usr/lib/systemd/system/trojan.service
[Unit]
Description=trojan
After=network.target
[Service]
Type=simple
PIDFile=/usr/src/trojan/trojan/trojan.pid
ExecStart=/usr/src/trojan/trojan -c "/usr/src/trojan/server.conf"
ExecReload=
ExecStop=/usr/src/trojan/trojan
PrivateTmp=true
[Install]
WantedBy=multi-user.target
添加可执行权限
chmod +x /usr/lib/systemd/system/trojan.service
systemctl start trojan.service
systemctl enable trojan.service
至此服务端安装完毕
三:客户端配置
3.1 客户端下载
这个比较全面: 建议下载地址
之后执行 v2rayN.exe
保存后再界面下方选择代理模式即可