Настраиваю сервер, работает Shadowsocks-2022 и VLESS + XTLS-Vision, а VLESS-over-Websockets не работает. Что сделал:
- Взял домен, перенаправил на IP VPS.
- Поднял вебсервер (Apache), настроил конфиг на 80 порт.
- Создал отдельно сертификаты для домена, не включая https версию для домена, в веб сервере.
- Установил XTLS/Xray-core/v1.8.13
Сервер работает, но вывод команды journalctl -u xray таков:
V2Xray systemd[1]: Started xray.service - XRay.
V2Xray xray[8339]: Xray 1.8.13 (Xray, Penetrates Everything.) 3120ca4 (go1.22.3 linux/amd64)
V2Xray xray[8339]: A unified platform for anti-censorship.
V2Xray xray[8339]: [Info] infra/conf/serial: Reading config: /opt/xray/config.json
V2Xray xray[8339]: [Info] transport/internet/websocket: listening unix domain socket(for WS) on @vless-ws
V2Xray xray[8339]: [Info] transport/internet/tcp: listening TCP on 0.0.0.0:23
V2Xray xray[8339]: [Info] transport/internet/udp: listening UDP on 0.0.0.0:23
V2Xray xray[8339]: [Info] transport/internet/tcp: listening TCP on 0.0.0.0:443
V2Xray xray[8339]: [Warning] core: Xray 1.8.13 started
V2Xray xray[8339]: [Info] [2421907542] proxy/vless/inbound: firstLen = 0
V2Xray xray[8339]: [Info] [2421907542] proxy/vless/inbound: fallback starts > proxy/vless/inbound: fallback directly
V2Xray xray[8339]: [Info] [2421907542] proxy/vless/inbound: realName = dl.google.com
V2Xray xray[8339]: [Info] [2421907542] proxy/vless/inbound: realAlpn = http/1.1
V2Xray xray[8339]: [Info] [2421907542] app/proxyman/inbound: connection ends > proxy/vless/inbound: fallback ends > proxy/vless/inbound: failed to fallback request payload > read tcp IP.MY.VPS:443->MY.REAL.IP:42258: failed to fallback request payload > read tcp IP.MY.VPS:443->MY.REAL.IP:42258: read: connection reset by peer
Конфиг сервера:
{
"log": {
"loglevel": "info"
},
"routing": {
"rules": [],
"domainStrategy": "AsIs"
},
"inbounds": [
{
"port": 23,
"tag": "ss",
"protocol": "shadowsocks",
"settings": {
"method": "2022-blake3-aes-128-gcm",
"password": "MY_SECRET_LONG_PASSWORD",
"network": "tcp,udp"
}
},
{
"port": 443,
"protocol": "vless",
"tag": "vless_tls",
"settings": {
"clients": [
{
"id": "MY-RANDOME-ID",
"email": "user1@myserver",
"flow": "xtls-rprx-vision"
}
],
"decryption": "none",
"fallbacks": [
{
"path": "/var/www/my.site.com/html",
"dest": "@vless-ws"
},
{
"dest": "80"
}
]
},
"streamSettings": {
"network": "tcp",
"security": "tls",
"tlsSettings": {
"alpn": [
"http/1.1",
"h2"
],
"certificates": [
{
"certificateFile": "/etc/letsencrypt/live/my.site.com/fullchain.pem",
"keyFile": "/etc/letsencrypt/live/my.site.com/privkey.pem"
}
]
}
},
"sniffing": {
"enabled": true,
"destOverride": [
"http",
"tls"
]
}
},
{
"listen": "@vless-ws",
"protocol": "vless",
"tag": "vless_ws",
"settings": {
"clients": [
{
"id": "MY-RANDOME-ID",
"email": "user2@myserver"
}
],
"decryption": "none"
},
"streamSettings": {
"network": "ws",
"security": "none",
"wsSettings": {
"path": "/var/www/my.site.com/html"
}
}
}
],
"outbounds": [
{
"protocol": "freedom",
"tag": "direct"
},
{
"protocol": "blackhole",
"tag": "block"
}
]
}
В общем, что я делаю не так, и как делать правильно?
Перемещено hobbit из general
