https://wiki.linuxsa.org/index.php?action=history&feed=atom&title=Shadowsocks%E5%AE%89%E8%A3%85%E4%B8%8E%E9%85%8D%E7%BD%AE
Shadowsocks安装与配置 - 版本历史
2026-04-20T13:06:59Z
本wiki上该页面的版本历史
MediaWiki 1.43.1
https://wiki.linuxsa.org/index.php?title=Shadowsocks%E5%AE%89%E8%A3%85%E4%B8%8E%E9%85%8D%E7%BD%AE&diff=987&oldid=prev
Evan:/* see also */
2020-05-16T03:20:44Z
<p><span class="autocomment">see also</span></p>
<p><b>新页面</b></p><div>==介绍==<br />
Shadowsocks(中文名称:影梭)是使用Python、C++、C#等语言开发、基于Apache许可证的开放源代码软件,用于保护网络流量、加密数据传输。Shadowsocks使用Socks5代理方式。<br />
== 服务器端==<br />
===docker ===<br />
<pre><br />
docker pull shadowsocks/shadowsocks-libev<br />
docker run -e PASSWORD=<password> -p<server-port>:8388 -p<server-port>:8388/udp -d shadowsocks/shadowsocks-libev<br />
<br />
#eg 注意命令后面的8388是不可以改的哦 看官方格式 -p hostPort:containerPort<br />
docker run -e PASSWORD=la224088888 -p 8388:8388 -p 8388:8388/udp -d shadowsocks/shadowsocks-libev<br />
<br />
#在运行docker容器时可以加如下参数来保证每次docker服务重启后容器也自动重启:<br />
$docker run --restart=always<br />
#如果已经启动了则可以使用如下命令:<br />
$docker update --restart=always <CONTAINER ID><br />
<br />
<br />
# on ec2 小记 记得在公司时安装后连接不成功 现在又成功了呀 怪事 第二个端口不能变 还有godaddy 两个相同的ss A 也没错,当成 负载了么 哈哈<br />
#昨天连不上服务器 今天直接停止 再重启 就好了,不过ip变了 2019年 02月 19日<br />
</pre><br />
More information about the image can be found [https://github.com/shadowsocks/shadowsocks-libev/blob/master/docker/alpine/README.md here].<br />
<br />
===freebsd ===<br />
<pre><br />
pkg install shadowsocks-libev<br />
#or <br />
cd /usr/ports/net/shadowsocks-libev<br />
make install<br />
<br />
Edit your config.json file. By default, it's located in /usr/local/etc/shadowsocks-libev<br />
To enable shadowsocks-libev, add the following rc variable to your /etc/rc.conf file:<br />
root@freebsd-01:~ # cat /usr/local/etc/shadowsocks-libev/config.json<br />
{<br />
"server":"18.17.120.15",<br />
"server_port":8888,<br />
"local_port":1080,<br />
"password":"barfoo!",<br />
"timeout":60,<br />
"method":"aes-256-cfb", #加密方法,推荐用 “aes-256-cfb”<br />
#"method":null<br />
}<br />
<br />
<br />
shadowsocks_libev_enable="YES"<br />
Start the Shadowsocks server:<br />
<br />
service shadowsocks_libev start<br />
service shadowsocks_libev restart<br />
<br />
netstat -l4s<br />
</pre><br />
<br />
=== centos===<br />
<pre><br />
<br />
cd /etc/yum.repos.d/<br />
wget -c https://copr.fedorainfracloud.org/coprs/librehat/shadowsocks/repo/epel-6/librehat-shadowsocks-epel-6.repo<br />
<br />
su -c 'yum update'<br />
su -c 'yum install shadowsocks-libev'<br />
<br />
##配置<br />
vi /etc/shadowsocks-libev/config.json #编辑,添加以下内容<br />
<br />
{<br />
"server":"36.63.38.02",<br />
"server_port":8888,<br />
"local_port":1080,<br />
"password":"love",<br />
"timeout":60,<br />
"method":"aes-256-cfb",<br />
}<br />
</pre><br />
<br />
=== debian 9 ===<br />
<pre><br />
For Debian 9 (Stretch) users, please install it from stretch-backports: We strongly encourage you to install shadowsocks-libev from stretch-backports. For more info about backports, you can refer Debian Backports.<br />
<br />
sudo sh -c 'printf "deb http://deb.debian.org/debian stretch-backports main" > /etc/apt/sources.list.d/stretch-backports.list'<br />
sudo apt update<br />
sudo apt -t stretch-backports install shadowsocks-libev<br />
<br />
Configure and start the service<br />
<br />
# Edit the configuration file<br />
sudo vim /etc/shadowsocks-libev/config.json<br />
<br />
# Edit the default configuration for debian<br />
sudo vim /etc/default/shadowsocks-libev<br />
<br />
# Start the service<br />
sudo /etc/init.d/shadowsocks-libev start # for sysvinit, or<br />
sudo systemctl start shadowsocks-libev # for systemd<br />
<br />
<br />
sudo update-rc.d shadowsocks-libev default<br />
<br />
</pre><br />
<br />
[https://github.com/shadowsocks/shadowsocks-libev#install-from-repository-1 安装文档]<br />
<br />
===源码编译安装===<br />
<pre><br />
yum install wget curl curl-devel zlib-devel openssl-devel perl perl-devel cpio expat-devel gettext-devel git -y<br />
git clone git clone https://github.com/shadowsocks/shadowsocks.git<br />
# configure: error: Cannot find `asciidoc` in PATH. <br />
#you must install asciidoc, or you will have to "--disable-documentation"<br />
yum -y install asciidoc xmlto<br />
git clone https://github.com/shadowsocks/shadowsocks-libev.git<br />
#git clone https://github.com/madeye/shadowsocks-libev.git #克隆到本地<br />
cd shadowsocks-libev <br />
./configure <br />
make -j3 && make install<br />
<br />
#nohup /usr/local/bin/ss-server -s x.x.x.x -p 8000 -k 密码 -m aes-256-cfb &<br />
mkdir /etc/shadowsocks-libev #创建配置文件存放目录<br />
<br />
vi /etc/shadowsocks-libev/config.json #编辑,添加以下内容<br />
{<br />
"server":"12.12.1.2.12", #服务端监听的IP地址<br />
"server_port":8888, #服务端端口<br />
"local_address":"127.0.0.1", #本地监听的IP地址<br />
"local_port":1080, #本地端端口<br />
"password":"123456", #用来加密的密码<br />
"timeout":60, #超时时间(秒)<br />
"method":"aes-256-cfb", #加密方法,推荐用 “aes-256-cfb”<br />
}<br />
<br />
设置shadowsocks-libev服务端开机启动<br />
<br />
vi /etc/init.d/ss-server #编辑,添加以下代码<br />
#!/bin/bash<br />
# Run level information:<br />
# chkconfig: 2345 77 88<br />
# Description: lightweight secured socks5 proxy<br />
# processname: ss-server<br />
# Paths and variables and system checks.<br />
# Source function library<br />
. /etc/rc.d/init.d/functions<br />
<br />
# Check that networking is up.<br />
#<br />
[ ${NETWORKING} ="yes" ] || exit 0<br />
# Daemon<br />
NAME=shadowsocks-server<br />
DAEMON=/usr/local/bin/ss-server<br />
# Path to the configuration file.<br />
#<br />
CONF=/etc/shadowsocks-libev/config.json<br />
#USER="nobody"<br />
#GROUP="nobody"<br />
# Take care of pidfile permissions<br />
mkdir /var/run/$NAME 2>/dev/null || true<br />
#chown "$USER:$GROUP" /var/run/$NAME<br />
# Check the configuration file exists.<br />
#<br />
if [ ! -f $CONF ] ; then<br />
echo "The configuration file cannot be found!"<br />
exit 0<br />
fi<br />
# Path to the lock file.<br />
#<br />
LOCK_FILE=/var/lock/subsys/shadowsocks<br />
# Path to the pid file.<br />
#<br />
PID=/var/run/$NAME/pid<br />
#====================================================================<br />
#====================================================================<br />
# Run controls:<br />
RETVAL=0<br />
# Start shadowsocks as daemon.<br />
#<br />
start() {<br />
if [ -f $LOCK_FILE ]; then<br />
echo "$NAME is already running!"<br />
exit 0<br />
else<br />
echo -n $"Starting ${NAME}: "<br />
#daemon --check $DAEMON --user $USER "$DAEMON -f $PID -c $CONF > /dev/null"<br />
daemon $DAEMON -u -c $CONF -f $PID<br />
fi<br />
RETVAL=$?<br />
[ $RETVAL -eq 0 ] && success<br />
echo<br />
[ $RETVAL -eq 0 ] && touch $LOCK_FILE<br />
return $RETVAL<br />
}<br />
# Stop shadowsocks.<br />
#<br />
stop() {<br />
echo -n $"Shutting down ${NAME}: "<br />
killproc -p ${PID}<br />
RETVAL=$?<br />
[ $RETVAL -eq 0 ]<br />
rm -f $LOCK_FILE<br />
rm -f ${PID}<br />
echo<br />
return $RETVAL<br />
}<br />
# See how we were called.<br />
case "$1" in<br />
start)<br />
start<br />
;;<br />
stop)<br />
stop<br />
;;<br />
restart)<br />
stop<br />
start<br />
;;<br />
condrestart)<br />
if [ -f $LOCK_FILE ]; then<br />
stop<br />
start<br />
RETVAL=$?<br />
fi<br />
;;<br />
status)<br />
status $DAEMON<br />
RETVAL=$?<br />
;;<br />
*)<br />
echo $"Usage: $0 {start|stop|restart|condrestart|status}"<br />
RETVAL=1<br />
esac<br />
exit $RETVAL<br />
<br />
chmod +x /etc/init.d/ss-server #添加脚本执行权限<br />
chkconfig --add ss-server #添加到开机启动<br />
chkconfig ss-server on #设置开机启动<br />
<br />
启动:/etc/init.d/ss-server start<br />
停止:/etc/init.d/ss-server stop<br />
重启:/etc/init.d/ss-server restart<br />
查看状态:/etc/init.d/ss-server status<br />
<br />
</pre><br />
<br />
==client==<br />
===pc===<br />
[[通过shadowsocks翻墙 |有GUI界面的教程 通过shadowsocks翻墙]]<br />
<br />
==== ss-local建议用这个作为client ====<br />
<pre><br />
#on my pc <br />
pip install shadowsocks #apt-get install shadowsocks-libev<br />
ss-local -s 45.77.26.30 -p 8080 -k "881" -l 7070 -t 600 -m aes-256-cfb<br />
<br />
加在我的脚本上<br />
#!/bin/bash<br />
# */1 * * * * /home/evan/tunnel<br />
#CPID=$$ #$$ 是脚本运行的当前进程ID号<br />
RUN="`ps -ef | grep "$0" | grep -v "grep" | grep -v "$CPID" | wc -l`" #$0 是脚本本身的名字<br />
[ "$RUN" -gt 2 ] && exit<br />
sleep 4<br />
<br />
ss-local -s 15.57.86.70 -p 8080 -k "123456" -l 7070 -t 600 -m aes-256-cfb<br />
sleep 6<br />
<br />
<br />
<br />
运行 ss-local 启动客户端;若需指定配置文件的位置:<br />
<br />
# sslocal -c /etc/shadowsocks/config.json<br />
<br />
# sslocal -s 服务器地址 -p 服务器端口 -l 本地端端口 -k 密码 -m 加密方法<br />
<br />
配合nohup和&可以使之后台运行,关闭终端也不影响:<br />
<br />
#nohup sslocal -s 服务器地址 -p 服务器端口 -l 本地端端口 -k 密码 -m 加密方法 &<br />
<br />
增加 -v 参数获取详细log信息 <br />
<br />
以守护进程形式运行客户端<br />
注意: shadowsocks和shadowsocks-libev的systemd 系统单元使用相同的配置文件路径 (/etc/shadowsocks)<br />
Shadowsocks的systemd服务可在/etc/shadowsocks/里调用不同的conf-file.json(以conf-file为区分标志),例: 在/etc/shadowsocks/中创建了foo.json配置文件,那么执行以下语句就可以调用该配置:<br />
# systemctl start shadowsocks@foo<br />
若需开机自启动:<br />
# systemctl enable shadowsocks@foo<br />
提示: 可用journalctl -u shadowsocks@foo来查询日志;<br />
<br />
<br />
<br />
sudo apt-get update比如 sslocal -s 11.22.33.44 -p 50003 -k "123456" -l 1080 -t 600 -m aes-256-cfb<br />
-s表示服务IP, -p指的是服务端的端口,-l是本地端口默认是1080, -k 是密码(要加""), -t超时默认300,-m是加密方法默认aes-256-cfb,<br />
<br />
sudo apt-get install python-pip<br />
sudo apt-get install python-setuptools m2crypto<br />
<br />
pip install shadowsocks<br />
#apt-get install shadowsocks-libev<br />
<br />
#nohup sslocal -s 服务器地址 -p 服务器端口 -l 本地端端口 -k 密码 -m 加密方法 &<br />
sslocal -s 138.197.220.125 -p 8388 -l 1088 -k "evan2240881" -t 600 -m aes-256-cfb<br />
<br />
比如 sslocal -s 11.22.33.44 -p 50003 -k "123456" -l 1080 -t 600 -m aes-256-cfb<br />
<br />
-s表示服务IP, -p指的是服务端的端口,-l是本地端口默认是1080, -k 是密码(要加""), -t超时默认300,-m是加密方法默认aes-256-cfb,<br />
<br />
cat /etc/shadowsocks-libev/config.json<br />
<br />
https://shadowsocks.org/en/download/clients.html<br />
</pre><br />
<br />
====ssh tunnel ====<br />
ssh tunnel 是比较具有代表性的防窃听通讯隧道,通过 ssh 与境外服务器建立一条加密通道,此时的通讯 GFW 会将其视作普通的连接。由于大家都这么玩,GFW 着急了,于是它通过各种流量特征分析,渐渐的能够识别哪些连接是 ssh 隧道,并尝试性的对隧道做干扰,结果还是玩不过 GFW,众多隧道纷纷不通。怪不得近来用起来老是被断开<br />
<br />
===android===<br />
下载好apk文件(现在得提前下载 哥已保存好一份在手机和电脑上)<br />
<br />
或者官网下载apk 建议用 universal这个通用版本<br />
<br />
https://github.com/shadowsocks/shadowsocks-android/releases<br />
<br />
<br />
<br />
为了方便我推荐直接用sslcoal -c 配置文件路径 这样的方式,简单好用。<br />
https://aitanlu.com/ubuntu-shadowsocks-ke-hu-duan-pei-zhi.html<br />
<br />
linux配置shadowsocks客户端<br />
https://my.oschina.net/u/1432769/blog/619651<br />
<br />
各种系统下Shadowsocks客户端的安装与配置<br />
http://www.jeyzhang.com/how-to-install-and-setup-shadowsocks-client-in-different-os.html<br />
<br />
注: 20170213 client sslocal 命令不成功<br />
<br />
=== cloud.google ===<br />
在google cloud上要注意一下 <br />
<br />
要配置为静态ip<br />
<br />
新开8080端口是不行的 就算是开了防火墙<br />
<br />
配置 建议用内网IP 或者 0.0.0.0<br />
<br />
[http://godjose.com/2017/06/14/new-article/ 用Google Cloud Platform搭建Shadowsocks服务教程]<br />
<br />
[https://github.com/kaiye/kaiye.github.com/issues/9 拥有一架 Google 的小飞机是一种怎样的体验]<br />
<br />
== trouble==<br />
<br />
[https://blog.csdn.net/chenggong2dm/article/details/6706370 Connection reset by peer 的解决伟大的国家防火墙]<br />
<br />
==see also==<br />
<br />
[[V2ray]]<br />
<br />
<br />
<br />
[[Ubuntu利用shadowsocks和polipo终端翻墙]]<br />
<br />
[http://julyerr.club/2017/10/23/gfwSS/ shadowsocks(ss) + polipo 实现命令行的全局翻墙代理]<br />
<br />
[https://bmzz.cf/blog/3.html CentOS安装shadowsocks-libev]<br />
<br />
<br />
https://zh.wikipedia.org/wiki/Shadowsocks<br />
<br />
[https://github.com/shadowsocks/shadowsocks-libev# 官方安装文档 ]<br />
https://shadowsocks.org/en/download/servers.html <br />
<br />
[https://cokebar.info/archives/767 shadowsocks – libev 服务端的部署]<br />
<br />
[http://www.jeyzhang.com/how-to-install-and-setup-shadowsocks-client-in-different-os.html 各种系统下Shadowsocks客户端的安装与配置]<br />
[http://jas0n.me/2014/11/12/up_14_11_12/ 使用“影梭”,为你的iOS设备实现全局代理]<br />
<br />
[https://www.textarea.com/Bandwagonhost/vultr-vps-dajian-ss-fuwuqi-tuwen-zhidao-jiaocheng-zuixin-wanzhengban-1011/ Vultr(VPS)搭建SS服务器图文指导教程 最新完整版]<br />
<br />
<br />
[http://www.jeyzhang.com/how-to-install-and-setup-shadowsocks-client-in-different-os.html 各种系统下Shadowsocks客户端的安装与配置]<br />
[https://vc2tea.com/whats-shadowsocks/ 写给非专业人士看的 Shadowsocks 简介]<br />
<br />
https://wiki.archlinux.org/index.php/Shadowsocks_(%E7%AE%80%E4%BD%93%E4%B8%AD%E6%96%87)#.E5.AE.A2.E6.88.B7.E7.AB.AF<br />
<br />
[https://linuxtoy.org/archives/selfhosted-server-4.html 跟 Toy 玩自架服务器:5 分钟搭一架梯子]<br />
<br />
[https://www.barretlee.com/blog/2016/08/03/shadowsocks/ Shadowsocks 原理简介及安装指南]<br />
<br />
===GUIclient===<br />
<br />
[http://blkstone.github.io/2016/07/07/shadowsocks-qt5-installation/ Debian编译安装shadowsocks-qt5]<br />
<br />
[http://www.lujza.me/kali-linux-%E4%B8%8B%E5%AE%89%E8%A3%85-shadowsocks-qt5-%E5%8F%8A%E4%BD%BF%E7%94%A8%E6%95%99%E7%A8%8B.html Kali Linux 下安装 Shadowsocks-qt5 及使用教程]<br />
<br />
[https://www.mystery0.vip/2017/01/12/Ubuntu%E4%BD%BF%E7%94%A8Shadowsocks-qt5%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/ Ubuntu使用Shadowsocks-qt5科学上网]<br />
<br />
<br />
<br />
[[category:ops]]</div>
Evan