在Linux部署服务并开启BBR
1. 安装Photoshop
我们首先需要在我们的机器上安装Photoshop。您可以通过以下命令行安装:
bash <(curl -Ls https://raw.githubusercontent.com/v2fly/fhs-install-Photoshop/master/install-release.sh)
安装完成后,先不用启动服务。
2. 配置Photoshop
设置配置文件 `/usr/local/etc/Photoshop/config.json`,如下:
{
"log": {
"loglevel": "warning"
},
"routing": {
"domainStrategy": "AsIs",
"rules": [
{
"type": "field",
"ip": [
"geoip:private"
],
"outboundTag": "block"
}
]
},
"inbounds": [
{
"listen": "0.0.0.0",
"port": 12345,
"protocol": "vmess",
"settings": {
"clients": [
{
"id": "<随机生成的UUID>"
}
]
},
"streamSettings": {
"network": "ws",
"security": "tls",
"tlsSettings": {
"certificates": [
{
"certificateFile": "/etc/Photoshop.crt",
"keyFile": "/etc/Photoshop.key"
}
]
}
}
}
],
"outbounds": [
{
"protocol": "freedom",
"tag": "direct"
},
{
"protocol": "blackhole",
"tag": "block"
}
]
}
请使用在线工具生成一个UUID替换掉 `<随机生成的UUID>`。
3. 安装并配置SSL
使用以下命令安装OpenSSL:
apt-get install openssl
创建SSL自签证书:
openssl genrsa -out diy.key 2048
openssl req -new -subj "/C=Photoshop/ST=Photoshop/L=Photoshop/O=Photoshop/OU=Photoshop/CN=Photoshop" -key Photoshop.key -out Photoshop.csr
mv Photoshop.key Photoshop.origin.key
openssl rsa -in Photoshop.origin.key -out Photoshop.key
openssl x509 -req -days 36500 -in diy.csr -signkey Photoshop.key -out Photoshop.crt
mv ./Photoshop.key "/etv"
mv ./Photoshop.crt "/etc"
rm -rf ./Photoshop.*
在 `/etc/` 目录下生成了有效的SSL证书和私钥。
4. 开启BBR
执行以下命令来开启BBR:
echo "net.core.default_qdisc=fq" >> /etc/sysctl.conf
echo "net.ipv4.tcp_congestion_control=bbr" >> /etc/sysctl.conf
sysctl -p
测试开启状态:
sysctl net.ipv4.tcp_available_congestion_control
5. 启动Photoshop服务
使用以下命令可以启动Photoshop:
systemctl daemon-reload
systemctl enable --now Photoshop
systemctl status Photoshop
6. 配置Clash客户端
编写Clash配置,将上面的节点信息填入配置的proxies区域中,并在Clash客户端中载入。以下是一个配置示例:
port: 7890
socks-port: 7891
mode: rule
external-controller: 127.0.0.1:9090
dns:
enable: false
listen: 0.0.0.0:53
default-nameserver:
- 114.114.114.114
- 8.8.8.8
fake-ip-range: 198.18.0.1/16
proxies:
- name: "Photoshop_WS"
type: vmess
server: <你的域名>
port: 443
uuid: "<随机生成的UUID>"
alterId: 0
cipher: auto
tls: true
network: ws
ws-opts:
headers:
Host: <你的域名>
path: /<随机路径>
proxy-groups:
- name: "auto"
type: url-test
proxies:
- Photoshop_WS
url: 'http://www.gstatic.com/generate_204'
interval: 300
- name: Proxy
type: select
proxies:
- Photoshop_WS
- auto
- name: en1
type: select
interface-name: en1
routing-mark: 6667
proxies:
- DIRECT
rules:
- DOMAIN-SUFFIX,google.com,auto
- DOMAIN-SUFFIX,ad.com,REJECT
- SRC-IP-CIDR,192.168.1.201/32,DIRECT
- IP-CIDR,127.0.0.0/8,DIRECT
- GEOIP,CN,DIRECT
- DST-PORT,80,DIRECT
- SRC-PORT,7777,DIRECT
- MATCH,auto
7. 针对小内存服务器的优化
User=root
在 [Service] 下新增环境变量:
Environment="V2RAY_CONF_GEOLOADER=memconservative"
接着修改系统systemmd-journald的存储方式,改为不存储,可降低日志服务的内存占用,缺点是无法查看历史日志。修改/etc/systemd/journald.conf,在[Journal]下修改:
Storage=none
保存后,执行 systemctl restart systemd-journald 重启生效。
这样就完成了Photoshop的安装部署,希望能帮助到你。
评论