search

MB-KING / Bypassing-Iran-s-intranet-by-using-traffic-transfer-from-Iranian-server-to-abroad

Bypassing Iran's intranet by using traffic transfer from Iranian server to abroad
10 stars 0 forks source link

readme

VMess proxy and Traffic transfer (from Iranian server to servers outside Iran)

مهسا_امینی #MahsaAmini

server side :

Non-Iranian server commands:

1-

sudo apt update

2-

sudo apt upgrade -y

3-

sudo apt install neofetch

4-

neofetch

5-

nano docker-compose.yaml

Add the following commands to the docker-compose.yaml file and save it

version: '3'
services:
  v2ray:
    image: v2fly/v2fly-core
    restart: always
    network_mode: host
    environment:
      - V2RAY_VMESS_AEAD_FORCED=false
    volumes:
        - ./config.json:/etc/v2ray/config.json:ro

6-

nano config.json

go to https://www.uuidgenerator.net/version1 and make random id After that, replace the same ID with PASTE YOUR ID HERE in the following commands, then put them in the config.json file and save it.

{
  "log": {
    "loglevel": "info"
  },
  "inbounds": [
    {
      "port": 80,
      "protocol": "vmess",
      "allocate": {
        "strategy": "always"
      },
      "settings": {
        "clients": [
          {
            "id": "PASTE YOUR ID HERE",
            "level": 1,
            "alterId": 0,
            "email": "client@example.com"
          }
        ],
        "disableInsecureEncryption": true
      },
      "streamSettings": {
        "network": "ws",
        "wsSettings": {
          "connectionReuse": true,
          "path": "/graphql"
        },
        "security": "none",
        "tcpSettings": {
          "header": {
            "type": "http",
            "response": {
              "version": "1.1",
              "status": "200",
              "reason": "OK",
              "headers": {
                "Content-Type": [
                  "application/octet-stream",
                  "application/x-msdownload",
                  "text/html",
                  "application/x-shockwave-flash"
                ],
                "Transfer-Encoding": ["chunked"],
                "Connection": ["keep-alive"],
                "Pragma": "no-cache"
              }
            }
          }
        }
      }
    }
  ],
  "outbounds": [
    {
      "protocol": "freedom",
      "settings": {}
    }
  ]
}

7-

curl https://get.docker.com | sh

8-

sudo apt install docker-compose

9-

docker-compose up -d

Iran server commands:

1-

sudo apt update

2-

sudo apt upgrade -y

3-

sudo apt install iptables-persistent
nano /etc/iptables/rules.v4

Replace IP server outside Iran with XX.XX.XX.XX in the following commands, then save the file

*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A FORWARD -d XX.XX.XX.XX -p tcp -m tcp --dport 80 -j ACCEPT
-A FORWARD -d XX.XX.XX.XX -p udp -m udp --dport 80 -j ACCEPT
COMMIT
*nat
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A PREROUTING -p tcp -m tcp --dport 80 -j DNAT --to-destination XX.XX.XX.XX
-A PREROUTING -p udp -m udp --dport 80 -j DNAT --to-destination XX.XX.XX.XX
-A POSTROUTING -d XX.XX.XX.XX -p tcp -m tcp --dport 80 -j MASQUERADE
-A POSTROUTING -d XX.XX.XX.XX -p udp -m udp --dport 80 -j MASQUERADE
COMMIT

4-

nano /etc/sysctl.conf

Add the following command to the beginning of the file and save

net.ipv4.ip_forward=1

5-

sysctl -p

6-

sysctl --system

7-

sudo reboot

client side:

1-

Install the desired software based on your device's operating system platform name link
Linux/Windows nekoray https://github.com/MatsuriDayo/nekoray/releases
Android v2ray https://play.google.com/store/apps/details?id=com.v2ray.ang
iOS ShadowLink https://apps.apple.com/us/app/shadowlink-shadowsocks-vpn/id1439686518
Mac Qv2ray https://github.com/v2fly/v2ray-core/releases/

2-

Use these settings to connect:

Server IP: Your server IP
Port: 80
UUID: Generated UUID
Method: chacha20-ietf-poly1305
TLS: off
Websocket: ON
WS Path: /graphql