search

ShadowsocksR-Live / shadowsocksr-native

翻墙 从容穿越党国敏感日 ShadowsocksR (SSRoT) native implementation for all platforms, GFW terminator
https://github.com/ShadowsocksR-Live/shadowsocksr-native/wiki
GNU General Public License v3.0
2.74k stars 763 forks source link

无法访问网站 #139

Closed TedaLIEz closed 4 years ago

TedaLIEz commented 4 years ago

今天出现的问题,前两天部署完成后正常,今天开始挂掉

服务器日志:

ssr-server 2020/05/27 14:25  info  ShadowsocksR native server

ssr-server 2020/05/27 14:25  info  listen port      443
ssr-server 2020/05/27 14:25  info  method           aes-256-cfb
ssr-server 2020/05/27 14:25  info  password         qPlzlXmRDhQvUVT5
ssr-server 2020/05/27 14:25  info  protocol         origin
ssr-server 2020/05/27 14:25  info  obfs             plain
ssr-server 2020/05/27 14:25  info   
ssr-server 2020/05/27 14:25  warn  over TLS         yes
ssr-server 2020/05/27 14:25  info  over TLS domain  ***.com(域名略去)
ssr-server 2020/05/27 14:25  info  over TLS path    /IbHqPbN2MPXvAybQP5Q2/
ssr-server 2020/05/27 14:25  info   
ssr-server 2020/05/27 14:25  info  udp relay        yes

客户端日志:

ssr-client 2020/05/27 22:24  info  ShadowsocksR native client

ssr-client 2020/05/27 22:24  info  remote server    64.2**********:443
ssr-client 2020/05/27 22:24  info  method           aes-256-cfb
ssr-client 2020/05/27 22:24  info  password         qP**************
ssr-client 2020/05/27 22:24  info  protocol         origin
ssr-client 2020/05/27 22:24  info  obfs             plain
ssr-client 2020/05/27 22:24  info
ssr-client 2020/05/27 22:24  warn  over TLS         yes
ssr-client 2020/05/27 22:24  info  over TLS domain  ***.com(域名略去)
ssr-client 2020/05/27 22:24  info  over TLS path    /IbHqPbN2MPXvAybQP5Q2/
ssr-client 2020/05/27 22:24  info
ssr-client 2020/05/27 22:24  info  udp relay        yes

ssr-client 2020/05/27 22:24  info  listening on     0.0.0.0:1080

config.json

{
  "password": "qPlzlXmRDhQvUVT5",
  "method": "aes-256-cfb",
  "protocol": "auth_chain_a",
  "protocol_param": "",
  "obfs": "tls1.2_ticket_fastauth",
  "obfs_param": "",

  "udp": true,
  "idle_timeout": 300,
  "connect_timeout": 6,
  "udp_timeout": 6,

  "server_settings": {
    "listen_address": "0.0.0.0",
    "listen_port": 443
  },

  "client_settings": {
    "server": "64.2***********",
    "server_port": 17385,
    "listen_address": "0.0.0.0",
    "listen_port": 1080
  },

  "over_tls_settings": {
    "enable": true,
    "server_domain": "***.com", // (域名略去)
    "path": "/IbHqPbN2MPXvAybQP5Q2/",
    "root_cert_file": ""
  }
}

其他:

  1. 域名能正常访问
  2. 服务器能ping
  3. 服务器能ssh
ssrlive commented 4 years ago

服务端的监听端口不应该是 443, web 服务器才应该监听在 443 上. 实在搞不定就重装吧.

TedaLIEz commented 4 years ago

昨晚重装了一次,还是一样的表现

{
  "password": "18ZUh33WjOC6plFs",
  "method": "aes-256-ctr",
  "protocol": "auth_chain_b",
  "protocol_param": "",
  "obfs": "tls1.2_ticket_fastauth",
  "obfs_param": "",

  "udp": true,
  "idle_timeout": 300,
  "connect_timeout": 6,
  "udp_timeout": 6,

  "server_settings": {
    "listen_address": "0.0.0.0",
    "listen_port": 13677
  },

  "client_settings": {
    "server": "64.2***********",
    "server_port": 443,
    "listen_address": "0.0.0.0",
    "listen_port": 1080
  },

  "over_tls_settings": {
    "enable": true,
    "server_domain": "***.com", // (域名略去)
    "path": "/IbHqPbN2MPXvAybQP5Q2/",
    "root_cert_file": ""
  }
}

ps aux能看到ssr-server进程

ssrlive commented 4 years ago

电邮 ssh 账号我看看.

TedaLIEz commented 4 years ago

电邮 ssh 账号我看看.

done

ssrlive commented 4 years ago

查看完了. 无异常. 你可以自己在 服务端/客户端 分别编译调试版, 看看问题在哪里.

你上面贴出的 "path": "/IbHqPbN2MPXvAybQP5Q2/", 字串与 服务端 的字串是不同的.

出于安全原因. 我不可能在本地调试你的配置, 只能通过两级跳转后在 VPS 上查看.

调试版 编译开关在这里:

https://github.com/ShadowsocksR-Live/shadowsocksr-native/blob/329d532c112382a5d233a3e9749b00019527e0b0/src/CMakeLists.txt#L3

TedaLIEz commented 4 years ago

好,我先自己排查下。

ssrlive commented 4 years ago

改写了安装脚本, 添加了用户输入 反代 路径 的选项, 原脚本每次安装时都是使用不同的路径, 估计你没有遵循从 服务端安装完成后的结果复制配置, 现在给你一个自己填写 路径的机会.

https://github.com/ShadowsocksR-Live/shadowsocksr-native/commit/6b528cff7d46c6fc42df7f992e6402d9e7cec6d4