agavrel
commented
5 years ago Do I need to have OpenVPN on top of SSR ? (you might want to contact me through email ?)
Closed agavrel closed 5 years ago
agavrel
commented
5 years ago Do I need to have OpenVPN on top of SSR ? (you might want to contact me through email ?)
ssrlive
commented
5 years ago don't use http_simple as obfuscater. it's not safe.
Please use the sample settings. https://github.com/ShadowsocksR-Live/shadowsocksr-native/#sample-configure-file
agavrel
commented
5 years ago Ok I switched to : server
{
"server": "{XXX.XX.XXX.XXX}",
"server_port": 443,
"method": "aes-128-ctr",
"password": "password",
"protocol": "auth_aes128_md5",
"protocol_param": "",
"obfs": "tls1.2_ticket_auth",
"obfs_param": "",
"local_address": "0.0.0.0",
"local_port": 1080,
"udp": true,
"timeout": 300
}client
{
"server": "{XXX.XX.XXX.XXX}",
"server_port": 443,
"method": "aes-128-ctr",
"password": "password",
"protocol": "auth_aes128_md5",
"protocol_param": "",
"obfs": "tls1.2_ticket_auth",
"obfs_param": "",
"local_address": "0.0.0.0",
"local_port": 1080,
"udp": true,
"timeout": 300
}But still nothing. Could it be that the VPS has been flagged and I need to use a new one ?
ssrlive
commented
5 years ago please test your ip and SSH port with this website: http://old.tool.chinaz.com/port/
agavrel
commented
5 years ago where should I click exactly? I am not chinese
ssrlive
commented
5 years ago As a programmer, you are not qualified!
agavrel
commented
5 years ago It was greyed out before but thank for the tip ;)
ssh ports: 80,8080,3128,8081,9080,1080,21,23,443,69,22,25,110,7001,9090,3389,1521,1158,2100,1433
IP: 106.XXX.XXX.XXX Chengdu (I had to go another website) which is different from shadowsocksR server 12X.XXX.XXX.XXX
On the server I checked the status:
systemctl status ssr-native.service
● ssr-native.service - ssr-native
Loaded: loaded (/lib/systemd/system/ssr-native.service; enabled; vendor preset: enabled)
Active: active (running) since Sat 2019-03-23 03:13:15 UTC; 1 day 3h ago
Process: 13868 ExecStop=/etc/init.d/ssr-native stop (code=exited, status=0/SUCCESS)
Process: 13876 ExecStart=/etc/init.d/ssr-native start (code=exited, status=0/SUCCESS)
Main PID: 13890 (ssr-server)
Tasks: 1 (limit: 1152)
Memory: 924.0K
CGroup: /system.slice/ssr-native.service
└─13890 /usr/bin/ssr-server -d -c /etc/ssr-native/config.json
Mar 23 05:13:15 XXX systemd[1]: Starting ssr-native...
Mar 23 05:13:15 XXX ssr-native[13876]: Starting ShadowsocksR Native success
Mar 23 05:13:15 XXX systemd[1]: Started ssr-native.If it can help:
sudo iptables -L (on client)
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp dpt:domain
ACCEPT tcp -- anywhere anywhere tcp dpt:domain
ACCEPT udp -- anywhere anywhere udp dpt:bootps
ACCEPT tcp -- anywhere anywhere tcp dpt:bootps
ACCEPT tcp -- localhost anywhere tcp dpt:openvpn
DROP tcp -- anywhere anywhere tcp dpt:openvpn
ACCEPT tcp -- localhost anywhere tcp dpt:openvpn
DROP tcp -- anywhere anywhere tcp dpt:openvpn
Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere 192.168.122.0/24 ctstate RELATED,ESTABLISHED
ACCEPT all -- 192.168.122.0/24 anywhere
ACCEPT all -- anywhere anywhere
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp dpt:bootpc
on server:
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination server
netstat -tulpn | grep 443
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN
agavrel
commented
5 years ago Also is the "local_address": "0.0.0.0", correct ? in both client and server ?
ssrlive
commented
5 years ago Test your VPS server ip and SSH port (such as 22 for normal or dynamic number in bandwagonhost) with this website: http://old.tool.chinaz.com/port/
in server, 'local_address' is not work.
in client, you'd better set local_address to 0.0.0.0.
agavrel
commented
5 years ago I dont know why but my computer (client) cant access anything while using vpn... like if I had been flagged by the gfw -_- do u have a whatsapp/telegram/wechat?
ssrlive
commented
5 years ago I don't leak my real information. I will fight China Communism Party, CCP, till it crushed. you can email me with your VPS login IP, SSH port, and password. ssrlivebox(at)gmail(dot)com.
What did you do?
Trying to use google using the server and client.
client side: ./ssr-client ssr-client:info: ShadowsocksR native client
ssr-client:info: remote server **:443 ssr-client:info: method chacha20 ssr-client:info: password **** ssr-client:info: protocol origin ssr-client:info: obfs http_simple ssr-client:info: udp relay yes
ssr-client:info: listening on 0.0.0.0:1080
and on server systemctl restart ssr-native.service (config below)
What did you expect to see?
google.com / youtube.com working (im in China)
What did you see instead?
In terminal:
and in chrome:
What is your config in detail (with all sensitive info masked)?
cat /etc/ssr-native/config.json