Shadowsocks pepa aloaia
tuʻuvaʻaga
Shadowsocks Configuration Format
Faila faila
Shadowsocks e faʻaogaina le faʻatulagaina o le JSON:
{
“server”: “my_server_ip”,
“taulaga_server”:8388,
“local_port”:1080,
“password”:”barfoo!”,
“auala”:”chacha20-ietf-poly1305″
}
JSON Format
- server : lou igoa talimalo po'o le server IP (IPv4/IPv6).
- server_port: numera o le taulaga server.
- local_port: numera o le taulaga i le lotoifale.
- password: o se upu fa'aoga e fa'ailogaina ai le fesiitaiga.
- auala: auala fa'ailoga.
Metotia Fa'ailoga
Matou te faʻatulagaina a matou 'auʻaunaga ma fautuaina oe e faʻaaoga le chacha20-ietf-poly1305 AEAD cipher aua o le auala sili ona malosi o faʻamatalaga.
Afai e fa'atulaga lau lava server shadowsocks, e mafai ona e filifili mai le "chacha20-ietf-poly1305" po'o le "aes-256-gcm".
URI & QR Code
Shadowsocks mo Android / IOS e faʻaaogaina foʻi le BASE64 faʻapipiʻi URI faʻasologa:
ss://BASE64-ENCODED-STRING-WITHOUT-PADDING#TAG
Ole URI manino e tatau ona: ss://method:password@hostname:port
O le URI o loʻo i luga e le mulimuli i le RFC3986. O le upu fa'amaonia i lenei tulaga e tatau ona fa'amaonia, ae le o le fa'ailoga pasene.
Fa'ata'ita'iga: O lo'o matou fa'aogaina se server ile 192.168.100.1:8888 faaaogaina bf-cfb auala fa'ailoga ma upu fa'aigoa su'ega/!@#:.
Ona, faatasi ai ma le URI manino ss://bf-cfb:test/!@#:@192.168.100.1:8888, e mafai ona matou gaosia le BASE64 faʻailoga URI:
> console.log( “ss://” + btoa(“bf-cfb:test/!@#:@192.168.100.1:8888”) )
ss://YmYtY2ZiOnRlc3QvIUAjOkAxOTIuMTY4LjEwMC4xOjg4ODg
Ina ia fesoasoani e faʻatulaga ma faʻailoa nei URI, e mafai ona e faʻapipiʻi se pine pe a uma le BASE64 faʻapipiʻi manoa:
ss://YmYtY2ZiOnRlc3QvIUAjOkAxOTIuMTY4LjEwMC4xOjg4ODg#example-server
Faʻasalalauga
Shadowsocks e faʻaogaina tuatusi o loʻo maua i le SOCKS5 faʻasologa o tuatusi:
[1-byte type][variable-length host][2-byte port]
O ituaiga tuatusi nei ua fa'amalamalamaina:
- 0x01 : talimalo o se tuatusi IPv4 4-byte.
- 0x03 : talimalo o se manoa fesuisuiai umi, amata i le 1-byte umi, sosoo ai ma le max 255-byte igoa ole igoa.
- 0x04 : talimalo o se tuatusi IPv16 6-byte.
Ole numera ole tau ole 2-byte big-endian unsigned integer.
TCP
O le ss-local client e amataina se feso'ota'iga i le ss-mamao e ala i le auina atu o fa'amatalaga fa'ailoga e amata i le tuatusi fa'atatau ona soso'o lea ma fa'amaumauga o uta. O le fa'ailoga o le a eseese e fa'atatau i le cipher na fa'aaogaina.
[tuatusi autu]
E maua e le ss-mamao faʻamatalaga faʻapipiʻi, ona faʻaumatia lea ma faʻasalalau le tuatusi faʻatatau. Ona faia lea o se fesoʻotaʻiga TCP fou i le faʻamoemoe ma tuʻuina atu i ai faʻamaumauga o totogi. E maua e le ss-remote se tali mai le taulaʻiga ona faʻailogaina lea o faʻamaumauga ma toe tuʻuina atu i tua i le ss-local seia oʻo ina motusia.
Mo fa'amoemoega fa'alavelave, e tatau i le lotoifale ma le mamao ona tu'uina atu fa'amatalaga fa'atalofa ma sina uta i le taga muamua.
UDP
ss-local e auina atu le pusa faʻamatalaga faʻailoga o loʻo i ai le tuatusi faʻatatau ma le uta i le ss-mamao.
[tuatusi autu]
O le taimi lava e maua ai le fa'ailoga fa'ailoga, ss-mamao decrypts ma fa'asalalau le tuatusi fa'atatau. Ona auina atu lea o se pepa faʻamatalaga fou ma le uta i le faʻamoemoe. O le ss-remote e mauaina faʻamaumauga mai le faʻamoemoe ma faʻapipiʻi le tuatusi faʻatatau i le uta i totonu o pusa taʻitasi. O kopi fa'ailoga e toe lafo i le ss-local.
[tuatusi autu]
O lenei faiga e mafai ona fa'apipi'i i lalo i le ss-mamao fa'atino se fa'aliliuga tuatusi feso'ota'iga mo le ss-local.