wmantly/vpn-p2p
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge branch 'master' of https://git.theta42.com/wmantly/proxy

Browse Source
This commit is contained in:
William Mantly
2018-02-14 13:07:16 -05:00
parent 2a71a415a7 7d4ceb1193
commit c62461350b
1 changed files with 36 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

47
README.md
View File

@ -1,20 +1,43 @@
# proxy # proxy
## Install openresty ## API docs
[API dpcs](api.md)
## Install redis ## Server set up
## install lua plugin The server requires:
* NodeJS 8.x
* open ssh server(any modern version will do)
* inbound Internet access
* redis
* lua rocks
This has been tested on ubuntu 16.04, but should work on any modern Linux distro. It used the Linux users for its user management, so this will **ONLY** work on Linux, no macOS, BSD or Windows.
The steps below are for a new ubuntu server, they should be mostly the same for other distros, but the paths and availability of packages may vary.
* Install open ssh server
```bash
apt install ssh
```
* Install openresty
[OpenResty® Linux Packages](https://openresty.org/en/linux-packages.html)
* Install redis
```bash
apt install redis-server
```
* install lua plugin
```bash ```bash
apt install luarocks apt install luarocks
sudo luarocks install lua-resty-auto-ssl sudo luarocks install lua-resty-auto-ssl
``` ```
* openresty config
Set up fail back SSL certs
## openresty config
```bash ```bash
mkdir /etc/ssl/ mkdir /etc/ssl/
@ -25,7 +48,7 @@ openssl req -new -newkey rsa:2048 -days 3650 -nodes -x509 -subj '/CN=sni-suppo
``` ```
/etc/openresty/nginx.conf change the `/etc/openresty/nginx.conf to have this config`
``` ```
#user nobody; #user nobody;
@ -107,7 +130,7 @@ http {
``` ```
/etc/openresty/autossl.conf add the SSL config file `/etc/openresty/autossl.conf`
``` ```
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
@ -130,7 +153,7 @@ http {
``` ```
/etc/openresty/sites-enabled/000-proxy Add the proxy config `/etc/openresty/sites-enabled/000-proxy`
``` ```
@ -162,7 +185,7 @@ server {
return ngx.exit(500) return ngx.exit(500)
end end
local host, err = red:hget(key, "ip") local host, err = red:hget("proxy_host_"..key, "ip")
if not host then if not host then
ngx.log(ngx.ERR, "failed to get redis key: ", err) ngx.log(ngx.ERR, "failed to get redis key: ", err)
return ngx.exit(500) return ngx.exit(500)
@ -188,6 +211,8 @@ server {
} }
``` ```
## ref ## ref
https://blog.trackets.com/2014/05/17/ssh-tunnel-local-and-remote-port-forwarding-explained-with-examples.html https://blog.trackets.com/2014/05/17/ssh-tunnel-local-and-remote-port-forwarding-explained-with-examples.html