Protocol-for-intranet-penetration-based-on-QUIC.html 43 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727
  1. <!DOCTYPE html>
  2. <html lang="en" data-default-color-scheme=auto>
  3. <head><!-- hexo injector head_begin start -->
  4. <script defer src="https://api.limour.top/vue/0d2f95c1-755d-436b-adf8-eee12a80ed32/script.js"></script>
  5. <!-- hexo injector head_begin end -->
  6. <meta charset="UTF-8">
  7. <link rel="apple-touch-icon" sizes="76x76" href="https://img.limour.top/2023/08/29/64ee07361815a.webp">
  8. <link rel="icon" href="https://img.limour.top/2023/08/29/64ee07361815a.webp">
  9. <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=5.0, shrink-to-fit=no">
  10. <meta http-equiv="x-ua-compatible" content="ie=edge">
  11. <meta name="theme-color" content="#2f4154">
  12. <meta name="author" content="Limour">
  13. <meta name="keywords" content="">
  14. <meta name="description" content="环境和依赖 内网穿透服务 证书自动申请服务 123456mkdir -p ~/base/NPS &amp;amp;&amp;amp; cd ~/base/NPS &amp;amp;&amp;amp; mkdir confnano docker-compose.ymlnano conf/nps.conftouch conf/&amp;#123;clients,hosts,tasks&amp;#125;.jsonsudo docker-comp">
  15. <title>【探索】基于QUIC的内网穿透协议 - Limour&#39;s Blog</title>
  16. <link rel="stylesheet" href="https://jscdn.limour.top/npm/bootstrap@4.6.1/dist/css/bootstrap.min.css" />
  17. <link rel="stylesheet" href="https://jscdn.limour.top/npm/github-markdown-css@4.0.0/github-markdown.min.css" />
  18. <link rel="stylesheet" href="https://jscdn.limour.top/npm/hint.css@2.7.0/hint.min.css" />
  19. <!-- 主题依赖的图标库,不要自行修改 -->
  20. <!-- Do not modify the link that theme dependent icons -->
  21. <link rel="stylesheet" href="//at.alicdn.com/t/c/font_1749284_5i9bdhy70f8.css">
  22. <link rel="stylesheet" href="//at.alicdn.com/t/font_1736178_lbnruvf0jn.css">
  23. <link rel="stylesheet" href="/css/main.css" />
  24. <link id="highlight-css" rel="stylesheet" href="/css/highlight.css" />
  25. <link id="highlight-css-dark" rel="stylesheet" href="/css/highlight-dark.css" />
  26. <link rel="stylesheet" href="/theme-inject/custom.css">
  27. <link rel="stylesheet" href="/theme-inject/iconfont.css">
  28. <script id="fluid-configs">
  29. var Fluid = window.Fluid || {};
  30. Fluid.ctx = Object.assign({}, Fluid.ctx)
  31. var CONFIG = {"hostname":"hexo.limour.top","root":"/","version":"1.9.8","typing":{"enable":false,"typeSpeed":70,"cursorChar":"_","loop":false,"scope":[]},"anchorjs":{"enable":true,"element":"h1,h2,h3,h4,h5,h6","placement":"left","visible":"hover","icon":"§"},"progressbar":{"enable":true,"height_px":3,"color":"#29d","options":{"showSpinner":false,"trickleSpeed":100}},"code_language":{"enable":true,"default":"TEXT"},"copy_btn":true,"image_caption":{"enable":true},"image_zoom":{"enable":false,"img_url_replace":["",""]},"toc":{"enable":true,"placement":"right","headingSelector":"h1,h2,h3,h4,h5,h6","collapseDepth":0},"lazyload":{"enable":true,"loading_img":"https://jscdn.limour.top/gh/Limour-dev/Sakurairo_Vision/load_svg/inload.svg","onlypost":false,"offset_factor":2},"web_analytics":{"enable":false,"follow_dnt":true,"baidu":null,"google":{"measurement_id":null},"tencent":{"sid":null,"cid":null},"leancloud":{"app_id":null,"app_key":null,"server_url":null,"path":"window.location.pathname","ignore_local":false},"umami":{"src":null,"website_id":null,"domains":null,"start_time":"2024-01-01T00:00:00.000Z","token":null,"api_server":null},"woyaola":null,"cnzz":null},"search_path":"/local-search.xml","include_content_in_search":true};
  32. if (CONFIG.web_analytics.follow_dnt) {
  33. var dntVal = navigator.doNotTrack || window.doNotTrack || navigator.msDoNotTrack;
  34. Fluid.ctx.dnt = dntVal && (dntVal.startsWith('1') || dntVal.startsWith('yes') || dntVal.startsWith('on'));
  35. }
  36. </script>
  37. <script src="/js/utils.js" ></script>
  38. <script src="/js/color-schema.js" ></script>
  39. <link rel="canonical" href="https://hexo.limour.top/Protocol-for-intranet-penetration-based-on-QUIC"/>
  40. <meta name="generator" content="Hexo 7.1.1"><link rel="alternate" href="/atom.xml" title="Limour's Blog" type="application/atom+xml">
  41. <link rel="alternate" href="/rss2.xml" title="Limour's Blog" type="application/rss+xml">
  42. </head>
  43. <body>
  44. <header>
  45. <div class="header-inner" style="height: 70vh;">
  46. <nav id="navbar" class="navbar fixed-top navbar-expand-lg navbar-dark scrolling-navbar">
  47. <div class="container">
  48. <a class="navbar-brand" href="/">
  49. <strong>Limour&#39;s Blog</strong>
  50. </a>
  51. <button id="navbar-toggler-btn" class="navbar-toggler" type="button" data-toggle="collapse"
  52. data-target="#navbarSupportedContent"
  53. aria-controls="navbarSupportedContent" aria-expanded="false" aria-label="Toggle navigation">
  54. <div class="animated-icon"><span></span><span></span><span></span></div>
  55. </button>
  56. <!-- Collapsible content -->
  57. <div class="collapse navbar-collapse" id="navbarSupportedContent">
  58. <ul class="navbar-nav ml-auto text-center">
  59. <li class="nav-item">
  60. <a class="nav-link" href="https://hexo.limour.top/" target="_self">
  61. <i class="iconfont icon-home-fill"></i>
  62. <span>Home</span>
  63. </a>
  64. </li>
  65. <li class="nav-item">
  66. <a class="nav-link" href="/archives/" target="_self">
  67. <i class="iconfont icon-archive-fill"></i>
  68. <span>Archive1</span>
  69. </a>
  70. </li>
  71. <li class="nav-item">
  72. <a class="nav-link" href="https://occdn.limour.top/archives/" target="_self">
  73. <i class="iconfont icon-archive-fill"></i>
  74. <span>Archive2</span>
  75. </a>
  76. </li>
  77. <li class="nav-item">
  78. <a class="nav-link" href="https://b.limour.top/archives/" target="_self">
  79. <i class="iconfont icon-archive-fill"></i>
  80. <span>Archive3</span>
  81. </a>
  82. </li>
  83. <li class="nav-item">
  84. <a class="nav-link" href="https://od.limour.top/" target="_self">
  85. <i class="iconfont icon-onedrive"></i>
  86. <span>Alist</span>
  87. </a>
  88. </li>
  89. <li class="nav-item">
  90. <a class="nav-link" href="https://orcid.org/0000-0001-8897-1685" target="_self">
  91. <i class="iconfont icon-orcid"></i>
  92. <span>Orcid</span>
  93. </a>
  94. </li>
  95. <li class="nav-item">
  96. <a class="nav-link" href="/links/" target="_self">
  97. <i class="iconfont icon-link-fill"></i>
  98. <span>Links</span>
  99. </a>
  100. </li>
  101. <li class="nav-item">
  102. <a class="nav-link" href="/atom.xml" target="_self">
  103. <i class="iconfont icon-rss"></i>
  104. <span>RSS</span>
  105. </a>
  106. </li>
  107. <li class="nav-item" id="search-btn">
  108. <a class="nav-link" target="_self" href="javascript:;" data-toggle="modal" data-target="#modalSearch" aria-label="Search">
  109. <i class="iconfont icon-search"></i>
  110. </a>
  111. </li>
  112. <li class="nav-item" id="color-toggle-btn">
  113. <a class="nav-link" target="_self" href="javascript:;" aria-label="Color Toggle">
  114. <i class="iconfont icon-dark" id="color-toggle-icon"></i>
  115. </a>
  116. </li>
  117. </ul>
  118. </div>
  119. </div>
  120. </nav>
  121. <div id="banner" class="banner" parallax=true
  122. style="background: url('https://img.limour.top/2023/08/29/64ee08e108638.webp') no-repeat center center; background-size: cover;">
  123. <div class="full-bg-img">
  124. <div class="mask flex-center" style="background-color: rgba(0, 0, 0, 0.3)">
  125. <div class="banner-text text-center fade-in-up">
  126. <div class="h2">
  127. <span id="subtitle">【探索】基于QUIC的内网穿透协议</span>
  128. </div>
  129. <div class="mt-3">
  130. <span class="post-meta mr-2">
  131. <i class="iconfont icon-author" aria-hidden="true"></i>
  132. Limour
  133. </span>
  134. <span class="post-meta">
  135. <i class="iconfont icon-date-fill" aria-hidden="true"></i>
  136. <time datetime="2023-10-27 20:46" pubdate>
  137. October 27, 2023 pm
  138. </time>
  139. </span>
  140. </div>
  141. <div class="mt-1">
  142. <span class="post-meta mr-2">
  143. <i class="iconfont icon-chart"></i>
  144. 676 words
  145. </span>
  146. <span class="post-meta mr-2">
  147. <i class="iconfont icon-clock-fill"></i>
  148. 6 mins
  149. </span>
  150. </div>
  151. </div>
  152. </div>
  153. </div>
  154. </div>
  155. </div>
  156. </header>
  157. <main>
  158. <div class="container-fluid nopadding-x">
  159. <div class="row nomargin-x">
  160. <div class="side-col d-none d-lg-block col-lg-2">
  161. </div>
  162. <div class="col-lg-8 nopadding-x-md">
  163. <div class="container nopadding-x-md" id="board-ctn">
  164. <div id="board">
  165. <article class="post-content mx-auto">
  166. <h1 id="seo-header">【探索】基于QUIC的内网穿透协议</h1>
  167. <p id="updated-time" class="note note-info" style="">
  168. Last updated on June 29, 2024 am
  169. </p>
  170. <div class="markdown-body">
  171. <h2 id="环境和依赖">环境和依赖</h2>
  172. <ul>
  173. <li><a href="/-ji-lu--an-zhuang-npsfrp-fu-wu-duan-yu-ke-hu-duan">内网穿透服务</a></li>
  174. <li><a href="/Docker-bu-shu-Nginx-Proxy-Manager">证书自动申请服务</a></li>
  175. </ul>
  176. <figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br></pre></td><td class="code"><pre><code class="hljs bash"><span class="hljs-built_in">mkdir</span> -p ~/base/NPS &amp;&amp; <span class="hljs-built_in">cd</span> ~/base/NPS &amp;&amp; <span class="hljs-built_in">mkdir</span> conf<br>nano docker-compose.yml<br>nano conf/nps.conf<br><span class="hljs-built_in">touch</span> conf/&#123;clients,hosts,tasks&#125;.json<br>sudo docker-compose up -d<br><span class="hljs-comment"># 反代 dashboard 8080</span><br></code></pre></td></tr></table></figure>
  177. <figure class="highlight yml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br></pre></td><td class="code"><pre><code class="hljs yml"><span class="hljs-attr">version:</span> <span class="hljs-string">&#x27;3.3&#x27;</span><br><span class="hljs-attr">services:</span><br> <span class="hljs-attr">nps:</span><br> <span class="hljs-attr">container_name:</span> <span class="hljs-string">nps</span><br> <span class="hljs-attr">restart:</span> <span class="hljs-string">unless-stopped</span><br> <span class="hljs-attr">ports:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">&#x27;8025:8025&#x27;</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">&#x27;6000-6002:6000-6002/udp&#x27;</span><br> <span class="hljs-attr">volumes:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">&#x27;./conf:/conf&#x27;</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">&#x27;/etc/localtime:/etc/localtime:ro&#x27;</span><br> <span class="hljs-attr">image:</span> <span class="hljs-string">yisier1/nps</span><br> <br><span class="hljs-attr">networks:</span><br> <span class="hljs-attr">default:</span><br> <span class="hljs-attr">external:</span> <span class="hljs-literal">true</span><br> <span class="hljs-attr">name:</span> <span class="hljs-string">ngpm</span><br></code></pre></td></tr></table></figure>
  178. <figure class="highlight plaintext"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br><span class="line">18</span><br><span class="line">19</span><br><span class="line">20</span><br><span class="line">21</span><br><span class="line">22</span><br><span class="line">23</span><br><span class="line">24</span><br><span class="line">25</span><br><span class="line">26</span><br><span class="line">27</span><br><span class="line">28</span><br><span class="line">29</span><br><span class="line">30</span><br><span class="line">31</span><br><span class="line">32</span><br><span class="line">33</span><br><span class="line">34</span><br><span class="line">35</span><br><span class="line">36</span><br><span class="line">37</span><br><span class="line">38</span><br><span class="line">39</span><br><span class="line">40</span><br><span class="line">41</span><br><span class="line">42</span><br><span class="line">43</span><br><span class="line">44</span><br><span class="line">45</span><br><span class="line">46</span><br><span class="line">47</span><br><span class="line">48</span><br><span class="line">49</span><br><span class="line">50</span><br><span class="line">51</span><br><span class="line">52</span><br><span class="line">53</span><br><span class="line">54</span><br><span class="line">55</span><br><span class="line">56</span><br><span class="line">57</span><br><span class="line">58</span><br><span class="line">59</span><br><span class="line">60</span><br><span class="line">61</span><br><span class="line">62</span><br><span class="line">63</span><br><span class="line">64</span><br><span class="line">65</span><br><span class="line">66</span><br><span class="line">67</span><br><span class="line">68</span><br><span class="line">69</span><br><span class="line">70</span><br><span class="line">71</span><br><span class="line">72</span><br><span class="line">73</span><br><span class="line">74</span><br><span class="line">75</span><br><span class="line">76</span><br><span class="line">77</span><br><span class="line">78</span><br><span class="line">79</span><br><span class="line">80</span><br><span class="line">81</span><br><span class="line">82</span><br></pre></td><td class="code"><pre><code class="hljs conf">appname = nps<br>#Boot mode(dev|pro)<br>runmode = pro<br> <br>#HTTP(S) proxy port, no startup if empty<br>http_proxy_ip=0.0.0.0<br>http_proxy_port=18081<br> <br>##bridge<br>bridge_type=tcp<br>bridge_port=8024<br>bridge_ip=0.0.0.0<br>tls_bridge_port=8025<br>tls_enable=true<br><br>#Traffic data persistence interval(minute)<br>#Ignorance means no persistence<br>#flow_store_interval=1<br> <br># log level LevelEmergency-&gt;0 LevelAlert-&gt;1 LevelCritical-&gt;2 LevelError-&gt;3 LevelWarning-&gt;4 LevelNotice-&gt;5 LevelInformational-&gt;6 LevelDebug-&gt;7<br>log_level=7<br>#log_path=nps.log<br> <br>#Whether to restrict IP access, true or false or ignore<br>#ip_limit=true<br> <br>#allow_ports=9001-9009,10001,11000-12000<br> <br>#Web management multi-user login<br>allow_user_login=false<br>allow_user_register=false<br>allow_user_change_username=false<br> <br>#extension<br>allow_flow_limit=false<br>allow_rate_limit=false<br>allow_tunnel_num_limit=false<br>allow_local_proxy=false<br>allow_connection_num_limit=false<br>allow_multi_ip=false<br>system_info_display=true<br> <br>#cache<br>http_cache=false<br>http_cache_length=100<br> <br>#get origin ip<br>http_add_origin_header=true<br> <br>#pprof debug options<br>#pprof_ip=0.0.0.0<br>#pprof_port=9999<br> <br>#client disconnect timeout<br>disconnect_timeout=60<br> <br># 以下的需要进行配置<br># Public password, which clients can use to connect to the server<br># After the connection, the server will be able to open relevant ports and parse related domain names according to its own configuration file.<br>public_vkey=&lt;16个字符&gt;<br> <br>#Web API unauthenticated IP address(the len of auth_crypt_key must be 16)<br>#Remove comments if needed<br>auth_key=&lt;24个字符&gt;<br>auth_crypt_key=&lt;16个字符&gt;<br> <br>#web<br>web_host=limour.top<br>web_username=Limour<br>web_password=&lt;16个字符&gt;<br>web_port = 8080<br>web_ip=0.0.0.0<br>web_open_ssl=false<br>web_base_url=<br>open_captcha=true<br># if web under proxy use sub path. like http://host/nps need this.<br>#web_base_url=/nps<br> <br>#p2p<br>p2p_ip=&lt;写服务器的ip&gt;<br>p2p_port=6000<br># 设置为6000,请在控制台防火墙开放6000~6002(额外添加2个端口)udp端口<br></code></pre></td></tr></table></figure>
  179. <h2 id="配置端口映射">配置端口映射</h2>
  180. <figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br></pre></td><td class="code"><pre><code class="hljs bash">nano Port-Hopping.sh &amp;&amp; <span class="hljs-built_in">chmod</span> +x Port-Hopping.sh<br>nano /etc/systemd/system/Port-Hopping.service<br>systemctl <span class="hljs-built_in">enable</span> Port-Hopping &amp;&amp; systemctl start Port-Hopping &amp;&amp; systemctl status Port-Hopping &amp;&amp; iptables -t nat -L<br></code></pre></td></tr></table></figure>
  181. <figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br></pre></td><td class="code"><pre><code class="hljs bash"><span class="hljs-meta">#!/bin/bash</span><br><span class="hljs-comment"># IPv4</span><br>/usr/sbin/iptables -t nat -A PREROUTING -i eth0 -p udp --dport 32768:61000 -j DNAT --to-destination :3234<br><span class="hljs-comment"># IPv6</span><br>/usr/sbin/ip6tables -t nat -A PREROUTING -i eth0 -p udp --dport 32768:61000 -j DNAT --to-destination :3234<br></code></pre></td></tr></table></figure>
  182. <figure class="highlight plaintext"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br></pre></td><td class="code"><pre><code class="hljs service">[Unit]<br>Description=Port-Hopping<br>After=network.target docker.service<br>[Service]<br>ExecStart=/root/Port-Hopping.sh<br>Restart=on-failure<br>[Install]<br>WantedBy=multi-user.target<br></code></pre></td></tr></table></figure>
  183. <figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br></pre></td><td class="code"><pre><code class="hljs bash">iptables -t nat -A DOCKER -p udp --dport 32768:61000 -j DNAT --to-destination `iptables -t nat -L| grep <span class="hljs-string">&quot;udp dpt:3234&quot;</span> | grep -oP <span class="hljs-string">&#x27;to:\K[^ ]+&#x27;</span>` <span class="hljs-comment"># 添加</span><br>iptables -t nat -D DOCKER -p udp --dport 32768:61000 -j DNAT --to-destination `iptables -t nat -L| grep <span class="hljs-string">&quot;udp dpts:32768:61000&quot;</span>| <span class="hljs-built_in">tail</span> -n 1 | grep -oP <span class="hljs-string">&#x27;to:\K[^ ]+&#x27;</span>` <span class="hljs-comment"># 删除</span><br></code></pre></td></tr></table></figure>
  184. <h2 id="配置quic">配置quic</h2>
  185. <figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br></pre></td><td class="code"><pre><code class="hljs bash">sudo docker network create sswitch<br><span class="hljs-built_in">mkdir</span> -p ~/app/quic &amp;&amp; <span class="hljs-built_in">cd</span> ~/app/quic &amp;&amp; nano docker-compose.yml<br>nano hysteria.yaml<br>sudo docker-compose up -d &amp;&amp; sudo docker-compose logs<br></code></pre></td></tr></table></figure>
  186. <figure class="highlight yml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br><span class="line">18</span><br></pre></td><td class="code"><pre><code class="hljs yml"><span class="hljs-attr">version:</span> <span class="hljs-string">&#x27;3.9&#x27;</span><br><span class="hljs-attr">services:</span><br> <span class="hljs-attr">hysteria:</span><br> <span class="hljs-attr">image:</span> <span class="hljs-string">tobyxdd/hysteria</span><br> <span class="hljs-attr">restart:</span> <span class="hljs-string">always</span><br> <span class="hljs-attr">extra_hosts:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">&#x27;host.docker.internal:host-gateway&#x27;</span><br> <span class="hljs-attr">ports:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">&#x27;3234:3234/udp&#x27;</span><br> <span class="hljs-attr">volumes:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">./hysteria.yaml:/etc/hysteria.yaml</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">/root/base/NGPM/letsencrypt:/home/ubuntu/letsencrypt</span><br> <span class="hljs-attr">command:</span> [<span class="hljs-string">&quot;server&quot;</span>, <span class="hljs-string">&quot;-c&quot;</span>, <span class="hljs-string">&quot;/etc/hysteria.yaml&quot;</span>]<br> <br><span class="hljs-attr">networks:</span><br> <span class="hljs-attr">default:</span><br> <span class="hljs-attr">external:</span> <span class="hljs-literal">true</span><br> <span class="hljs-attr">name:</span> <span class="hljs-string">sswitch</span><br></code></pre></td></tr></table></figure>
  187. <figure class="highlight yml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br><span class="line">18</span><br><span class="line">19</span><br></pre></td><td class="code"><pre><code class="hljs yml"><span class="hljs-attr">listen:</span> <span class="hljs-string">:3234</span> <br> <br><span class="hljs-attr">tls:</span><br> <span class="hljs-attr">cert:</span> <span class="hljs-string">/home/ubuntu/letsencrypt/live/npm-1/fullchain.pem</span><br> <span class="hljs-attr">key:</span> <span class="hljs-string">/home/ubuntu/letsencrypt/live/npm-1/privkey.pem</span><br> <br><span class="hljs-attr">auth:</span><br> <span class="hljs-attr">type:</span> <span class="hljs-string">password</span><br> <span class="hljs-attr">password:</span> <span class="hljs-string">Se7RAuFZ8Lzg</span> <br> <br><span class="hljs-attr">bandwidth:</span><br> <span class="hljs-attr">up:</span> <span class="hljs-number">3</span> <span class="hljs-string">mbps</span><br> <span class="hljs-attr">down:</span> <span class="hljs-number">3</span> <span class="hljs-string">mbps</span><br> <br><span class="hljs-attr">masquerade:</span> <br> <span class="hljs-attr">type:</span> <span class="hljs-string">proxy</span><br> <span class="hljs-attr">proxy:</span><br> <span class="hljs-attr">url:</span> <span class="hljs-string">https://hexo.limour.top/</span> <br> <span class="hljs-attr">rewriteHost:</span> <span class="hljs-literal">true</span><br></code></pre></td></tr></table></figure>
  188. <h2 id="测试转发">测试转发</h2>
  189. <ul>
  190. <li>在客户端新建<code>config.yaml</code>, 写入以下内容</li>
  191. </ul>
  192. <figure class="highlight yml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br></pre></td><td class="code"><pre><code class="hljs yml"><span class="hljs-attr">server:</span> <span class="hljs-string">hexo.limour.top:32768-61000</span><br> <br><span class="hljs-attr">auth:</span> <span class="hljs-string">Se7RAuFZ8Lzg</span> <br> <br><span class="hljs-attr">bandwidth:</span> <br> <span class="hljs-attr">up:</span> <span class="hljs-number">3</span> <span class="hljs-string">mbps</span><br> <span class="hljs-attr">down:</span> <span class="hljs-number">3</span> <span class="hljs-string">mbps</span><br> <br><span class="hljs-comment">#socks5:</span><br><span class="hljs-comment"># listen: 127.0.0.1:1580 </span><br> <br><span class="hljs-comment">#http:</span><br><span class="hljs-comment"># listen: 127.0.0.1:8580 </span><br> <br><span class="hljs-attr">tcpForwarding:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-attr">listen:</span> <span class="hljs-number">127.0</span><span class="hljs-number">.0</span><span class="hljs-number">.1</span><span class="hljs-string">:8025</span> <br> <span class="hljs-attr">remote:</span> <span class="hljs-string">host.docker.internal:8025</span> <br></code></pre></td></tr></table></figure>
  193. <h2 id="测试穿透">测试穿透</h2>
  194. <figure class="highlight powershell"><table><tr><td class="gutter"><pre><span class="line">1</span><br></pre></td><td class="code"><pre><code class="hljs powershell">.\npc.exe <span class="hljs-literal">--server</span>=<span class="hljs-number">127.0</span>.<span class="hljs-number">0.1</span>:<span class="hljs-number">8024</span> <span class="hljs-literal">-vkey</span>=&lt;vkey&gt; <span class="hljs-literal">-type</span>=tcp<br></code></pre></td></tr></table></figure>
  195. <h2 id="客户端示例">客户端示例</h2>
  196. <figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br></pre></td><td class="code"><pre><code class="hljs bash"><span class="hljs-built_in">mkdir</span> -p ~/app/quic-npc &amp;&amp; <span class="hljs-built_in">cd</span> ~/app/quic-npc &amp;&amp; nano docker-compose.yml<br>nano config.yaml<br>sudo docker-compose up -d &amp;&amp; sudo docker-compose logs<br></code></pre></td></tr></table></figure>
  197. <figure class="highlight yml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br></pre></td><td class="code"><pre><code class="hljs yml"><span class="hljs-attr">version:</span> <span class="hljs-string">&#x27;3.3&#x27;</span><br><span class="hljs-attr">services:</span><br> <span class="hljs-attr">quic_nps:</span><br> <span class="hljs-attr">image:</span> <span class="hljs-string">tobyxdd/hysteria</span><br> <span class="hljs-attr">network_mode:</span> <span class="hljs-string">host</span><br> <span class="hljs-attr">restart:</span> <span class="hljs-string">always</span><br> <span class="hljs-attr">volumes:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">./config.yaml:/etc/config.yaml</span><br> <span class="hljs-attr">command:</span> [<span class="hljs-string">&quot;--config&quot;</span>, <span class="hljs-string">&quot;/etc/config.yaml&quot;</span>]<br> <br> <span class="hljs-attr">npc_lk:</span><br> <span class="hljs-attr">depends_on:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-string">quic_nps</span><br> <span class="hljs-attr">network_mode:</span> <span class="hljs-string">host</span><br> <span class="hljs-attr">image:</span> <span class="hljs-string">yisier1/npc</span><br> <span class="hljs-attr">restart:</span> <span class="hljs-string">unless-stopped</span><br> <span class="hljs-attr">command:</span> <span class="hljs-string">-server=127.0.0.1:8025</span> <span class="hljs-string">-vkey=&lt;vkey&gt;</span> <span class="hljs-string">-tls_enable=true</span><br></code></pre></td></tr></table></figure>
  198. <figure class="highlight yml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br></pre></td><td class="code"><pre><code class="hljs yml"><span class="hljs-attr">server:</span> <span class="hljs-string">hexo.limour.top:32768-61000</span><br> <br><span class="hljs-attr">auth:</span> <span class="hljs-string">Se7RAuFZ8Lzg</span> <br> <br><span class="hljs-attr">bandwidth:</span> <br> <span class="hljs-attr">up:</span> <span class="hljs-number">3</span> <span class="hljs-string">mbps</span><br> <span class="hljs-attr">down:</span> <span class="hljs-number">3</span> <span class="hljs-string">mbps</span><br> <br><span class="hljs-attr">tcpForwarding:</span><br> <span class="hljs-bullet">-</span> <span class="hljs-attr">listen:</span> <span class="hljs-number">127.0</span><span class="hljs-number">.0</span><span class="hljs-number">.1</span><span class="hljs-string">:8025</span> <br> <span class="hljs-attr">remote:</span> <span class="hljs-string">host.docker.internal:8025</span> <br></code></pre></td></tr></table></figure>
  199. </div>
  200. <hr/>
  201. <div>
  202. <div class="post-metas my-3">
  203. <div class="post-meta">
  204. <i class="iconfont icon-tags"></i>
  205. <a href="/tags/%E6%8E%A2%E7%B4%A2/" class="print-no-link">#探索</a>
  206. <a href="/tags/docker/" class="print-no-link">#docker</a>
  207. <a href="/tags/ngpm/" class="print-no-link">#ngpm</a>
  208. <a href="/tags/%E5%86%85%E7%BD%91%E7%A9%BF%E9%80%8F/" class="print-no-link">#内网穿透</a>
  209. </div>
  210. </div>
  211. <div class="license-box my-3">
  212. <div class="license-title">
  213. <div>【探索】基于QUIC的内网穿透协议</div>
  214. <div>https://hexo.limour.top/Protocol-for-intranet-penetration-based-on-QUIC</div>
  215. </div>
  216. <div class="license-meta">
  217. <div class="license-meta-item">
  218. <div>Author</div>
  219. <div>Limour</div>
  220. </div>
  221. <div class="license-meta-item license-meta-date">
  222. <div>Posted on</div>
  223. <div>October 27, 2023</div>
  224. </div>
  225. <div class="license-meta-item license-meta-date">
  226. <div>Updated on</div>
  227. <div>June 29, 2024</div>
  228. </div>
  229. <div class="license-meta-item">
  230. <div>Licensed under</div>
  231. <div>
  232. <a class="print-no-link" target="_blank" href="https://creativecommons.org/licenses/by-nc-sa/4.0/">
  233. <span class="hint--top hint--rounded" aria-label="BY - Attribution">
  234. <i class="iconfont icon-cc-by"></i>
  235. </span>
  236. </a>
  237. <a class="print-no-link" target="_blank" href="https://creativecommons.org/licenses/by-nc-sa/4.0/">
  238. <span class="hint--top hint--rounded" aria-label="NC - Non-commercial">
  239. <i class="iconfont icon-cc-nc"></i>
  240. </span>
  241. </a>
  242. <a class="print-no-link" target="_blank" href="https://creativecommons.org/licenses/by-nc-sa/4.0/">
  243. <span class="hint--top hint--rounded" aria-label="SA - Share-alike">
  244. <i class="iconfont icon-cc-sa"></i>
  245. </span>
  246. </a>
  247. </div>
  248. </div>
  249. </div>
  250. <div class="license-icon iconfont"></div>
  251. </div>
  252. <div class="post-prevnext my-3">
  253. <article class="post-prev col-6">
  254. <a href="/Self-built-ad-blocking-DoH-server" title="【记录】自建去广告的DoH服务器">
  255. <i class="iconfont icon-arrowleft"></i>
  256. <span class="hidden-mobile">【记录】自建去广告的DoH服务器</span>
  257. <span class="visible-mobile">Previous</span>
  258. </a>
  259. </article>
  260. <article class="post-next col-6">
  261. <a href="/Mendelian-Randomization" title="【学习】孟德尔随机化">
  262. <span class="hidden-mobile">【学习】孟德尔随机化</span>
  263. <span class="visible-mobile">Next</span>
  264. <i class="iconfont icon-arrowright"></i>
  265. </a>
  266. </article>
  267. </div>
  268. </div>
  269. <article id="comments" lazyload>
  270. <div id="waline"></div>
  271. <script type="text/javascript">
  272. Fluid.utils.loadComments('#waline', function() {
  273. Fluid.utils.createCssLink('https://cdn.staticfile.org/waline/2.15.5/waline.css')
  274. Fluid.utils.createScript('https://cdn.staticfile.org/waline/2.15.5/waline.js', function() {
  275. var options = Object.assign(
  276. {"serverURL":"https://comments.limour.top","path":"window.location.pathname","meta":["nick","mail","link"],"requiredMeta":["nick"],"lang":"zh-CN","emoji":["https://jscdn.limour.top/gh/walinejs/emojis/weibo"],"dark":"html[data-user-color-scheme=\"dark\"]","wordLimit":0,"pageSize":10},
  277. {
  278. el: '#waline',
  279. path: window.location.pathname
  280. }
  281. )
  282. Waline.init(options);
  283. Fluid.utils.waitElementVisible('#waline .vcontent', () => {
  284. var imgSelector = '#waline .vcontent img:not(.vemoji)';
  285. Fluid.plugins.imageCaption(imgSelector);
  286. Fluid.plugins.fancyBox(imgSelector);
  287. })
  288. });
  289. });
  290. </script>
  291. <noscript>Please enable JavaScript to view the comments</noscript>
  292. </article>
  293. </article>
  294. </div>
  295. </div>
  296. </div>
  297. <div class="side-col d-none d-lg-block col-lg-2">
  298. <aside class="sidebar" style="margin-left: -1rem">
  299. <div id="toc">
  300. <p class="toc-header">
  301. <i class="iconfont icon-list"></i>
  302. <span>Table of Contents</span>
  303. </p>
  304. <div class="toc-body" id="toc-body"></div>
  305. </div>
  306. </aside>
  307. </div>
  308. </div>
  309. </div>
  310. <a id="scroll-top-button" aria-label="TOP" href="#" role="button">
  311. <i class="iconfont icon-arrowup" aria-hidden="true"></i>
  312. </a>
  313. <div class="modal fade" id="modalSearch" tabindex="-1" role="dialog" aria-labelledby="ModalLabel"
  314. aria-hidden="true">
  315. <div class="modal-dialog modal-dialog-scrollable modal-lg" role="document">
  316. <div class="modal-content">
  317. <div class="modal-header text-center">
  318. <h4 class="modal-title w-100 font-weight-bold">Search</h4>
  319. <button type="button" id="local-search-close" class="close" data-dismiss="modal" aria-label="Close">
  320. <span aria-hidden="true">&times;</span>
  321. </button>
  322. </div>
  323. <div class="modal-body mx-3">
  324. <div class="md-form mb-5">
  325. <input type="text" id="local-search-input" class="form-control validate">
  326. <label data-error="x" data-success="v" for="local-search-input">Keyword</label>
  327. </div>
  328. <div class="list-group" id="local-search-result"></div>
  329. </div>
  330. </div>
  331. </div>
  332. </div>
  333. </main>
  334. <footer>
  335. <div class="footer-inner">
  336. <div class="footer-content">
  337. <a target="_blank" rel="nofollow noopener" href="http://www.beian.gov.cn/portal/registerSystemInfo?recordcode=43130202000203"><img src="https://img.limour.top/2023/08/27/64eadeb81d6a0.webp" srcset="https://jscdn.limour.top/gh/Limour-dev/Sakurairo_Vision/load_svg/inload.svg" lazyload>湘公网安备43130202000203号 </a> <a target="_blank" rel="nofollow noopener" href="https://beian.miit.gov.cn/">湘ICP备20008299号 </a> <a target="_blank" rel="nofollow noopener" href="https://icp.gov.moe/?keyword=20210128">萌ICP备20210128号</a> <br> <a href="https://www.foreverblog.cn/" target="_blank"> <img src="https://img.foreverblog.cn/logo_en_default.png" srcset="https://jscdn.limour.top/gh/Limour-dev/Sakurairo_Vision/load_svg/inload.svg" lazyload alt="" style="width:auto;height:24px"> </a> <br> <a href="https://hexo.io" target="_blank" rel="nofollow noopener"><span>Hexo</span></a> <i class="iconfont icon-love"></i> <a href="https://github.com/fluid-dev/hexo-theme-fluid" target="_blank" rel="nofollow noopener"><span>Fluid</span></a> <i class="iconfont icon-love"></i> <a href="https://github.com/limour-blog/limour-blog.github.io" target="_blank" rel="nofollow noopener"><span>SRC</span></a> <i class="iconfont icon-love"></i> <a href="https://web.archive.org/web/20231130095837/https://effectiveacceleration.tech/" target="_blank" rel="nofollow noopener"><span>e/Acc</span></a>
  338. </div>
  339. </div>
  340. </footer>
  341. <!-- Scripts -->
  342. <script src="https://jscdn.limour.top/npm/nprogress@0.2.0/nprogress.min.js" ></script>
  343. <link rel="stylesheet" href="https://jscdn.limour.top/npm/nprogress@0.2.0/nprogress.min.css" />
  344. <script>
  345. NProgress.configure({"showSpinner":false,"trickleSpeed":100})
  346. NProgress.start()
  347. window.addEventListener('load', function() {
  348. NProgress.done();
  349. })
  350. </script>
  351. <script src="https://jscdn.limour.top/npm/jquery@3.6.4/dist/jquery.min.js" ></script>
  352. <script src="https://jscdn.limour.top/npm/bootstrap@4.6.1/dist/js/bootstrap.min.js" ></script>
  353. <script src="/js/events.js" ></script>
  354. <script src="/js/plugins.js" ></script>
  355. <script src="/js/img-lazyload.js" ></script>
  356. <script>
  357. Fluid.utils.createScript('https://jscdn.limour.top/npm/tocbot@4.20.1/dist/tocbot.min.js', function() {
  358. var toc = jQuery('#toc');
  359. if (toc.length === 0 || !window.tocbot) { return; }
  360. var boardCtn = jQuery('#board-ctn');
  361. var boardTop = boardCtn.offset().top;
  362. window.tocbot.init(Object.assign({
  363. tocSelector : '#toc-body',
  364. contentSelector : '.markdown-body',
  365. linkClass : 'tocbot-link',
  366. activeLinkClass : 'tocbot-active-link',
  367. listClass : 'tocbot-list',
  368. isCollapsedClass: 'tocbot-is-collapsed',
  369. collapsibleClass: 'tocbot-is-collapsible',
  370. scrollSmooth : true,
  371. includeTitleTags: true,
  372. headingsOffset : -boardTop,
  373. }, CONFIG.toc));
  374. if (toc.find('.toc-list-item').length > 0) {
  375. toc.css('visibility', 'visible');
  376. }
  377. Fluid.events.registerRefreshCallback(function() {
  378. if ('tocbot' in window) {
  379. tocbot.refresh();
  380. var toc = jQuery('#toc');
  381. if (toc.length === 0 || !tocbot) {
  382. return;
  383. }
  384. if (toc.find('.toc-list-item').length > 0) {
  385. toc.css('visibility', 'visible');
  386. }
  387. }
  388. });
  389. });
  390. </script>
  391. <script src=https://lib.baomitu.com/clipboard.js/2.0.11/clipboard.min.js></script>
  392. <script>Fluid.plugins.codeWidget();</script>
  393. <script>
  394. Fluid.utils.createScript('https://jscdn.limour.top/npm/anchor-js@4.3.1/anchor.min.js', function() {
  395. window.anchors.options = {
  396. placement: CONFIG.anchorjs.placement,
  397. visible : CONFIG.anchorjs.visible
  398. };
  399. if (CONFIG.anchorjs.icon) {
  400. window.anchors.options.icon = CONFIG.anchorjs.icon;
  401. }
  402. var el = (CONFIG.anchorjs.element || 'h1,h2,h3,h4,h5,h6').split(',');
  403. var res = [];
  404. for (var item of el) {
  405. res.push('.markdown-body > ' + item.trim());
  406. }
  407. if (CONFIG.anchorjs.placement === 'left') {
  408. window.anchors.options.class = 'anchorjs-link-left';
  409. }
  410. window.anchors.add(res.join(', '));
  411. Fluid.events.registerRefreshCallback(function() {
  412. if ('anchors' in window) {
  413. anchors.removeAll();
  414. var el = (CONFIG.anchorjs.element || 'h1,h2,h3,h4,h5,h6').split(',');
  415. var res = [];
  416. for (var item of el) {
  417. res.push('.markdown-body > ' + item.trim());
  418. }
  419. if (CONFIG.anchorjs.placement === 'left') {
  420. anchors.options.class = 'anchorjs-link-left';
  421. }
  422. anchors.add(res.join(', '));
  423. }
  424. });
  425. });
  426. </script>
  427. <script>Fluid.plugins.imageCaption();</script>
  428. <script src="/js/local-search.js" ></script>
  429. <!-- 主题的启动项,将它保持在最底部 -->
  430. <!-- the boot of the theme, keep it at the bottom -->
  431. <script src="/js/boot.js" ></script>
  432. <noscript>
  433. <div class="noscript-warning">Blog works best with JavaScript enabled</div>
  434. </noscript>
  435. <!-- hexo injector body_end start -->
  436. <script defer src="/theme-inject/timeliness.js"></script>
  437. <!-- hexo injector body_end end --></body>
  438. </html>