Xray项目已经确定独自运作,目前最新版是1.1.2版本。根据测试数据,服务端direct+客户端使用splice后性能比VLESS裸奔还要强上一倍,已经远超trojan/trojan-go,非常推荐使用。
本文的Xray一键脚本可以配置常规VMESS协议、VMESS+KCP、VMESS+websocket+TLS+Nginx、VLESS+TCP+XTLS、VLESS+TCP+TLS、trojan、trojan+XTLS等多种组合,支持CentOS 7/8、Ubuntu 16.04、Debian 8及新版系统。
注意:目前CentOS7系统已经到生命周期,不建议使用该系统,可能会导致脚本运行失败!建议使用Debian或者Ubuntu系统。
Xray一键脚本使用方法
Xray一键脚本使用步骤如下:
1. 准备一个境外服务器,想服务器速度快请参考 搬瓦工VPS购买教程 或从 CN2 GIA VPS商家推荐 选购,想ip被封后免费换请参考:购买vultr服务器超详细图文教程。
如果用VMESS+WS+TLS或者VLESS系列协议,则还需一个域名。对域名没有要求,国内/国外注册的都可以,不需要备案,不会影响使用,也不会带来安全/隐私上的问题。购买域名可参考:Namesilo购买域名详细教程。
值得一提的是本Xray一键脚本支持ipv6 only服务器,但是不建议用只有ipv6的VPS用来科学上网。
2. 如果vps运营商开启了防火墙(阿里云、Ucloud、腾讯云、AWS、GCP等商家默认有,搬瓦工/hostdare/vultr等商家默认关闭),请先登录vps管理后台放行80和443端口,否则可能会导致获取证书失败。此外,本脚本支持上传自定义证书,可跳过申请证书这一步,也可用在NAT VPS上。
3. ssh连接到服务器。Windows系统请参考 Bitvise连接Linux服务器教程,mac用户请参考 Mac电脑连接Linux教程。
4. 复制(或手动输入)下面命令到终端:
bash <(curl -Ls https://raw.githubusercontent.com/daveleung/hijkpw-scripts-mod/main/xray_mod1.sh)按回车键,将出现如下操作菜单。如果菜单没出现,CentOS系统请输入 yum install -y curl,Ubuntu/Debian系统请输入 apt install -y curl,然后再次运行上面的命令:
Xray一键安装脚本
本Xray一键脚本目前支持以下组合方式:
- VMESS,即最普通的V2ray服务器,没有伪装,也不是VLESS
- VMESS+KCP,传输协议使用mKCP,VPS线路不好时可能有奇效
- VMESS+TCP+TLS,带伪装的V2ray,不能过CDN中转
- VMESS+WS+TLS,即最通用的V2ray伪装方式,能过CDN中转,推荐使用
- VLESS+KCP,传输协议使用mKCP
- VLESS+TCP+TLS,通用的VLESS版本,不能过CDN中转,但比VMESS+TCP+TLS方式性能更好
- VLESS+WS+TLS,基于websocket的V2ray伪装VLESS版本,能过CDN中转,有过CDN情况下推荐使用
- VLESS+TCP+XTLS,目前最强悍的VLESS+XTLS组合,强力推荐使用(但是支持的客户端少一些)
- trojan,轻量级的伪装协议
- trojan+XTLS,trojan加强版,使用XTLS技术提升性能
注意:目前一些客户端不支持VLESS协议,或者不支持XTLS,请按照自己的情况选择组合
5. 按照自己的需求选择一个方式。例如6,然后回车。接着脚本会让你输入一些信息,也可以直接按回车使用默认值。需要注意的是,对于要输入伪装域名的情况,如果服务器上有网站在运行,请联系运维再执行脚本,否则可能导致原来网站无法访问!
xray一键脚本输入
6. 脚本接下来会自动运行,一切顺利的话结束后会输出配置信息:
Xray一键脚本运行成功输出信息
到此服务端配置完毕,服务器可能会自动重启(没提示重启则不需要),windows终端出现“disconnected”,mac出现“closed by remote host”说明服务器成功重启了。
对于VLESS协议、VMESS+WS+TLS的组合,网页上输入伪装域名,能正常打开伪装站,说明服务端已经正确配置好。如果运行过程中出现问题,请在本页面下方查找解决方法或留言。
Xray一键脚本其他事项
服务端配置好后,如果想使用CloudFlare等CDN中转(必须是WS版才可以),请参考:使用cloudflare中转流量,拯救被墙ip。
本脚本默认使用的加速技术是BBR,换成魔改BBR/BBR Plus/锐速清参考:安装魔改BBR/BBR Plus/锐速(Lotserver)。
如果伪装站类型没有你满意的,比如你想搭建WordPress博客,请参考:V2ray伪装建站教程。
对于使用TLS的方式,脚本默认会申请域名证书,证书存放在和xray配置文件同一个文件夹内(即/usr/local/etc/xray目录下)。证书会自动更新,如果客户端突然无法使用,请打开伪装网站查看是否能正常打开。如果证书已过期,请再次运行上面的脚本重新配置。
最后,刚搭建好Xray后不要猛上流量,否则会导致被限速、端口被墙,严重可能导致ip被墙。
接下来是配置客户端,下载客户端和配置教程请参考:
祝大家使用愉快。如有问题请在页面下方留言。
下载这个文件失败:
Downloading https://github.com/acmesh-official/acme.sh/archive/master.tar.gz
========================
软件包 cronie-1.4.11-23.el7.x86_64 已安装并且是最新版本
无须任何处理
shell-init: 获取当前目录时出错: getcwd: 无法访问父目录: 没有那个文件或目录
shell-init: 获取当前目录时出错: getcwd: 无法访问父目录: 没有那个文件或目录
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 206k 100 206k 0 0 1211k 0 –:–:– –:–:– –:–:– 1215k
[2021年 05月 09日 星期日 22:47:33 CST] Installing from online archive.
[2021年 05月 09日 星期日 22:47:33 CST] Downloading https://github.com/acmesh-official/acme.sh/archive/master.tar.gz
sh:行6711: master.tar.gz: 没有那个文件或目录
[2021年 05月 09日 星期日 22:47:33 CST] Download error.
shell-init: 获取当前目录时出错: getcwd: 无法访问父目录: 没有那个文件或目录
/dev/fd/63:行553: /root/.acme.sh/acme.sh: 没有那个文件或目录
/dev/fd/63:行557: /root/.acme.sh/acme.sh: 没有那个文件或目录
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
========================
服务器网络有问题
我多尝试了几次后这个文件倒是下载下来了,不过又提示 Add ‘–force’ to force to renew.
ps:这次是尝试安装xray脚本
======================
[2021年 05月 10日 星期一 13:49:50 CST] Installing from online archive.
[2021年 05月 10日 星期一 13:49:51 CST] Downloading https://github.com/acmesh-official/acme.sh/archive/master.tar.gz
[2021年 05月 10日 星期一 13:49:51 CST] Extracting master.tar.gz
[2021年 05月 10日 星期一 13:49:51 CST] Installing to /root/.acme.sh
[2021年 05月 10日 星期一 13:49:51 CST] Installed to /root/.acme.sh/acme.sh
[2021年 05月 10日 星期一 13:49:51 CST] Installing alias to ‘/root/.bashrc’
[2021年 05月 10日 星期一 13:49:51 CST] OK, Close and reopen your terminal to start using acme.sh
[2021年 05月 10日 星期一 13:49:51 CST] Installing alias to ‘/root/.cshrc’
[2021年 05月 10日 星期一 13:49:51 CST] Installing alias to ‘/root/.tcshrc’
[2021年 05月 10日 星期一 13:49:51 CST] Installing cron job
[2021年 05月 10日 星期一 13:49:51 CST] Good, bash is found, so change the shebang to use bash as preferred.
[2021年 05月 10日 星期一 13:49:52 CST] OK
[2021年 05月 10日 星期一 13:49:52 CST] Install success!
[2021年 05月 10日 星期一 13:49:52 CST] Already uptodate!
[2021年 05月 10日 星期一 13:49:52 CST] Upgrade success!
[2021年 05月 10日 星期一 13:49:53 CST] Domains not changed.
[2021年 05月 10日 星期一 13:49:53 CST] Skip, Next renewal time is: 2021年 07月 09日 星期五 01:51:33 UTC
[2021年 05月 10日 星期一 13:49:53 CST] Add ‘–force’ to force to renew.
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
rm -rf ~/.acme.sh,然后重新运行一键脚本
感谢大佬,已经搞定了
谢谢大佬,我的也搞定了
VLESS+TCP+XTLS
我装的这个组合,装完后能打开伪装网站,使用也正常,但是重启vps后伪装网站打不开了,也不能正常使用
检测xray和nginx进程启动了,是否还有其它进程没有设置开机启动,导致重启vps就无法正常使用呢?
貌似不应该有这种情况
请大佬验证下,vps一般不重启,但一旦重启还要重新配置,还是有点麻烦的
不会存在这个问题的,应该是重启后软件没有正常运行
其他进程占用了80或443端口,请先关闭再运行一键脚本
端口占用信息如下:
tcp6 0 0 :::443 :::* LISTEN 1455/v2ray
找不到这个占了端口的程序怎么办
先把v2ray进程停掉
opc.mianmianku.com:Verify error:Fetching http://opc.mianmianku.com/.well-known/acme-challenge/3TO6ooPQ1QYgiDv8OwENrimSSq7wl41L9g9fA8qntzA: Error getting validation data
[Sun May 23 02:09:40 GMT 2021] Please add ‘–debug’ or ‘–log’ to check more details.
[Sun May 23 02:09:40 GMT 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Sun May 23 02:09:40 GMT 2021] Run post hook:’systemctl restart nginx’
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
[root@instance-20210522-2134 ~]#
dns没生效或者解析错误了
好的 谢谢啦
[Sun May 23 13:25:59 UTC 2021] Downloading cert.
[Sun May 23 13:25:59 UTC 2021] Le_LinkCert=’https://acme-v02.api.letsencrypt.org/acme/cert/0433525e7d6446e21734b0e9e2463bb13c89′
[Sun May 23 13:26:14 UTC 2021] Please refer to https://curl.haxx.se/libcurl/c/libcurl-errors.html for error code: 35
[Sun May 23 13:26:14 UTC 2021] Sign failed:
[Sun May 23 13:26:14 UTC 2021] Please add ‘–debug’ or ‘–log’ to check more details.
[Sun May 23 13:26:14 UTC 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Sun May 23 13:26:14 UTC 2021] Run post hook:’systemctl restart nginx’
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
证书获取失败怎么处理?
可能是脚本有问题了,有空我看看
2021/06/03 10:02:33 [Warning] [1468650925] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp 174.137.48.89:443: i/o timeout dial tcp 174.137.48.89:443: operation was canceled] > common/retry: all retry attempts failed
这个是怎么回事,之前一直用的好好的,服务器没有问题
ip被墙了
哦,非常感谢,那还能挽救吗,有没有什么办法
换ip,或者用cloudflare中转
好的,感谢
China, Shenzhen Aliyun Connection to 174.*.*.*:443 failed
China, Beijing Aliyun Connection to 174.*.*.*:443 failed
China, Beijing Tencent Connection to 174.*.*.*:443 failed
China, Quanzhou China Telecom CN2 Connection to 174.*.*.*:443 failed
China, Jiangsu China Telecom Connection to 174.*.*.*:443 failed
China, Jiangsu China Mobile Connection to 174.*.*.*:443 failed
China, Jiangsu China Unicom Connection to 174.*.*.*:443 failed
China, Hangzhou Aliyun Connection to 174.*.*.*:443 failed
China, Qingdao Aliyun Connection to 174.*.*.*:443 failed
China, Shanghai Aliyun Connection to 174.*.*.*:443 failed
这个是在 http://port.ping.pe 查的,国外的都显示连接正常,国内的这些都是failed, 是不是说明443端口被封了
我的也是这种情况,访问80端口就可以进入那个伪装网站,443端口国内一致faild,怎么解决
443端口被封了
大佬你好,请问 不套cdn打不开伪装站,套了cdn能打开,但是访问不了外网,这是什么原因啊
443端口被墙,换一个端口
安装nginx…
Reading package lists… Done
Building dependency tree
Reading state information… Done
nginx is already the newest version (1.14.2-2+deb10u4).
0 upgraded, 0 newly installed, 0 to remove and 14 not upgraded.
Synchronizing state of nginx.service with SysV service script with /lib/systemd/systemd-sysv-install.
Executing: /lib/systemd/systemd-sysv-install enable nginx
Failed to stop xray.service: Unit xray.service not loaded.
Reading package lists… Done
Building dependency tree
Reading state information… Done
openssl is already the newest version (1.1.1d-0+deb10u6).
socat is already the newest version (1.7.3.2-2).
0 upgraded, 0 newly installed, 0 to remove and 14 not upgraded.
Reading package lists… Done
Building dependency tree
Reading state information… Done
cron is already the newest version (3.0pl1-134+deb10u1).
0 upgraded, 0 newly installed, 0 to remove and 14 not upgraded.
Synchronizing state of cron.service with SysV service script with /lib/systemd/systemd-sysv-install.
Executing: /lib/systemd/systemd-sysv-install enable cron
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 199k 100 199k 0 0 7671k 0 –:–:– –:–:– –:–:– 7978k
[Tue Jun 22 15:19:53 UTC 2021] Installing from online archive.
[Tue Jun 22 15:19:53 UTC 2021] Downloading https://github.com/acmesh-official/acme.sh/archive/master.tar.gz
[Tue Jun 22 15:19:53 UTC 2021] Extracting master.tar.gz
[Tue Jun 22 15:19:54 UTC 2021] Installing to /root/.acme.sh
[Tue Jun 22 15:19:54 UTC 2021] Installed to /root/.acme.sh/acme.sh
[Tue Jun 22 15:19:54 UTC 2021] Installing alias to ‘/root/.bashrc’
[Tue Jun 22 15:19:54 UTC 2021] OK, Close and reopen your terminal to start using acme.sh
[Tue Jun 22 15:19:54 UTC 2021] Installing cron job
51 0 * * * “/root/.acme.sh”/acme.sh –cron –home “/root/.acme.sh” > /dev/null
[Tue Jun 22 15:19:54 UTC 2021] Good, bash is found, so change the shebang to use bash as preferred.
[Tue Jun 22 15:19:54 UTC 2021] OK
[Tue Jun 22 15:19:54 UTC 2021] Install success!
[Tue Jun 22 15:19:55 UTC 2021] Already uptodate!
[Tue Jun 22 15:19:55 UTC 2021] Upgrade success!
[Tue Jun 22 15:19:55 UTC 2021] Domains not changed.
[Tue Jun 22 15:19:55 UTC 2021] Skip, Next renewal time is: Sat Aug 21 15:17:18 UTC 2021
[Tue Jun 22 15:19:55 UTC 2021] Add ‘–force’ to force to renew.
[Tue Jun 22 15:19:55 UTC 2021] Installing key to:/usr/local/etc/xray/www.moonairy.com.key
[Tue Jun 22 15:19:55 UTC 2021] Installing full chain to:/usr/local/etc/xray/www.moonairy.com.pem
[Tue Jun 22 15:19:55 UTC 2021] Run reload cmd: service nginx force-reload
nginx.service is not active, cannot reload.
[Tue Jun 22 15:19:55 UTC 2021] Reload error for :
安装Xray…
/dev/fd/63: line 176: /usr/local/bin/xray: No such file or directory
安装Xray vhttps://api.github.com/repos/XTLS/Xray-core/releases/40824536 ,架构64
下载Xray: https://github.com/XTLS/Xray-core/releases/download/vhttps://api.github.com/repos/XTLS/Xray-core/releases/40824536/Xray-linux-64.zip
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 9 100 9 0 0 39 0 –:–:– –:–:– –:–:– 39
Failed to stop xray.service: Unit xray.service not loaded.
Archive: /tmp/xray/xray.zip
End-of-central-directory signature not found. Either this file is not
a zipfile, or it constitutes one disk of a multi-part archive. In the
latter case the central directory and zipfile comment will be found on
the last disk(s) of this archive.
unzip: cannot find zipfile directory in one of /tmp/xray/xray.zip or
/tmp/xray/xray.zip.zip, and cannot find /tmp/xray/xray.zip.ZIP, period.
cp: cannot stat ‘/tmp/xray/xray’: No such file or directory
cp: cannot stat ‘/tmp/xray/geo*’: No such file or directory
chmod: cannot access ‘/usr/local/bin/xray’: No such file or directory
Xray安装失败
这个bug应该修复了,再试试
博主你好,如果要搭建wordpress网站,伪装网站类型怎么选择?我看建站教程,有个wordpress一键脚本。具体怎么操作呀?先运行xray一键脚本,然后再运行wordpress一键脚本吗?能否给个简单的流程,教程里面说的不清楚呀。
随便选都可以,安装完一键脚本后再看另外一个教程安装wordpress的脚本
[Wed Jun 30 10:04:17 CST 2021] Getting domain auth token for each domain
[Wed Jun 30 10:04:18 CST 2021] Create new order error. Le_OrderFinalize not found. {“type”:”urn:ietf:params:acme:error:rejectedIdentifier”,”status”:400,”detail”:”Invalid DNS identifier [140.238.31.208]”}
[Wed Jun 30 10:04:18 CST 2021] Please add ‘–debug’ or ‘–log’ to check more details.
[Wed Jun 30 10:04:18 CST 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Wed Jun 30 10:04:18 CST 2021] Run post hook:’systemctl restart nginx’
Job for nginx.service failed because the control process exited with error code. See “systemctl status nginx.service” and “journalctl -xe” for details.
[Wed Jun 30 10:04:19 CST 2021] Error when run post hook.
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
大佬这个问题怎么解决
证书提供商有问题,再等等
怎么换端口呢
重新运行一键脚本
[Tue Jun 29 23:02:20 EDT 2021] Sign error, wrong status
[Tue Jun 29 23:02:20 EDT 2021]
504 Gateway Time-out
504 Gateway Time-out
nginx
[Tue Jun 29 23:02:20 EDT 2021] Please add ‘–debug’ or ‘–log’ to check more details.
[Tue Jun 29 23:02:20 EDT 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Tue Jun 29 23:02:20 EDT 2021] Run post hook:’systemctl restart nginx’
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
这是啥情况
证书提供商有问题,晚点再试试
这个脚本的path在哪里看 直接/ 还是翻不过去
ws协议才有path,重新运行一键脚本,选择查看信息就能看到配置的信息
— Logs begin at Sat 2021-07-03 14:54:41 CST, end at Sat 2021-07-03 17:59:51 CST. —
Jul 03 15:30:29 happyday.com xray[769]: 2021/07/03 15:30:29 [Warning] [1955019150] app/proxyman/inbound: connection ends > proxy/trojan: failed to find the default “alpn” config
Jul 03 17:21:23 happyday.com xray[769]: 2021/07/03 17:21:23 [Warning] [1752872378] app/proxyman/inbound: connection ends > proxy/trojan: failed to find the default “alpn” config
Jul 03 17:24:25 happyday.com xray[769]: 2021/07/03 17:24:25 [Warning] [3276399849] app/proxyman/inbound: connection ends > proxy/trojan: failed to find the default “alpn” config
Jul 03 17:24:26 happyday.com xray[769]: 2021/07/03 17:24:26 [Warning] [447332237] app/proxyman/inbound: connection ends > proxy/trojan: failed to find the default “alpn” config
突然不行了 日志这样是什么情况
V2rayN要用xray内核
默认的443端口不行 换了一个就可以
博主你好,我用的Xray一键脚本。突然就没法上网了日志如下,我用的谷歌云。麻烦你帮诊断一下出了什么问题。
Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16.2 windows/amd64)
A unified platform for anti-censorship.
2021/07/04 10:34:53 [Info] infra/conf/serial: Reading config: D:/ss v2ray/deployment/config/generated/config.gen.json
2021/07/04 10:34:54 [Warning] core: Xray 1.4.2 started
2021/07/04 10:34:54 127.0.0.1:57523 accepted tcp:127.0.0.1:0 [QV2RAY_API_INBOUND -> QV2RAY_API]
2021/07/04 10:34:55 DNS accepted udp:1.1.1.1:53 [xray.system.8675d375-c27a-4fba-9592-599b60793f39 >> GCP收费]
2021/07/04 10:34:59 DNS accepted udp:8.8.8.8:53 [xray.system.8675d375-c27a-4fba-9592-599b60793f39 >> GCP收费]
2021/07/04 10:35:03 DNS accepted udp:8.8.4.4:53 [xray.system.8675d375-c27a-4fba-9592-599b60793f39 >> GCP收费]
2021/07/04 10:35:19 127.0.0.1:64264 accepted //clients2.google.com:443 [http_IN >> GCP收费]
2021/07/04 10:35:23 127.0.0.1:52754 accepted //www.googleapis.com:443 [http_IN >> GCP收费]
2021/07/04 10:35:28 [Warning] [1366321018] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp 35.229.245.158:443: operation was canceled] > common/retry: all retry attempts failed
2021/07/04 10:35:32 [Warning] [592143331] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp 35.229.245.158:443: operation was canceled] > common/retry: all retry attempts failed
2021/07/04 10:35:32 127.0.0.1:61056 accepted //filters.adtidy.org:443 [http_IN >> GCP收费]
2021/07/04 10:35:35 127.0.0.1:53310 accepted //www.google.com:443 [http_IN >> GCP收费]
2021/07/04 10:35:41 [Warning] [1240030560] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp 35.229.245.158:443: operation was canceled] > common/retry: all retry attempts failed
443端口被封了,重新运行一键脚本换一个吧
好的,十分感谢。还有一些小白问题请教,端口的选择有什么讲究吗?我用了wordpress一键脚本,博客搞好之后,发现伪装网站打不开了,wordpress的网址是我的域名加端口。wordpress的网址可以任意设置吗?还是必须是我的域名,或者我域名的任意子域名?如果设置子域名作为博客地址,那还需要重新设置域名解析吗?我之前的域名解析我也是按你的教程来的。十分感谢
都可以随意设置
同样的配置在手机上可以,在雷电模拟器上运行,提示服务启动失败是怎么回事?还有就是设置了伪装网站,输入域名出现403 Forbidden – By BlackList Of Region ,这样该怎么办,重装么?
模拟器上配置错了。另外,哪个错误应该是插件或者cdn给的,不影响
Thu Aug 12 03:32:48 GMT 2021] Installing from online archive.
[Thu Aug 12 03:32:48 GMT 2021] Downloading https://github.com/acmesh-official/acme.sh/archive/master.tar.gz
[Thu Aug 12 03:32:52 GMT 2021] Extracting master.tar.gz
[Thu Aug 12 03:32:52 GMT 2021] Installing to /root/.acme.sh
[Thu Aug 12 03:32:52 GMT 2021] Installed to /root/.acme.sh/acme.sh
[Thu Aug 12 03:32:52 GMT 2021] Installing alias to ‘/root/.bashrc’
[Thu Aug 12 03:32:52 GMT 2021] OK, Close and reopen your terminal to start using acme.sh
[Thu Aug 12 03:32:52 GMT 2021] Installing alias to ‘/root/.cshrc’
[Thu Aug 12 03:32:52 GMT 2021] Installing alias to ‘/root/.tcshrc’
[Thu Aug 12 03:32:52 GMT 2021] Installing cron job
30 0 * * * “/root/.acme.sh”/acme.sh –cron –home “/root/.acme.sh” > /dev/null
[Thu Aug 12 03:32:52 GMT 2021] Good, bash is found, so change the shebang to use bash as preferred.
[Thu Aug 12 03:32:54 GMT 2021] OK
[Thu Aug 12 03:32:54 GMT 2021] Install success!
[Thu Aug 12 03:32:56 GMT 2021] Already uptodate!
[Thu Aug 12 03:32:56 GMT 2021] Upgrade success!
[Thu Aug 12 03:32:56 GMT 2021] Changed default CA to: https://acme-v02.api.letsencrypt.org/directory
[Thu Aug 12 03:32:58 GMT 2021] Using CA: https://acme-v02.api.letsencrypt.org/directory
[Thu Aug 12 03:32:58 GMT 2021] Run pre hook:’systemctl stop nginx’
[Thu Aug 12 03:32:58 GMT 2021] Standalone mode.
[Thu Aug 12 03:32:58 GMT 2021] Single domain=’pic.u2c.xyz’
[Thu Aug 12 03:32:58 GMT 2021] Getting domain auth token for each domain
[Thu Aug 12 03:33:03 GMT 2021] Getting webroot for domain=’pic.u2c.xyz’
[Thu Aug 12 03:33:03 GMT 2021] Verifying: pic.u2c.xyz
[Thu Aug 12 03:33:03 GMT 2021] Standalone mode server
[Thu Aug 12 03:33:05 GMT 2021] Pending, The CA is processing your order, please just wait. (1/30)
[Thu Aug 12 03:33:09 GMT 2021] pic.u2c.xyz:Verify error:Fetching http://pic.u2c.xyz/.well-known/acme-challenge/_Ye8QWz5yt_bYJxA0c0RfWlVV_4rZ0d7dmhm-xgCn7M: Error getting validation data
[Thu Aug 12 03:33:09 GMT 2021] Please add ‘–debug’ or ‘–log’ to check more details.
[Thu Aug 12 03:33:09 GMT 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Thu Aug 12 03:33:09 GMT 2021] Run post hook:’systemctl restart nginx’
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
dns解析错了,或者解析未生效
你好博主,用这个脚本配置了xray,配置前ip解析了www和不带www的根域名,配置时候解析的是带www的,带www的能打开网站正常访问,不带www无法访问,想问下如何做到,带不带www都能正常打开同时不影响科学。
需要自己修改/etc/nginx/conf.d/你的域名.conf 这个文件
你好博主 在这个配置文件里需要怎么修改,才能实现都能正常访问?查了很多资料,基本这种情况要实现是www跳转到不带www这个,http跳转到https,但是总是不成功,因为对代码也不是很懂,按照网上其他教程,修改总是不成功,所以还要回来麻烦博主了。
[Fri Aug 20 10:12:03 CST 2021] Create new order error. Le_OrderFinalize not found. {
“type”: “urn:ietf:params:acme:error:rateLimited”,
“detail”: “Error creating new order :: too many certificates (5) already issued for this exact set of domains in the last 168 hours: http://www.super66tomato.tk: see https://letsencrypt.org/docs/rate-limits/“,
“status”: 429
}
[Fri Aug 20 10:12:03 CST 2021] Please add ‘–debug’ or ‘–log’ to check more details.
[Fri Aug 20 10:12:03 CST 2021] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Fri Aug 20 10:12:03 CST 2021] Run post hook:’systemctl restart nginx’
获取证书失败,请复制上面的红色文字到 https://hijk.art 反馈
域名申请太多次证书了,换一个二级域名