richard
/
shadowsocks-libev
mirror of https://github.com/shadowsocks/shadowsocks-libev.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1158 Commits
8 Branches
85 Tags
14 MiB
Tree: 7c76026791
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7c76026791'
${ noResults }
shadowsocks-libev/doc/ss-manager.asciidoc

161 lines
4.3 KiB
Raw Normal View History

Asciidoc man page rework (#699) * Add 'tunnel_address' support for json config parser And allow ss-tunnel to use the newly introduced parser. Signed-off-by: Adam Anonymous <anonymous_temp_user@yahoo.co.jp> * Add "mode" support for jconf Now jconf supports "mode" setting, allowed values are "tcp_only", "tcp_and_udp" and "udp_only". Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Use jconf "mode" for server/local/tunnel/manager Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Add per-project vimrc to gitignore As the coding style differs from kernel and other projects, so such project vimrc should be helpful. Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Introduce asciidoc based documentation framework Use asciidoc for new documentation framework, which could not only output man pages, but also htmls. And asciidoc documentation is much more human-readable than roff man pages. Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert shadowsocks-libev man page to asciidoc The port to asciidoc has some format change compared to old one. The most obvious one is the options listed in SYNOPSIS. Now the options list is not split into 2/3 columns, or we must use asciidoc tables and introduce table frames. Other small change includes the removal of AUTHOR sector, as it's not an expendable method to update AUTHOR sector every time it gets updated. Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert ss-local man page to asciidoc Also modify gitignore, since it use too generic rules to ignore such documentation. Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert ss-manager man page to asciidoc Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert ss-nat man page to asciidoc Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert ss-redir man page to asciidoc Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert ss-server man page to asciidoc Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Convert ss-tunnel man page to asciidoc Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Remove old roff man pages Welcome to the new age of asciidoc. Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp> * Doc: Add equivalent tables for command line options and config file Now user can get a more clear view of config file and command line options. Signed-off-by: Adam Anonymous <anonymous_temp_mail@yahoo.co.jp>
8 years ago
  1. ss-manager(1)
  2. =============
  4. NAME
  5. ----
  6. ss-manager - ss-server controller for multi-user management and traffic statistics
  8. SYNOPSIS
  9. --------
  10. *ss-manager*
  11. [-AuUv] [-h|--help]
  12. [-s <server_host>] [-p <server_port>] [-l <local_port>]
  13. [-k <password>] [-m <encrypt_method>] [-f <pid_file>]
  14. [-t <timeout>] [-c <config_file>] [-i <interface>]
  15. [-b <local_addr>] [-a <user_name>]
  16. [--manager-address <path_to_unix_domain>]
  17. [--executable <path_to_server_executable>]
  19. DESCRIPTION
  20. -----------
  21. *Shadowsocks-libev* is a lightweight and secure socks5 proxy.
  22. It is a port of the original shadowsocks created by clowwindy.
  23. *Shadowsocks-libev* is written in pure C and takes advantage of libev to
  24. achieve both high performance and low resource consumption.
  26. *Shadowsocks-libev* consists of five components.
  27. `ss-manager`(1) is a controller for multi-user management and
  28. traffic statistics, using UNIX domain socket to talk with `ss-server`(1).
  29. Also, it provides a UNIX domain socket or IP based API for other software.
  30. About the details of this API, please refer to the following 'PROTOCOL'
  31. section.
  33. OPTIONS
  34. -------
  35. -s <server_host>::
  36. Set the server's hostname or IP.
  38. -k <password>::
  39. Set the password. The server and the client should use the same password.
  41. -m <encrypt_method>::
  42. Set the cipher.
  43. +
  44. *Shadowsocks-libev* accepts 18 different ciphers:
  45. +
  46. table, rc4, rc4-md5, aes-128-cfb, aes-192-cfb, aes-256-cfb, bf-cfb,
  47. camellia-128-cfb, camellia-192-cfb, camellia-256-cfb, cast5-cfb, des-cfb,
  48. idea-cfb, rc2-cfb, seed-cfb, salsa20, chacha20 and chacha20-ietf.
  49. +
  50. The default cipher is 'table'.
  51. +
  52. If built with PolarSSL or custom OpenSSL libraries, some of
  53. these ciphers may not work.
  55. -a <user_name>::
  56. Run as a specific user.
  58. -f <pid_file>::
  59. Start shadowsocks as a daemon with specific pid file.
  61. -t <timeout>::
  62. Set the socket timeout in seconds. The default value is 60.
  64. -c <config_file>::
  65. Use a configuration file.
  67. -i <interface>::
  68. Send traffic through specific network interface.
  69. +
  70. For example, there are three interfaces in your device,
  71. which is lo (127.0.0.1), eth0 (192.168.0.1) and eth1 (192.168.0.2).
  72. Meanwhile, you configure `ss-local` to listen on 0.0.0.0:8388 and bind to eth1.
  73. That results the traffic go out through eth1, but not lo nor eth0.
  74. This option is useful to control traffic in multi-interface environment.
  76. -u::
  77. Enable UDP relay.
  79. -U::
  80. Enable UDP relay and disable TCP relay.
  82. -A::
  83. Enable onetime authentication.
  85. -d <addr>::
  86. Setup name servers for internal DNS resolver (libudns).
  87. The default server is fetched from `/etc/resolv.conf`.
  89. --fast-open::
  90. Enable TCP fast open.
  91. +
  92. Only available with Linux kernel > 3.7.0.
  94. --acl <acl_config>::
  95. Enable ACL (Access Control List) and specify config file.
  97. --manager-address <path_to_unix_domain>::
  98. Specify UNIX domain socket address for the communication between ss-manager(1) and ss-server(1).
  99. +
  100. Only available in server and manager mode.
  102. --executable <path_to_server_executable>::
  103. Specify the executable path of ss-server.
  104. +
  105. Only available in manager mode.
  107. -v::
  108. Enable verbose mode.
  110. -h|--help::
  111. Print help message.
  113. PROTOCOL
  114. --------
  115. `ss-manager`(1) provides several APIs through UDP protocol:
  117. Send UDP commands in the following format to the manager-address provided to ss-manager(1): ::::
  118. command: [JSON data]
  120. To add a port: ::::
  121. add: {"server_port": 8001, "password":"7cd308cc059"}
  123. To remove a port: ::::
  124. remove: {"server_port": 8001}
  126. To receive a pong: ::::
  127. ping
  129. Then `ss-manager`(1) will send back the traffic statistics: ::::
  130. stat: {"8001":11370}
  132. EXAMPLE
  133. -------
  134. To use `ss-manager`(1), First start it and specify necessary information.
  136. Then communicate with `ss-manager`(1) through UNIX Domain Socket using UDP
  137. protocol:
  139. ....
  140. # Start the manager. Arguments for ss-server will be passed to generated
  141. # ss-server process(es) respectively.
  142. ss-manager --manager-address /tmp/manager.sock --executable $(which ss-server) -s example.com -m aes-256-cfb -c /path/to/config.json
  144. # Connect to the socket. Using netcat-openbsd as an example.
  145. # You should use scripts or other programs for further management.
  146. nc -Uu /tmp/manager.sock
  147. ....
  149. After that, you may communicate with `ss-manager`(1) as described above in the
  150. 'PROTOCOL' section.
  152. SEE ALSO
  153. --------
  154. `ss-local`(1),
  155. `ss-server`(1),
  156. `ss-tunnel`(1),
  157. `ss-redir`(1),
  158. `shadowsocks-libev`(8),
  159. `iptables`(8),
  160. /etc/shadowsocks-libev/config.json