richard
/
shadowsocks-libev
mirror of https://github.com/shadowsocks/shadowsocks-libev.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1028 Commits
8 Branches
85 Tags
14 MiB
Tree: ebe79bbbd8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ebe79bbbd8'
${ noResults }
shadowsocks-libev/man/shadowsocks-libev.8

227 lines
7.1 KiB
Raw Normal View History

update manual
11 years ago
fix a typo
11 years ago
update manual
11 years ago
update documents
10 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update manual
11 years ago
update documents
10 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update manual
11 years ago
Change 'scoks' to 'socks'
9 years ago
update manual
11 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update manual
11 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update documents
10 years ago
update documents
10 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
man: update info about cipher.
9 years ago
update documents
10 years ago
man: update info about cipher.
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update documents
10 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
add ip addr support
9 years ago
update manual
11 years ago
update documents
10 years ago
man: update info of arguments.
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
bump version
10 years ago
update documents
10 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update documents
10 years ago
add onetime authentication
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update documents
10 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update documents
10 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update manual
11 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
update manual
11 years ago
Add TPROXY support for redir mode
9 years ago
update manual
11 years ago
Add TPROXY support for redir mode
9 years ago
update manual
11 years ago
update manual
11 years ago
Add TPROXY support for redir mode
9 years ago
update manual
11 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
add ip addr support
9 years ago
update manual
11 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
update manual
11 years ago
completely rename as shadowsocks-libev. it's not conflicted with shadowsocks-python now. users can install both python and libev ports of shaowsocks now. but they should migrate their old configuration file from /etc/shadowsocks/config.json to /etc/shadowsocks-libev/config.json
10 years ago
update manual
11 years ago
update documents
10 years ago
update manual
11 years ago
add newly arranged man pages This commit contains rearranged man pages for shadowsocks-libev and the five executables.
9 years ago
  1. .ig
  2. . manual page for shadowsocks-libev
  3. .
  4. . Copyright (c) 2012-2015, by: Max Lv
  5. . All rights reserved.
  6. .
  7. . Permission is granted to copy, distribute and/or modify this document
  8. . under the terms of the GNU Free Documentation License, Version 1.1 or
  9. . any later version published by the Free Software Foundation;
  10. . with no Front-Cover Texts, no Back-Cover Texts, and with the following
  11. . Invariant Sections (and any sub-sections therein):
  12. . all .ig sections, including this one
  13. . STUPID TRICKS Sampler
  14. . AUTHOR
  15. .
  16. . A copy of the Free Documentation License is included in the section
  17. . entitled "GNU Free Documentation License".
  18. .
  19. ..
  20. \# - these two are for chuckles, makes great grammar
  21. .ds Lo \fBss-local\fR
  22. .ds Re \fBss-redir\fR
  23. .ds Se \fBss-server\fR
  24. .ds Tu \fBss-tunnel\fR
  25. .ds Ma \fBss-manager\fR
  26. .ds Me \fBShadowsocks-libev\fR
  27. .
  28. .TH "SHADOWSOCKS-LIBEV" "8" "September 10, 2015" "SHADOWSOCKS-LIBEV"
  29. .SH NAME
  30. shadowsocks-libev \- a lightweight and secure socks5 proxy
  32. .SH SYNOPSIS
  33. \*(Lo|\*(Re|\*(Se|\*(Tu|\*(Ma
  34. [\fB\-s\fR \fIserver_host\fR] [\fB\-p\fR \fIserver_port\fR]
  35. [\fB\-l\fR \fIlocal_port\fR] [\fB\-k\fR \fIpassword\fR]
  36. [\fB\-m\fR \fIencrypt_method\fR] [\fB\-f\fR \fIpid_file\fR]
  37. [\fB\-t\fR \fItimeout\fR] [\fB\-c\fR \fIconfig_file\fR]
  39. .SH DESCRIPTION
  40. \*(Me is a lightweight and secure socks5 proxy. It is a port of the original
  41. shadowsocks created by clowwindy. \*(Me is written in pure C and takes advantage
  42. of \fBlibev\fP to achieve both high performance and low resource consumption.
  43. .PP
  44. \*(Me consists of five components. One is \*(Se(1) that runs on a remote server
  45. to provide secured tunnel service. \*(Lo(1) and \*(Re(1) are clients on your local
  46. machines to proxy TCP traffic. \*(Tu(1) is a tool for local port forwarding.
  47. .PP
  48. While \*(Lo(1) works as a standard socks5 proxy, \*(Re(1) works as a transparent proxy
  49. and requires netfilter's NAT module. For more information, check out the example
  50. section.
  51. .PP
  52. \*(Ma(1) is a controller for multi-user management and traffic statistics, using UNIX
  53. domain socket to talk with \*(Se(1). Also, it provides a UNIX domain socket or IP based
  54. API for other software. About the details of this API, please refer to the protocol
  55. section.
  57. .SH OPTIONS
  58. .TP
  59. .B \-s \fIserver_host\fP
  60. Set the server's hostname or IP.
  61. .TP
  62. .B \-p \fIserver_port\fP
  63. Set the server's port number.
  64. .TP
  65. .B \-l \fIlocal_port\fP
  66. Set the local port number.
  67. .TP
  68. .B \-k \fIpassword\fP
  69. Set the password. The server and the client should use the same password.
  70. .TP
  71. .B \-m \fIencrypt_method\fP
  72. Set the cipher.
  74. \*(Me accepts 18 different ciphers: table, rc4, rc4-md5,
  75. aes-128-cfb, aes-192-cfb, aes-256-cfb, bf-cfb, camellia-128-cfb,
  76. camellia-192-cfb, camellia-256-cfb, cast5-cfb, des-cfb, idea-cfb, rc2-cfb,
  77. seed-cfb, salsa20, chacha20 and chacha20-ietf. The default cipher is \fItable\fP.
  79. If built with PolarSSL or custom OpenSSL libraries, some of these ciphers may
  80. not work.
  81. .TP
  82. .B \-f \fIpid_file\fP
  83. Start shadowsocks as a daemon with specific pid file.
  84. .TP
  85. .B \-t \fItimeout\fP
  86. Set the socket timeout in seconds. The default value is 10.
  87. .TP
  88. .B \-c \fIconfig_file\fP
  89. Use a configuration file.
  90. .TP
  91. .B \-n \fInofile\fP
  92. Specify max number of open files.
  94. Only available on Linux.
  95. .TP
  96. .B \-i \fIinterface\fP
  97. Specify network interface to bind.
  99. Not available in redir mode.
  100. .TP
  101. .B \-b \fIlocal_address\fP
  102. Specify local address to bind.
  104. Not available in server mode.
  105. .TP
  106. .B \-a \fIuser_name\fP
  107. Run as a specific user.
  108. .TP
  109. .B \-u
  110. Enable UDP relay.
  111. TPROXY is required in redir mode.
  112. .TP
  113. .B \-U
  114. Enable UDP relay and disable TCP relay.
  115. Not available in local mode.
  116. .TP
  117. .B \-A
  118. Enable onetime authentication.
  119. .TP
  120. .B \-L \fIaddr\fR:\fIport\fP
  121. Specify destination server address and port for local port forwarding.
  123. Only available in tunnel mode.
  124. .TP
  125. .B \-d \fIaddr\fP
  126. Setup name servers for internal DNS resolver (libudns). The default server
  127. is fetched from /etc/resolv.conf.
  129. Only available in server mode.
  130. .TP
  131. .B \--fast-open
  132. Enable TCP fast open.
  134. Only available in local and server mode, with Linux kernel > 3.7.0.
  135. .TP
  136. .B \--acl \fIacl_config\fP
  137. Enable ACL (Access Control List) and specify config file.
  138. Only available in local and server mode.
  139. .TP
  140. .B \--manager-address \fIpath_to_unix_domain\fP
  141. Specify UNIX domain socket address.
  142. Only available in server and manager mode.
  143. .TP
  144. .B \--executable \fIpath_to_server_executable\fP
  145. Specify the executable path of ss-server.
  146. Only available in manager mode.
  147. .TP
  148. .B \-v
  149. Enable verbose mode.
  151. .SH EXAMPLE
  152. \*(Re requires netfilter's NAT function. Here is an example:
  154. # Create new chain
  155. root@Wrt:~# iptables -t nat -N SHADOWSOCKS
  157. # Ignore your shadowsocks server's addresses
  158. # It's very IMPORTANT, just be careful.
  159. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 123.123.123.123 -j RETURN
  161. # Ignore LANs and any other addresses you'd like to bypass the proxy
  162. # See Wikipedia and RFC5735 for full list of reserved networks.
  163. # See ashi009/bestroutetb for a highly optimized CHN route list.
  164. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 0.0.0.0/8 -j RETURN
  165. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 10.0.0.0/8 -j RETURN
  166. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 127.0.0.0/8 -j RETURN
  167. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 169.254.0.0/16 -j RETURN
  168. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 172.16.0.0/12 -j RETURN
  169. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 192.168.0.0/16 -j RETURN
  170. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 224.0.0.0/4 -j RETURN
  171. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -d 240.0.0.0/4 -j RETURN
  173. # Anything else should be redirected to shadowsocks's local port
  174. root@Wrt:~# iptables -t nat -A SHADOWSOCKS -p tcp -j REDIRECT --to-ports 12345
  176. # Add any UDP rules
  177. root@Wrt:~# ip rule add fwmark 0x01/0x01 table 100
  178. root@Wrt:~# ip route add local 0.0.0.0/0 dev lo table 100
  179. root@Wrt:~# iptables -t mangle -A SHADOWSOCKS -p udp --dport 53 -j TPROXY --on-port 12345 --tproxy-mark 0x01/0x01
  181. # Apply the rules
  182. root@Wrt:~# iptables -t nat -A PREROUTING -p tcp -j SHADOWSOCKS
  183. root@Wrt:~# iptables -t mangle -A PREROUTING -j SHADOWSOCKS
  185. # Start the shadowsocks-redir
  186. root@Wrt:~# ss-redir -u -c /etc/config/shadowsocks.json -f /var/run/shadowsocks.pid
  188. .SH PROTOCOL
  189. \*(Ma(1) provides several APIs through UDP protocol:
  191. Send UDP commands in the following format to the manager-address provided to \*(Ma(1).
  193. command: [JSON data]
  195. To add a port:
  197. add: {"server_port": 8001, "password":"7cd308cc059"}
  199. To remove a port:
  201. remove: {"server_port": 8001}
  203. To receive a pong:
  205. ping
  207. Then \*(Ma(1) will send back the traffic statistics:
  209. stat: {"8001":11370}
  211. .SH SEE ALSO
  212. .BR \*(Lo (1),
  213. .BR \*(Se (1),
  214. .BR \*(Tu (1),
  215. .BR \*(Re (1),
  216. .BR \*(Ma (1),
  217. .BR iptables (8),
  218. /etc/shadowsocks-libev/config.json
  219. .br
  220. .SH AUTHOR
  221. shadowsocks was created by clowwindy <clowwindy42@gmail.com> and
  222. shadowsocks-libev was maintained by Max Lv <max.c.lv@gmail.com> and Linus Yang
  223. <laokongzi@gmail.com>.
  224. .PP
  225. This manual page was written by Max Lv <max.c.lv@gmail.com>.
  226. .PP
  227. The manual pages were rearranged by hosiet <073plan@gmail.com>.