Linux

UB、RH、LD、FB……

Under Ubuntu more simple firewall Uncomplicated Firewall

we all know,Among Linux system has a very fast hardware firewall is called iptables,It can do far exceeds the scope of the firewall, but ......,usually,We only used it as a firewall to use。

but,If you just want a port policy,That does not seem to need to face iptables That lengthy configuration commands。Now,I'll introduce you to the other a more[……]

Click link to continue reading...

SNI Proxy accelerate the deployment of anti-Generation Web access without certificate

We all know that you can use nginx trans-generation capabilities to achieve cross-border access network,but,This approach has a lot of constraints,For example, it is difficult to achieve login authentication,For example, the need for a separate forwarding module compiler to do,For example, you need to have a valid signature ssl certificates, etc.。

this time,We introduce an additional artifact SNI Proxy,With dnsmasq can be achieved with sniproxy[……]

Click link to continue reading...

Compile and install anti-pollution dnscrypt-wrapper build DNS server

All to known,I want to get them abroad towards LAN DNS information,Will certainly suffer keywordPollution。to this end,Some people thinkUse exception port,For example, instead of using 5353 as the current DNS dedicated port 53-- Girl Friend Wall Only 53 pollution;It was also thought of using a TCP connection request,Because DNS response mechanism参考 DHCPI decided itaccept[……]

Click link to continue reading...

ShadowSocks build servers on vps

demand

now,With gfw upgrade we need more and more scientific grounds Internet,But the most common VPN speed is getting slower and slower because of interference,For now,SS is a good alternative to。Now that you have your own vps,You may wish to use it to give yourself easily build a server SS。

installation

Since the routing system is Ubuntu vps,I will be using the command on Ubuntu[……]

Click link to continue reading...

When SSH encounters "Write failed: Broken pipe”

When the management server using SSH,If you are a long time without having to log on,Then it is likely that awaits you is

"Write failed: Broken pipe”

Cause the cause of this error is the result of SSH link has been idle too long,so,SSH we need to change the default configuration to have it automatically turn off link。

In the SSH configuration,There are two commands to do this function,[……]

Click link to continue reading...

On Ubuntu vps and other OS's seven-step build pptp protocol VPN

After getting a vps you may need to get a stable environment as soon as possible scientific,Method uses "earth move" and is a good choice (VPN)

Of course,Now we know everything Policy,GFW has now started to begin to interfere with VPN,So this is not based VPN pptp protocol of a long-term approach (which is a bit l2tp goods relative speed is faster in terms of speed)。

All right,In short,Based on the VP pptp[……]

Click link to continue reading...

After purchasing a VPS you should spare security measures

2018On April 13 update,Add a link fail2ban Advanced Configuration Tutorial,Updated command。

Gerber drop-off site-wide migration to wills,As long as 15 yuan per month minimum,Support me consider myInvitation coderegistered,Gave $10 (Together 60 Multi-block RMB) discount! 😚

Recently purchased a vps route to learn ...... Yes! You read that right[……]

Click link to continue reading...

Brush OpenWRT routers use a transparent proxy ShadowSocks Advanced Configuration

Speaking on how the articleInstall SHADOWSOCKS on OPENWRT to use transparent proxy + DNS poisoning,But finished only configuration orThere are many drawbackstarget。

For example, the block list is dead,The ever-changing Internet content,I'm afraid you could not pass a list of a few weeks out of date;

For example, software updates,You can not always bother to manually upload,scp ...... blah blah blah ......[……]

Click link to continue reading...

Brush OpenWRT router installation shadowsocks to use transparent proxy + DNS poisoning

Previous articleRouting introducedHow to open a double-wan bandwidth superimposed on OpenWRT,This is also the students brushOpenWRTThe most common requirement,Then,Is there any way to increase the way itTransparent Proxyfunctions?

Now that the router has to brush up on the third-party firmware OpenWRT,That certainly is a possible wireless。

Agent types

Today in our common species among agents,Most calendar[……]

Click link to continue reading...