搭建Trojan-Go(极简版)

VPS配置:1核、128MB、1GB、NAT服务器。

系统版本:Debian GNU/Linux 13 (trixie)

VPN协议:Trojan

NAT映射:1443 ——> 443

准备:服务器需有公网 IP,且已解析域名到该 IP(必须!Trojan 依赖域名 + 443 端口伪装 HTTPS)

1.下载安装Trojan-Go

  • 下载适配小内存的预编译包(arm/x86自动适配)
    wget https://github.com/p4gefau1t/trojan-go/releases/download/v0.10.6/trojan-go-linux-amd64.zip -O trojan-go.zip

  • 解压

    unzip trojan-go.zip

  • 创建配置目录

    mkdir -p /etc/trojan-go

2.生成自签证书(伪装HTTPS用,单用户足够)

  • 生成证书(注意替换域名)
    openssl req -x509 -newkey rsa:4096 -keyout /etc/trojan-go/server.key -out /etc/trojan-go/server.crt -days 3650 -nodes -subj "/CN=域名"

3.编写核心配置文件

  • 编辑配置文件

vi /etc/trojan-go/config.json

{
    "run_type": "server",
    "local_addr": "0.0.0.0",
    "local_port": 443,
    "remote_addr": "127.0.0.1",
    "remote_port": 80,
    "password": ["密码"],
    "ssl": {
        "cert": "/etc/trojan-go/server.crt",
        "key": "/etc/trojan-go/server.key",
        "sni": "域名",
        "reuse_session": true,
        "alpn": ["h2", "http/1.1"]
    },
    "websocket": {
        "enabled": true,
        "path": "/ws",
        "host": "域名"
    },
    "log_level": 1
}

4.安装 Web 服务器

  • 检查Nginx是否安装

    systemctl status nginx

  • 安装轻量级Nginx

    apt update && apt install nginx -y

    systemctl start nginx

    systemctl enable nginx

5.启动Trojan-Go

  • 复制二进制文件到系统目录

    cp trojan-go /usr/bin/

  • 创建系统服务

    cat > /etc/systemd/system/trojan-go.service << EOF
[Unit]
Description=Trojan-Go Service
After=network.target

[Service]
Type=simple
User=root
ExecStart=/usr/bin/trojan-go -config /etc/trojan-go/config.json
Restart=on-failure
RestartSec=5
LimitNOFILE=65535

[Install]
WantedBy=multi-user.target
EOF

  • 启动并设置开机自启

    systemctl daemon-reload

    systemctl start trojan-go

    systemctl enable trojan-go

  • 验证启动状态

    systemctl status trojan-go

6.订阅链接

注意替换密码、域名、端口。

trojan://密码@域名:1443?security=tls&sni=域名&type=ws&host=域名&path=%2Fws#MyTrojanGo

标签: none

添加新评论