lht/blog
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
blog/2023/09/09/squid-stunnel-科学上网/index.html
qinglong 4042d27a5d Site updated: 2025-01-15 17:49:11
2025-01-15 17:49:13 +08:00

1 line
39 KiB
HTML
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<!DOCTYPE html><html lang="zh-CN"><head><meta charset="UTF-8"><meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=2"><meta name="theme-color" content="#FFF"><link rel="apple-touch-icon" sizes="180x180" href="/images/apple-touch-icon.png"><link rel="icon" type="image/ico" sizes="32x32" href="/images/favicon.ico"><meta http-equiv="Cache-Control" content="no-transform"><meta http-equiv="Cache-Control" content="no-siteapp"><link rel="alternate" type="application/rss+xml" title="涛声依旧" href="https://hitoli.com/rss.xml"><link rel="alternate" type="application/atom+xml" title="涛声依旧" href="https://hitoli.com/atom.xml"><link rel="alternate" type="application/json" title="涛声依旧" href="https://hitoli.com/feed.json"><link rel="stylesheet" href="//fonts.googleapis.com/css?family=Mulish:300,300italic,400,400italic,700,700italic%7CFredericka%20the%20Great:300,300italic,400,400italic,700,700italic%7CNoto%20Serif%20JP:300,300italic,400,400italic,700,700italic%7CNoto%20Serif%20SC:300,300italic,400,400italic,700,700italic%7CInconsolata:300,300italic,400,400italic,700,700italic&display=swap&subset=latin,latin-ext"><link rel="stylesheet" href="/css/app.css?v=0.0.0"><meta name="keywords" content="stunnel,科学上网,squid,代理"><link rel="canonical" href="https://hitoli.com/2023/09/09/squid-stunnel-%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/"><title>squid+stunnel 科学上网 - 技术分享 - 生活 | ☆∵∴Hito∴∵★ = 涛声依旧 = 天下事有难易乎?为之,则难者亦易矣</title><meta name="generator" content="Hexo 7.0.0"></head><body itemscope itemtype="http://schema.org/WebPage"><div id="loading"><div class="cat"><div class="body"></div><div class="head"><div class="face"></div></div><div class="foot"><div class="tummy-end"></div><div class="bottom"></div><div class="legs left"></div><div class="legs right"></div></div><div class="paw"><div class="hands left"></div><div class="hands right"></div></div></div></div><div id="container"><header id="header" itemscope itemtype="http://schema.org/WPHeader"><div class="inner"><div id="brand"><div class="pjax"><h1 itemprop="name headline">squid+stunnel 科学上网</h1><div class="meta"><span class="item" title="创建时间2023-09-09 16:48:00"><span class="icon"><i class="ic i-calendar"></i> </span><span class="text">发表于</span> <time itemprop="dateCreated datePublished" datetime="2023-09-09T16:48:00+08:00">2023-09-09</time> </span><span class="item" title="本文字数"><span class="icon"><i class="ic i-pen"></i> </span><span class="text">本文字数</span> <span>3k</span> <span class="text"></span> </span><span class="item" title="阅读时长"><span class="icon"><i class="ic i-clock"></i> </span><span class="text">阅读时长</span> <span>3 分钟</span></span></div></div></div><nav id="nav"><div class="inner"><div class="toggle"><div class="lines" aria-label="切换导航栏"><span class="line"></span> <span class="line"></span> <span class="line"></span></div></div><ul class="menu"><li class="item title"><a href="/" rel="start">☆∵∴Hito∴∵★</a></li></ul><ul class="right"><li class="item theme"><i class="ic i-sun"></i></li><li class="item search"><i class="ic i-search"></i></li></ul></div></nav></div><div id="imgs" class="pjax"><ul><li class="item" data-background-image="https://ndis.hitoli.com:8443/nas-dispatcher/common/downloadImg?683870"></li><li class="item" data-background-image="https://ndis.hitoli.com:8443/nas-dispatcher/common/downloadImg?627140"></li><li class="item" data-background-image="https://ndis.hitoli.com:8443/nas-dispatcher/common/downloadImg?751570"></li><li class="item" data-background-image="https://ndis.hitoli.com:8443/nas-dispatcher/common/downloadImg?834265"></li><li class="item" data-background-image="https://ndis.hitoli.com:8443/nas-dispatcher/common/downloadImg?299631"></li><li class="item" data-background-image="https://ndis.hitoli.com:8443/nas-dispatcher/common/downloadImg?353874"></li></ul></div></header><div id="waves"><svg class="waves" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" viewBox="0 24 150 28" preserveAspectRatio="none" shape-rendering="auto"><defs><path id="gentle-wave" d="M-160 44c30 0 58-18 88-18s 58 18 88 18 58-18 88-18 58 18 88 18 v44h-352z"/></defs><g class="parallax"><use xlink:href="#gentle-wave" x="48" y="0"/><use xlink:href="#gentle-wave" x="48" y="3"/><use xlink:href="#gentle-wave" x="48" y="5"/><use xlink:href="#gentle-wave" x="48" y="7"/></g></svg></div><main><div class="inner"><div id="main" class="pjax"><div class="article wrap"><div class="breadcrumb" itemscope itemtype="https://schema.org/BreadcrumbList"><i class="ic i-home"></i> <span><a href="/">首页</a></span><i class="ic i-angle-right"></i> <span itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem"><a href="/categories/%E7%94%9F%E6%B4%BB/" itemprop="item" rel="index" title="分类于 生活"><span itemprop="name">生活</span></a><meta itemprop="position" content="1"></span><i class="ic i-angle-right"></i> <span class="current" itemprop="itemListElement" itemscope itemtype="https://schema.org/ListItem"><a href="/categories/%E7%94%9F%E6%B4%BB/%E6%8A%80%E6%9C%AF%E5%88%86%E4%BA%AB/" itemprop="item" rel="index" title="分类于 技术分享"><span itemprop="name">技术分享</span></a><meta itemprop="position" content="2"></span></div><article itemscope itemtype="http://schema.org/Article" class="post block" lang="zh-CN"><link itemprop="mainEntityOfPage" href="https://hitoli.com/2023/09/09/squid-stunnel-%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/"><span hidden itemprop="author" itemscope itemtype="http://schema.org/Person"><meta itemprop="image" content="/images/avatar.jpg"><meta itemprop="name" content="Hito Li"><meta itemprop="description" content="天下事有难易乎?为之,则难者亦易矣, 天生我材必有用"></span><span hidden itemprop="publisher" itemscope itemtype="http://schema.org/Organization"><meta itemprop="name" content="涛声依旧"></span><div class="body md" itemprop="articleBody"><h4 id="前言"><a class="anchor" href="#前言">#</a> 前言</h4><p>科学上网的方法有多种,有很多第三方提供的免费方案,这些方案优缺点暂时不予讨论。实际工作生活中还是会有需要自己搭建的情况,这次介绍的是使用 squid+stunnel 方案进行搭建。</p><h4 id="准备"><a class="anchor" href="#准备">#</a> 准备</h4><p>一台可以访问外网的服务器,如香港的云主机并安装 Ubuntu 系统。</p><h5 id="squid部分"><a class="anchor" href="#squid部分">#</a> squid 部分</h5><ul><li>1、安装</li></ul><p></p><figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br></pre></td><td class="code"><pre><span class="line">apt-get install -y squid</span><br></pre></td></tr></table></figure><p></p><ul><li>2、配置</li></ul><div class="note info"><p>生成用户文件</p></div><p></p><figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br></pre></td><td class="code"><pre><span class="line">apt-get install apache2-utils</span><br><span class="line">htpasswd -c /etc/squid/squid_user.txt 用户名</span><br></pre></td></tr></table></figure><p></p><div class="note info"><p>修改 squid 配置<br>1、直接修改 /etc/squid/squid.conf 文件<br>2、修改 /etc/squid/conf.d/debian.conf 文件<br>两种方式都一样,在底部加入以下代码</p></div><p></p><figure class="highlight yaml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br><span class="line">18</span><br><span class="line">19</span><br><span class="line">20</span><br><span class="line">21</span><br><span class="line">22</span><br><span class="line">23</span><br><span class="line">24</span><br><span class="line">25</span><br><span class="line">26</span><br><span class="line">27</span><br><span class="line">28</span><br><span class="line">29</span><br><span class="line">30</span><br><span class="line">31</span><br><span class="line">32</span><br><span class="line">33</span><br><span class="line">34</span><br><span class="line">35</span><br><span class="line">36</span><br><span class="line">37</span><br><span class="line">38</span><br><span class="line">39</span><br><span class="line">40</span><br></pre></td><td class="code"><pre><span class="line"><span class="comment">#dns服务器地址</span></span><br><span class="line"><span class="string">dns_nameservers</span> <span class="number">8.8</span><span class="number">.8</span><span class="number">.8</span> <span class="number">8.8</span><span class="number">.4</span><span class="number">.4</span></span><br><span class="line"><span class="string">dns_v4_first</span> <span class="string">on</span></span><br><span class="line"><span class="comment"># 监听端口</span></span><br><span class="line"><span class="string">http_port</span> <span class="number">3128</span></span><br><span class="line"><span class="comment"># 定义squid密码文件与ncsa_auth文件位置</span></span><br><span class="line"><span class="string">auth_param</span> <span class="string">basic</span> <span class="string">program</span> <span class="string">/usr/lib/squid/basic_ncsa_auth</span> <span class="string">/etc/squid/squid_user.txt</span></span><br><span class="line"><span class="comment"># 认证进程的数量</span></span><br><span class="line"><span class="string">auth_param</span> <span class="string">basic</span> <span class="string">children</span> <span class="number">15</span></span><br><span class="line"><span class="comment"># 认证对话框显示提示信息</span></span><br><span class="line"><span class="string">auth_param</span> <span class="string">basic</span> <span class="string">realm</span> <span class="string">Squid</span> <span class="string">proxy-caching</span> <span class="string">web</span> <span class="string">server</span></span><br><span class="line"><span class="comment"># 认证有效期</span></span><br><span class="line"><span class="string">auth_param</span> <span class="string">basic</span> <span class="string">credentialsttl</span> <span class="number">24</span> <span class="string">hours</span></span><br><span class="line"><span class="comment"># 是否区分用户名大小off为不区分</span></span><br><span class="line"><span class="string">auth_param</span> <span class="string">basic</span> <span class="string">casesensitive</span> <span class="string">off</span></span><br><span class="line"><span class="comment"># 对定义的squid_user文件内的用户开启认证访问</span></span><br><span class="line"><span class="string">acl</span> <span class="string">用户名</span> <span class="string">proxy_auth</span> <span class="string">REQUIRED</span></span><br><span class="line"><span class="comment"># 允许squid_user文件内用户进行代理</span></span><br><span class="line"><span class="string">http_access</span> <span class="string">allow</span> <span class="string">用户名</span></span><br><span class="line"><span class="comment"># 顺序匹配,最后添加拒绝所有未允许的规则。不添加会发现,未匹配到的规则会被放行</span></span><br><span class="line"><span class="string">http_access</span> <span class="string">deny</span> <span class="string">all</span></span><br><span class="line"><span class="comment"># 缓存设置</span></span><br><span class="line"><span class="string">cache_dir</span> <span class="string">ufs</span> <span class="string">/var/spool/squid</span> <span class="number">100</span> <span class="number">16</span> <span class="number">256</span> <span class="string">read-only</span></span><br><span class="line"><span class="string">cache_mem</span> <span class="number">0</span> <span class="string">MB</span></span><br><span class="line"><span class="string">coredump_dir</span> <span class="string">/var/spool/squid</span></span><br><span class="line"><span class="comment"># 配置高匿不允许设置任何多余头信息保持原请求header。</span></span><br><span class="line"><span class="string">header_access</span> <span class="string">Via</span> <span class="string">deny</span> <span class="string">all</span></span><br><span class="line"><span class="string">header_access</span> <span class="string">X-Forwarded-For</span> <span class="string">deny</span> <span class="string">all</span></span><br><span class="line"><span class="string">header_access</span> <span class="string">Server</span> <span class="string">deny</span> <span class="string">all</span></span><br><span class="line"><span class="string">header_access</span> <span class="string">X-Cache</span> <span class="string">deny</span> <span class="string">all</span></span><br><span class="line"><span class="string">header_access</span> <span class="string">X-Cache-Lookup</span> <span class="string">deny</span> <span class="string">all</span></span><br><span class="line"><span class="string">forwarded_for</span> <span class="string">off</span></span><br><span class="line"><span class="string">via</span> <span class="string">off</span></span><br><span class="line"><span class="comment"># logs相关配置</span></span><br><span class="line"><span class="string">emulate_httpd_log</span> <span class="string">on</span></span><br><span class="line"><span class="string">logformat</span> <span class="string">squid</span> <span class="string">%&#123;X-Forwarded-For&#125;&gt;h</span> <span class="string">%ui</span> <span class="string">%un</span> [<span class="string">%tl</span>] <span class="string">&quot;%rm %ru HTTP/%rv&quot;</span> <span class="string">%Hs</span> <span class="string">%&lt;st</span> <span class="string">&quot;<span class="template-variable">%&#123;Referer&#125;</span>&gt;h&quot;</span> <span class="string">&quot;<span class="template-variable">%&#123;User-Agent&#125;</span>&gt;h&quot;</span> <span class="string">%Ss:%Sh</span></span><br><span class="line"><span class="string">access_log</span> <span class="string">/var/log/squid/access.log</span> <span class="string">squid</span></span><br><span class="line"><span class="string">cache_log</span> <span class="string">/var/log/squid/cache.log</span></span><br><span class="line"><span class="string">cache_store_log</span> <span class="string">/var/log/squid/store.log</span></span><br><span class="line"><span class="string">logfile_rotate</span> <span class="number">20</span></span><br></pre></td></tr></table></figure><p></p><div class="note primary"><p>至次已经可以通过填写安装 squid 的服务器 ip 加端口 3128 加用户名密码进行代理访问了(通过访问<span class="blue"><span class="exturl" data-url="aHR0cHM6Ly93d3cuaXAuY24v"> https://www.ip.cn/</span></span> 查看 ip 就会发现自己的出口 ip 已经变成了 squid 服务器的 ip 了)。但是要想科学上网还必须对代理的数据进行加密,否则访问外网还是会被我国的长城防火墙阻挡,所以还需要安装 stunnel 来实现此目的。</p></div><h5 id="stunnel服务端部分"><a class="anchor" href="#stunnel服务端部分">#</a> stunnel 服务端部分</h5><ul><li>1、安装和 squid 装在一起)</li></ul><p></p><figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br></pre></td><td class="code"><pre><span class="line">apt-get install -y stunnel</span><br></pre></td></tr></table></figure><p></p><ul><li>2、生成 TLS/SSL 证书</li></ul><p></p><figure class="highlight bash"><table><tr><td class="gutter"><pre><span class="line">1</span><br></pre></td><td class="code"><pre><span class="line">openssl req -new -x509 -days 3650 -nodes -out stunnel.pem -keyout stunnel.pem</span><br></pre></td></tr></table></figure><p></p><ul><li><p>3、将证书 stunnel.pem 放到 /etc/stunnel/ 目录下</p></li><li><p>4、修改 stunnel 配置 (/etc/stunnle/stunnle.conf)</p></li></ul><p></p><figure class="highlight yaml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br><span class="line">12</span><br><span class="line">13</span><br><span class="line">14</span><br><span class="line">15</span><br><span class="line">16</span><br><span class="line">17</span><br><span class="line">18</span><br><span class="line">19</span><br><span class="line">20</span><br><span class="line">21</span><br><span class="line">22</span><br></pre></td><td class="code"><pre><span class="line"><span class="string">;</span> <span class="string">设置stunnel的pid文件路径</span></span><br><span class="line"><span class="string">pid</span> <span class="string">=</span> <span class="string">/etc/stunnel/stunnel.pid</span></span><br><span class="line"><span class="string">;</span> <span class="string">设置stunnel工作的用户</span></span><br><span class="line"><span class="string">setuid</span> <span class="string">=</span> <span class="string">root</span></span><br><span class="line"><span class="string">setgid</span> <span class="string">=</span> <span class="string">root</span></span><br><span class="line"></span><br><span class="line"><span class="string">;</span> <span class="string">开启日志等级emerg</span> <span class="string">(0),</span> <span class="string">alert</span> <span class="string">(1),</span> <span class="string">crit</span> <span class="string">(2),</span> <span class="string">err</span> <span class="string">(3),</span> <span class="string">warning</span> <span class="string">(4),</span> <span class="string">notice</span> <span class="string">(5),</span> <span class="string">info</span> <span class="string">(6),</span> <span class="string">or</span> <span class="string">debug</span> <span class="string">(7)</span></span><br><span class="line"><span class="string">debug</span> <span class="string">=</span> <span class="number">7</span></span><br><span class="line"><span class="string">;</span> <span class="string">日志文件路径</span></span><br><span class="line"><span class="string">output</span> <span class="string">=</span> <span class="string">/etc/stunnel/stunnel.log</span></span><br><span class="line"></span><br><span class="line"><span class="string">;</span> <span class="string">证书文件</span></span><br><span class="line"><span class="string">cert</span> <span class="string">=</span> <span class="string">/etc/stunnel/stunnel.pem</span></span><br><span class="line"><span class="string">;</span> <span class="string">私钥文件</span></span><br><span class="line"><span class="string">key</span> <span class="string">=</span> <span class="string">/etc/stunnel/stunnel.pem</span></span><br><span class="line"></span><br><span class="line"><span class="string">;</span> <span class="string">自定义服务名squid-proxy</span></span><br><span class="line">[<span class="string">squid-proxy</span>]</span><br><span class="line"><span class="string">;</span> <span class="string">服务监听的端口client要连接这个端口与server通信</span></span><br><span class="line"><span class="string">accept</span> <span class="string">=</span> <span class="number">1234</span><span class="string">(自定义)</span></span><br><span class="line"><span class="string">;</span> <span class="string">服务要连接的端口连接到squid的3128端口将数据发给squid</span></span><br><span class="line"><span class="string">connect</span> <span class="string">=</span> <span class="number">3128</span></span><br></pre></td></tr></table></figure><p></p><h5 id="stunnel客户端部分"><a class="anchor" href="#stunnel客户端部分">#</a> stunnel 客户端部分</h5><div class="note info"><p>可以安装在要代理的机器上,在需要代理的情况下再开启(代理地址填 127.0.0.1 加客户端监听端口)。也可以安装在国内的服务器上一直保持连接(代理信息填国内服务器 ip 加客户端监听端口)。本示例客户端为 windows 系统</p></div><ul><li>1、下载地址</li></ul><p><span class="blue"><span class="exturl" data-url="aHR0cHM6Ly93d3cuc3R1bm5lbC5vcmcvZG93bmxvYWRzLmh0bWw=">https://www.stunnel.org/downloads.html</span></span></p><ul><li>2、修改配置C:\Program Files (x86)\stunnel\config\stunnel.conf</li></ul><p></p><figure class="highlight yaml"><table><tr><td class="gutter"><pre><span class="line">1</span><br><span class="line">2</span><br><span class="line">3</span><br><span class="line">4</span><br><span class="line">5</span><br><span class="line">6</span><br><span class="line">7</span><br><span class="line">8</span><br><span class="line">9</span><br><span class="line">10</span><br><span class="line">11</span><br></pre></td><td class="code"><pre><span class="line">[<span class="string">squid-proxy</span>]</span><br><span class="line"><span class="string">client</span> <span class="string">=</span> <span class="literal">yes</span></span><br><span class="line"><span class="string">;</span> <span class="string">监听3128端口那么用户浏览器的代理设置就是</span> <span class="string">stunnel-client-ip:3128</span></span><br><span class="line"><span class="string">accept</span> <span class="string">=</span> <span class="number">3128</span></span><br><span class="line"><span class="string">;</span> <span class="string">要连接到的stunnel</span> <span class="string">server的ip与端口</span></span><br><span class="line"><span class="string">connect</span> <span class="string">=</span> <span class="string">stunnel服务端ip:1234服务端自定义端口</span></span><br><span class="line"></span><br><span class="line"><span class="string">;</span> <span class="string">需要验证对方发过来的证书</span></span><br><span class="line"><span class="string">verify</span> <span class="string">=</span> <span class="number">2</span></span><br><span class="line"><span class="string">;</span> <span class="string">用来进行证书验证的文件stunnel服务端生成的证书复制到以下目录并改名为stunnel-server.pem</span></span><br><span class="line"><span class="string">CAfile</span> <span class="string">=</span> <span class="string">C:\Program</span> <span class="string">Files</span> <span class="string">(x86)\stunnel\config\stunnel-server.pem</span></span><br></pre></td></tr></table></figure><p></p><div class="note primary"><p>至次配置好代理 ip 为 stunnel 客户端 ip 加端口 3128 就可以正式科学上网了。如果只想对需要科学的 url 进行代理,可以通过安装 Proxy SwitchyOmega 插件实现(规则地址可通过<span class="blue"><span class="exturl" data-url="aHR0cHM6Ly9naXRodWIuY29tL2dmd2xpc3QvZ2Z3bGlzdA=="> https://github.com/gfwlist/gfwlist</span></span> 获取)。</p></div><p><img data-src="https://nas.hitoli.com:18014/images/2023/09/09/6a38fcb32752.png" alt=""><br><img data-src="https://nas.hitoli.com:18014/images/2023/09/09/72892168bfeb.png" alt=""></p><div class="tags"><a href="/tags/stunnel/" rel="tag"><i class="ic i-tag"></i> stunnel</a> <a href="/tags/%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/" rel="tag"><i class="ic i-tag"></i> 科学上网</a> <a href="/tags/squid/" rel="tag"><i class="ic i-tag"></i> squid</a> <a href="/tags/%E4%BB%A3%E7%90%86/" rel="tag"><i class="ic i-tag"></i> 代理</a></div></div><footer><div class="meta"><span class="item"><span class="icon"><i class="ic i-calendar-check"></i> </span><span class="text">更新于</span> <time title="修改时间2023-09-09 23:27:05" itemprop="dateModified" datetime="2023-09-09T23:27:05+08:00">2023-09-09</time> </span><span id="2023/09/09/squid-stunnel-科学上网/" class="item leancloud_visitors" data-flag-title="squid+stunnel 科学上网" title="阅读次数"><span class="icon"><i class="ic i-eye"></i> </span><span class="text">阅读次数</span> <span class="leancloud-visitors-count"></span> <span class="text"></span></span></div><div class="reward"><button><i class="ic i-heartbeat"></i> 赞赏</button><p>请我喝[茶]~( ̄▽ ̄)~*</p><div id="qr"><div><img data-src="/images/wechatpay.png" alt="Hito Li 微信支付"><p>微信支付</p></div><div><img data-src="/images/alipay.png" alt="Hito Li 支付宝"><p>支付宝</p></div></div></div><div id="copyright"><ul><li class="author"><strong>本文作者: </strong>Hito Li <i class="ic i-at"><em>@</em></i>涛声依旧</li><li class="link"><strong>本文链接:</strong> <a href="https://hitoli.com/2023/09/09/squid-stunnel-%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/" title="squid+stunnel 科学上网">https://hitoli.com/2023/09/09/squid-stunnel-科学上网/</a></li><li class="license"><strong>版权声明: </strong>本站所有文章除特别声明外,均采用 <span class="exturl" data-url="aHR0cHM6Ly9jcmVhdGl2ZWNvbW1vbnMub3JnL2xpY2Vuc2VzL2J5LW5jLXNhLzQuMC9kZWVkLnpo"><i class="ic i-creative-commons"><em>(CC)</em></i>BY-NC-SA</span> 许可协议。转载请注明出处!</li></ul></div></footer></article></div><div class="post-nav"><div class="item left"><a href="/2023/09/09/Windows-11%E5%8F%B3%E9%94%AE%E8%8F%9C%E5%8D%95%E6%81%A2%E5%A4%8D%E8%80%81%E7%89%88%E6%9C%AC/" itemprop="url" rel="prev" data-background-image="https:&#x2F;&#x2F;ndis.hitoli.com:8443&#x2F;nas-dispatcher&#x2F;common&#x2F;downloadImg?524019" title="Windows 11右键菜单恢复老版本"><span class="type">上一篇</span> <span class="category"><i class="ic i-flag"></i> 系统优化</span><h3>Windows 11右键菜单恢复老版本</h3></a></div><div class="item right"><a href="/2023/10/28/Centos%E6%8C%82%E8%BD%BD%E6%96%B0%E7%A1%AC%E7%9B%98/" itemprop="url" rel="next" data-background-image="https:&#x2F;&#x2F;ndis.hitoli.com:8443&#x2F;nas-dispatcher&#x2F;common&#x2F;downloadImg?903310" title="Centos挂载新硬盘"><span class="type">下一篇</span> <span class="category"><i class="ic i-flag"></i> Centos</span><h3>Centos挂载新硬盘</h3></a></div></div><div class="wrap" id="comments"></div></div><div id="sidebar"><div class="inner"><div class="panels"><div class="inner"><div class="contents panel pjax" data-title="文章目录"><ol class="toc"><li class="toc-item toc-level-4"><a class="toc-link" href="#%E5%89%8D%E8%A8%80"><span class="toc-number">1.</span> <span class="toc-text">前言</span></a></li><li class="toc-item toc-level-4"><a class="toc-link" href="#%E5%87%86%E5%A4%87"><span class="toc-number">2.</span> <span class="toc-text">准备</span></a><ol class="toc-child"><li class="toc-item toc-level-5"><a class="toc-link" href="#squid%E9%83%A8%E5%88%86"><span class="toc-number">2.1.</span> <span class="toc-text">squid 部分</span></a></li><li class="toc-item toc-level-5"><a class="toc-link" href="#stunnel%E6%9C%8D%E5%8A%A1%E7%AB%AF%E9%83%A8%E5%88%86"><span class="toc-number">2.2.</span> <span class="toc-text">stunnel 服务端部分</span></a></li><li class="toc-item toc-level-5"><a class="toc-link" href="#stunnel%E5%AE%A2%E6%88%B7%E7%AB%AF%E9%83%A8%E5%88%86"><span class="toc-number">2.3.</span> <span class="toc-text">stunnel 客户端部分</span></a></li></ol></li></ol></div><div class="related panel pjax" data-title="系列文章"><ul><li><a href="/2023/04/16/%E7%83%BD%E7%81%AB10G-ONU%E5%A4%A9%E7%BF%BC%E7%BD%91%E5%85%B34-0%E7%A0%B4%E8%A7%A3%EF%BC%88HG5143F/" rel="bookmark" title="烽火10G-ONU天翼网关4.0破解HG5143F)">烽火10G-ONU天翼网关4.0破解HG5143F)</a></li><li><a href="/2023/04/16/%E5%91%BD%E4%BB%A4%E5%A4%A7%E6%9D%82%E7%83%A9/" rel="bookmark" title="命令大杂烩">命令大杂烩</a></li><li class="active"><a href="/2023/09/09/squid-stunnel-%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/" rel="bookmark" title="squid+stunnel 科学上网">squid+stunnel 科学上网</a></li><li><a href="/2024/09/29/dante-stunnel-clash-%E7%A7%91%E5%AD%A6%E4%B8%8A%E7%BD%91/" rel="bookmark" title="dante+stunnel+clash 科学上网">dante+stunnel+clash 科学上网</a></li></ul></div><div class="overview panel" data-title="站点概览"><div class="author" itemprop="author" itemscope itemtype="http://schema.org/Person"><img class="image" itemprop="image" alt="Hito Li" data-src="/images/avatar.jpg"><p class="name" itemprop="name">Hito Li</p><div class="description" itemprop="description">天生我材必有用</div></div><nav class="state"><div class="item posts"><a href="/archives/"><span class="count">62</span> <span class="name">文章</span></a></div><div class="item categories"><a href="/categories/"><span class="count">21</span> <span class="name">分类</span></a></div><div class="item tags"><a href="/tags/"><span class="count">105</span> <span class="name">标签</span></a></div></nav><div class="social"><span class="exturl item weibo" data-url="aHR0cHM6Ly93ZWliby5jb20vdS8xMDYxNDYwNzQ1" title="https:&#x2F;&#x2F;weibo.com&#x2F;u&#x2F;1061460745"><i class="ic i-weibo"></i></span> <span class="exturl item douban" data-url="aHR0cHM6Ly93d3cuZG91YmFuLmNvbS9wZW9wbGUvMjU5Mzc2NTY0" title="https:&#x2F;&#x2F;www.douban.com&#x2F;people&#x2F;259376564"><i class="ic i-douban"></i></span> <span class="exturl item music" data-url="aHR0cHM6Ly9tdXNpYy4xNjMuY29tLyMvdXNlci9ob21lP2lkPTEwNTQ2NzQ2Mw==" title="https:&#x2F;&#x2F;music.163.com&#x2F;#&#x2F;user&#x2F;home?id&#x3D;105467463"><i class="ic i-cloud-music"></i></span> <a href="/about/me" title="about&#x2F;me" class="item about"><i class="ic i-address-card"></i></a></div><ul class="menu"><li class="item"><a href="/" rel="section"><i class="ic i-home"></i>首页</a></li><li class="item dropdown"><a href="javascript:void(0);"><i class="ic i-feather"></i>文章</a><ul class="submenu"><li class="item"><a href="/archives/" rel="section"><i class="ic i-list-alt"></i>归档</a></li><li class="item"><a href="/categories/" rel="section"><i class="ic i-th"></i>分类</a></li><li class="item"><a href="/tags/" rel="section"><i class="ic i-tags"></i>标签</a></li></ul></li><li class="item"><a href="/tools/" rel="section"><i class="ic i-magic"></i>工具</a></li><li class="item"><span class="exturl" data-url="aHR0cHM6Ly93d3cuZm9yZXZlcmJsb2cuY24vZ28uaHRtbA=="><i class="ic i-paper-plane"></i>虫洞</span></li><li class="item"><a href="/about/me" rel="section"><i class="ic i-user"></i>关于</a></li></ul></div></div></div><ul id="quick"><li class="prev pjax"><a href="/2023/09/09/Windows-11%E5%8F%B3%E9%94%AE%E8%8F%9C%E5%8D%95%E6%81%A2%E5%A4%8D%E8%80%81%E7%89%88%E6%9C%AC/" rel="prev" title="上一篇"><i class="ic i-chevron-left"></i></a></li><li class="up"><i class="ic i-arrow-up"></i></li><li class="down"><i class="ic i-arrow-down"></i></li><li class="next pjax"><a href="/2023/10/28/Centos%E6%8C%82%E8%BD%BD%E6%96%B0%E7%A1%AC%E7%9B%98/" rel="next" title="下一篇"><i class="ic i-chevron-right"></i></a></li><li class="percent"></li></ul></div></div><div class="dimmer"></div></div></main><footer id="footer"><div class="inner"><div class="widgets"><div class="rpost pjax"><h2>随机文章</h2><ul><li class="item"><div class="breadcrumb"><a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/" title="分类于 极空间">极空间</a> <i class="ic i-angle-right"></i> <a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/Docker/" title="分类于 Docker">Docker</a> <i class="ic i-angle-right"></i> <a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/Docker/Hexo/" title="分类于 Hexo">Hexo</a></div><span><a href="/2022/09/14/Hexo%E5%AE%89%E8%A3%85%E6%91%B8%E7%B4%A2/" title="Hexo安装摸索">Hexo安装摸索</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/Linux/" title="分类于 Linux">Linux</a> <i class="ic i-angle-right"></i> <a href="/categories/Linux/%E6%9C%8D%E5%8A%A1/" title="分类于 服务">服务</a> <i class="ic i-angle-right"></i> <a href="/categories/Linux/%E6%9C%8D%E5%8A%A1/Nginx/" title="分类于 Nginx">Nginx</a></div><span><a href="/2022/10/14/nginx%E5%85%81%E8%AE%B8%E8%B7%A8%E5%9F%9F%E8%8E%B7%E5%8F%96cookies%E6%96%B9%E6%B3%95/" title="nginx允许跨域获取cookie的方法">nginx允许跨域获取cookie的方法</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/%E5%B7%A5%E4%BD%9C/" title="分类于 工作">工作</a> <i class="ic i-angle-right"></i> <a href="/categories/%E5%B7%A5%E4%BD%9C/Vue/" title="分类于 Vue">Vue</a></div><span><a href="/2022/11/04/%E8%AE%B0%E4%B8%80%E6%AC%A1Vue%E9%A1%B9%E7%9B%AE%E7%9A%84%E9%83%A8%E7%BD%B2/" title="记一次Vue项目的部署">记一次Vue项目的部署</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/%E5%B7%A5%E4%BD%9C/" title="分类于 工作">工作</a> <i class="ic i-angle-right"></i> <a href="/categories/%E5%B7%A5%E4%BD%9C/%E8%A7%A3%E5%86%B3%E9%97%AE%E9%A2%98/" title="分类于 解决问题">解决问题</a></div><span><a href="/2024/01/03/%E8%A7%A3%E5%86%B3Nginx%E8%AE%BF%E9%97%AE%E8%87%AA%E7%AD%BEssl%E8%AF%81%E4%B9%A6%E6%8A%A5%E4%B8%8D%E5%AE%89%E5%85%A8%E5%91%8A%E8%AD%A6/" title="解决Nginx访问自签ssl证书报不安全告警">解决Nginx访问自签ssl证书报不安全告警</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/Linux/" title="分类于 Linux">Linux</a> <i class="ic i-angle-right"></i> <a href="/categories/Linux/%E6%9C%8D%E5%8A%A1/" title="分类于 服务">服务</a> <i class="ic i-angle-right"></i> <a href="/categories/Linux/%E6%9C%8D%E5%8A%A1/Nginx/" title="分类于 Nginx">Nginx</a></div><span><a href="/2022/11/08/Nginx%E9%85%8D%E7%BD%AE-%E5%8F%8D%E5%90%91%E4%BB%A3%E7%90%86/" title="Nginx配置-反向代理">Nginx配置-反向代理</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/%E5%B7%A5%E4%BD%9C/" title="分类于 工作">工作</a> <i class="ic i-angle-right"></i> <a href="/categories/%E5%B7%A5%E4%BD%9C/IDE/" title="分类于 IDE">IDE</a></div><span><a href="/2023/02/18/%E4%BF%AE%E6%94%B9IntellIJ-IDE%E8%83%8C%E6%99%AF%E8%89%B2%E5%92%8C%E5%AD%97%E4%BD%93%E5%A4%A7%E5%B0%8F/" title="修改IntellIJ IDE背景色和字体大小">修改IntellIJ IDE背景色和字体大小</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/" title="分类于 极空间">极空间</a> <i class="ic i-angle-right"></i> <a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/Docker/" title="分类于 Docker">Docker</a> <i class="ic i-angle-right"></i> <a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/Docker/Hexo/" title="分类于 Hexo">Hexo</a></div><span><a href="/2022/10/21/Hexo-Theme-Shoka-Valine%E8%AF%84%E8%AE%BA%E9%85%8D%E7%BD%AE/" title="Hexo + Theme.Shoka + Valine评论配置">Hexo + Theme.Shoka + Valine评论配置</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/Windows/" title="分类于 Windows">Windows</a> <i class="ic i-angle-right"></i> <a href="/categories/Windows/%E5%B7%A5%E5%85%B7/" title="分类于 工具">工具</a></div><span><a href="/2023/10/28/Windows%E4%B8%8B%E5%BF%AB%E9%80%9F%E9%83%A8%E7%BD%B2SpringBoot%E9%A1%B9%E7%9B%AE%E7%9A%84%E6%89%B9%E5%A4%84%E7%90%86/" title="Windows下快速部署SpringBoot项目的批处理">Windows下快速部署SpringBoot项目的批处理</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/" title="分类于 极空间">极空间</a> <i class="ic i-angle-right"></i> <a href="/categories/%E6%9E%81%E7%A9%BA%E9%97%B4/Docker/" title="分类于 Docker">Docker</a></div><span><a href="/2022/10/21/%E6%9E%81%E7%A9%BA%E9%97%B4Docker%E7%89%88mariadb%E5%AE%89%E8%A3%85%E4%B8%8E%E9%85%8D%E7%BD%AE/" title="极空间Docker版mariadb安装与配置">极空间Docker版mariadb安装与配置</a></span></li><li class="item"><div class="breadcrumb"><a href="/categories/Windows/" title="分类于 Windows">Windows</a> <i class="ic i-angle-right"></i> <a href="/categories/Windows/%E5%B7%A5%E5%85%B7/" title="分类于 工具">工具</a></div><span><a href="/2022/11/01/360%E7%8B%AC%E7%AB%8B%E7%89%88%E5%B0%8F%E5%B7%A5%E5%85%B7/" title="360独立版小工具">360独立版小工具</a></span></li></ul></div><div><h2>最新评论</h2><ul class="leancloud-recent-comment"></ul></div></div><div class="status"><div class="copyright">&copy; 2010 <span itemprop="copyrightYear">2025</span> <span class="with-love"><i class="ic i-sakura rotate"></i> </span><span class="author" itemprop="copyrightHolder">Hito Li @ ☆∵∴Hito∴∵★</span></div><div class="count"><span class="post-meta-item-icon"><i class="ic i-chart-area"></i> </span><span title="站点总字数">148k 字</span> <span class="post-meta-divider">|</span> <span class="post-meta-item-icon"><i class="ic i-coffee"></i> </span><span title="站点阅读时长">2:15</span></div><div class="powered-by">基于 <span class="exturl" data-url="aHR0cHM6Ly9oZXhvLmlv">Hexo</span> & Theme.<span class="exturl" data-url="aHR0cHM6Ly9naXRodWIuY29tL2FtZWhpbWUvaGV4by10aGVtZS1zaG9rYQ==">Shoka</span></div></div></div></footer></div><script data-config type="text/javascript">var LOCAL={path:"2023/09/09/squid-stunnel-科学上网/",favicon:{show:"´3哎呀呀",hide:"(´Д`)真糟糕!"},search:{placeholder:"文章搜索",empty:"关于 「 ${query} 」,什么也没搜到",stats:"${time} ms 内找到 ${hits} 条结果"},valine:!0,fancybox:!0,copyright:'复制成功,转载请遵守 <i class="ic i-creative-commons"></i>BY-NC-SA 协议。',ignores:[function(e){return e.includes("#")},function(e){return new RegExp(LOCAL.path+"$").test(e)}]}</script><script src="https://nas.hitoli.com:18003/assets/polyfill.js"></script><script src="https://nblog.hitoli.com:8443/assets/pace.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/pjax.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/fetch.umd.js"></script><script src="https://nblog.hitoli.com:8443/assets/anime.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/algoliasearch-lite.umd.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/instantsearch.production.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/lozad.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/quicklink.umd.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/jquery.min.js,jquery.fancybox.min.js,jquery.justifiedGallery.min.js" async></script><script src="https://nblog.hitoli.com:8443/assets/MiniValine.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/MiniValine.visitor.min.js"></script><script src="https://nblog.hitoli.com:8443/assets/copy-tex.min.js" async></script><script src="https://nblog.hitoli.com:8443/assets/frappe-charts.min.iife.js"></script><script src="https://nblog.hitoli.com:8443/assets/av-min.js"></script><script src="https://nblog.hitoli.com:8443/assets/autosize.min.js,xss.min.js,ua-parser.min.js,tex-svg.js,marked.min.js"></script><script src="/js/app.js?v=0.0.0"></script></body></html>
Reference in New Issue View Git Blame Copy Permalink