一个多功能 SSPanel 机场后端, 支持 V2Ray(Vmess), Trojan, Shadowsocks(单端口多用户)

Related tags

Network Air-Universe
Overview

Air-Universe

English document → here
中文文档(咕咕咕) → here

新人第一次写大项目,也是第一次写golang,请多多指教

Bugs:

  • None

TODO List:

  • Fix known bugs.
  • Auto generate Xray-core configuration from SSPanel. Finished
  • Record users ip. Finished
  • Support Trojan protocol. Finished
  • Turnkey installation script. Finished
  • Support Shadowsocks multiuser in single port. Finished
  • Report users who have exceeded the IP limit.
  • Support all platform turnkey script.
  • Support speed limit.
  • Limit users IP count.

注意, 未经严格测试, 出问题了造成经济损失一概不负责

Features

  • 支持3端(Shadowsocks, V2ray(Vmess), Trojan) 单端口多用户
  • Shadowsocks 单端口多用户 无须协议和混淆插件支持, 使用AEAD加密单端口
  • V2ray(Vmess) 支持 tcp和Websocket 可配合TLS传输, 证书可自定义(一键脚本不含此功能)也可自动生成
  • Trojan 支持TCP+TLS
  • 支持多个入站配合多节点ID, 流量分开统计
  • 支持记录用户IP, 但目前不可限制
  • 不支持限速
  • 审计规则默认屏蔽BT和内网IP, 可自行添加, 不支持从面板拉取
  • 审计信息不会上报

TurnKey Install

自动安装 Air-Universe + Xray, 在debian8测试通过, 不支持Centos

wget -N --no-check-certificate --no-cache https://github.com/crossfw/Air-Universe/raw/master/scripts/xray_script/Install_server_with_xray.sh && bash Install_server_with_xray.sh
  • 仅适配SSPanel-UIM
  • 使用Xray做Proxy-core, 同时也支持V2Ray-Core
  • 自动创建入站规则
  • 适配多入站,比如一个带ProxyProtocol的中转 和 一个直连入站,均采用面板节点ID, 流量分开统计。

详细说明

首先需要在面板上添加节点 请参考教程,比如这个 (逃 唯一的区别是,如果需要在中转后获取真实ip,请在v2ray(Vmess)或trojan节点地址配置时在最后加上"|relay=true"(不含引号), 亦或者在节点类型中选择ss中转或v2ray中转。至此,3种协议均可获取中转真实IP, 不过要注意的是,在开启此功能时,TCP包开头必须携带ProxyProtocol,否则不予建立连接, 所以如果既要中转又要直连的,需要开2个不同的端口(配合不同节点ID)。

注意 Shadowsocks AEAD单端口多用户需要更新面板到 232c87c 之后, 且需将单端口承载用户的协议和混淆设为"origin"和"plain"(!注意,这个操作会使现有ssr单端口节点失效,谨慎操作!)

如果使用自动生成证书的TLS, 请在节点信息后添加"|verify_cert=false"来跳过用户侧证书验证(需客户端支持)

需要输入的内容

########Air-Universe config#######\n
Enter node_ids, (eg 1,2,3): 2,3
Enter sspanel domain(https://): 1.1.1.1
Enter panel token: 123
  • 节点ID列表, 不同id用英文逗号","分隔,最后一位不用加
  • 面板地址(都2021年了还没HTTPS?) 输入域名即可,必须是https协议,否则你要自己去改配置文件.
  • 面板密码

这个脚本会做什么

  • 下载2个主程序到/usr/bin/au/

    • Air-Universe
    • Xray
  • 配置文件目录/etc/au/

  • 日志文件

    • Air-Universe log: /var/log/au.log
    • Xray log:/var/log/xr.log
    • Air-Universe日志文件每天6点清空
    • Xray日志文件每60s清空(用于统计ip)

Stargazers over time

Stargazers over time

Issues
  • 后端使用air最新加xray-core最新报错

    后端使用air最新加xray-core最新报错

    time="2022-03-26T20:58:01+08:00" level=warning msg="NodeID: 69 IDIndex 0 - Failed to add inbound - rpc error: code = Unavailable desc = error reading from server: EOF" Mar 26 20:58:01 localhost systemd[1]: Stopping Air-Universe - main Service... Mar 26 20:58:01 localhost

    opened by fengguowudi 2
  • 脚本错误

    脚本错误

    一键脚本的选择中 升级au的脚本应该是 14) check_install && identify_the_operating_system_and_architecture && get_latest_au_version && update_au && restart 而不是:14) stop && identify_the_operating_system_and_architecture && get_latest_au_version && update_au && restart

    opened by Jerry-Zheng-bilibili 1
  • 同学,您这个项目引入了174个开源组件,存在4个漏洞,辛苦升级一下

    同学,您这个项目引入了174个开源组件,存在4个漏洞,辛苦升级一下

    检测到 crossfw/Air-Universe 一共引入了174个开源组件,存在4个漏洞

    漏洞标题:David Kitchen bluemonday 安全漏洞
    缺陷组件:github.com/microcosm-cc/[email protected]
    漏洞编号:CVE-2021-42576
    漏洞描述:David Kitchen bluemonday是  (David Kitchen)开源的一个应用程序。用于在Go中实现的HTML清理程序。
    bluemonday sanitizer 存在安全漏洞,该漏洞源于Go中1.0.16之前的bluemonday和Python中 0.0.8之前的bluemonday(在pybluemonday中),不能正确地强制与SELECT、STYLE和OPTION元素关联的策略。
    影响范围:(∞, 1.0.16)
    最小修复版本:1.0.16
    缺陷组件引入路径:[email protected]>github.com/microcosm-cc/[email protected]
    

    另外还有4个漏洞,详细报告:https://mofeisec.com/jr?p=aaa185

    opened by ghost 1
  • 似乎不支持xtls?

    似乎不支持xtls?

    sspanel-uim 添加 v2ray类型 节点信息 地址写的 node1.baidu.work;10444;0;tcp;xtls;server=node1.baidu.work|host=node1.baidu.work|enable_vless=true|flow=xtls-rprx-direct

    会导致 au 报错

    ...
    Jan 25 11:31:59 hhse au[131237]: time="2022-01-25T11:31:59+08:00" level=info msg="NodeID: 3 IDIndex 0 - Node info changed "
    Jan 25 11:31:59 hhse au[131237]: time="2022-01-25T11:31:59+08:00" level=warning msg="NodeID: 3 IDIndex 0 - Failed to remove inbound - rpc error: code = Unknown desc = not enough information for making a decision"
    Jan 25 11:31:59 hhse au[131237]: time="2022-01-25T11:31:59+08:00" level=warning msg="NodeID: 3 IDIndex 0 - Failed to add inbound - unsupported to auto create VLESS inbounds"
    ...
    
    opened by tanpengsccd 1
  • 请问如何为 inbound 启用 TCP 快速打开?

    请问如何为 inbound 启用 TCP 快速打开?

    根据 v2ray 文档(https://www.v2ray.com/chapter_02/05_transport.html#streamsettingsobject),强制打开 TFO 的选项在 StreamSettingsObject 中,但StreamSettingsObject包含在inbound中,而这是由 Airu 控制的部分。

    请问如何手动强制打开 tfo 呢?

    opened by tearfulDalvik 0
  • 关于链式转发问题的提问如何在配置文件中写入UUID和用户名

    关于链式转发问题的提问如何在配置文件中写入UUID和用户名

    你好开发者,我有个问题需要提问下! 问题描述: 我遇到的问题是,我在做链式转发,需要用到路由规则如下 "routing": { "rules": [ { "type": "field", "user": [ "[email protected]" ], "outboundTag": "chu01" }, { "type": "field", "user": [ "[email protected]" ], "outboundTag": "chu02" } ] } 我如何才能获得用户的变量来配置规则?? 如果手动配置,我只能配置几个用户名,和UUID,但是这个和面板后续增加用户就要手动增加 非常不方便!

    opened by q592850 1
Releases(v1.1.1)
Owner
crossfw
Toolkit for CROSSFW Airport
crossfw
Yet another SIP003 plugin for shadowsocks, based on v2ray

Yet another SIP003 plugin for shadowsocks, based on v2ray Build go build Alternatively, you can grab the latest nightly from Circle CI by logging into

null 0 Oct 20, 2021
Poseidon -- An Enhanced V2Ray(based on v2ray-core)

Poseidon -- An Enhanced V2Ray(based on v2ray-core) Support SSRPanel(VNetPanel), V2board, SSpanel-v3-Uim Features Sync user from your panel to v2ray Lo

null 0 Nov 14, 2021
A base gui tool for xray/v2ray/hysteria/trojan-go without system proxy

A base gui tool for xray/v2ray/hysteria/trojan-go without system proxy

youlika 12 Jun 18, 2022
Docker-trojan-go - 使用 Go 实现的完整 Trojan 代理

使用 Go 实现的完整 Trojan 代理,兼容原版 Trojan 协议及配置文件格式。安全、高效、轻巧、易用。

null 2 Feb 13, 2022
Vmessping - A ping prober for vmess:// links in common seen formats

VMessPing A ping prober for vmess:// links in common seen formats. vmessping sup

null 1 Jan 9, 2022
Yet another SIP003 plugin for shadowsocks, based on Xray-core

Yet another SIP003 plugin for shadowsocks, based on Xray-core Build go build Usage See command line args for advanced usages.

Teddysun 223 Jun 25, 2022
Sstreamcry - Shadowsocks stream bomb

ShadowStreamCry A Shadowsocks stream bomb. Credits DuckSoft Qv2ray/rc4md5cry v2f

秋のかえで 7 Feb 24, 2022
An opinionated clean fork of v2fly/v2ray-core

v2ray-go An opinionated fork of v2fly/v2ray-core. Additional Features ?? Add flag -suppressTimestamps to suppress timestamps in logs ?? Refine systemd

Shadowsocks.NET 22 Jun 16, 2022
🛡 Several domain lists compiled into a database file used by V2Ray.

Domain list database This project is pulled from v2fly/domain-list-community, with only its data changed to use several blocklists. Purpose of this pr

Lightingale Community Open Source Software 1 May 22, 2022
Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.

Project X Project X originates from XTLS protocol, provides a set of network tools such as Xray-core and Xray-flutter. License Mozilla Public License

Project X Community 9k Jun 26, 2022
A Xray backend framework that can easily support many panels. 一个基于Xray的后端框架,支持V2ay,Trojan,Shadowsocks协议,极易扩展,支持多面板对接

XRayR A Xray backend framework that can easily support many panels. 一个基于Xray的后端框架,支持V2ay,Trojan,Shadowsocks协议,极易扩展,支持多面板对接。 如果您喜欢本项目,可以右上角点个star+watch

null 989 Apr 25, 2022
An event driven remote access trojan for experimental purposes.

erat An event driven remote access trojan for experimental purposes. This example is very simple and leverages ssh failed login events to trigger erat

siovador 0 Jan 16, 2022
trojan-go trojan(mini) mini auth trojan golang go

trojan forked from https://github.com/p4gefau1t/trojan-go Usage build: go build -tags "full" client: ./trojan-go -client -remote xxx.com:443 -local

Fan 0 Feb 2, 2022
Yet another SIP003 plugin for shadowsocks, based on v2ray

Yet another SIP003 plugin for shadowsocks, based on v2ray Build go build Alternatively, you can grab the latest nightly from Circle CI by logging into

null 0 Oct 20, 2021
Poseidon -- An Enhanced V2Ray(based on v2ray-core)

Poseidon -- An Enhanced V2Ray(based on v2ray-core) Support SSRPanel(VNetPanel), V2board, SSpanel-v3-Uim Features Sync user from your panel to v2ray Lo

null 0 Nov 14, 2021
A base gui tool for xray/v2ray/hysteria/trojan-go without system proxy

A base gui tool for xray/v2ray/hysteria/trojan-go without system proxy

youlika 12 Jun 18, 2022
Docker-trojan-go - 使用 Go 实现的完整 Trojan 代理

使用 Go 实现的完整 Trojan 代理,兼容原版 Trojan 协议及配置文件格式。安全、高效、轻巧、易用。

null 2 Feb 13, 2022
A relay for VMess

Naruse A relay for VMess.

秋のかえで 5 Jun 20, 2022
Vmessping - A ping prober for vmess:// links in common seen formats

VMessPing A ping prober for vmess:// links in common seen formats. vmessping sup

null 1 Jan 9, 2022
Yet another SIP003 plugin for shadowsocks, based on Xray-core

Yet another SIP003 plugin for shadowsocks, based on Xray-core Build go build Usage See command line args for advanced usages.

Teddysun 223 Jun 25, 2022
Sstreamcry - Shadowsocks stream bomb

ShadowStreamCry A Shadowsocks stream bomb. Credits DuckSoft Qv2ray/rc4md5cry v2f

秋のかえで 7 Feb 24, 2022
An opinionated clean fork of v2fly/v2ray-core

v2ray-go An opinionated fork of v2fly/v2ray-core. Additional Features ?? Add flag -suppressTimestamps to suppress timestamps in logs ?? Refine systemd

Shadowsocks.NET 22 Jun 16, 2022
🛡 Several domain lists compiled into a database file used by V2Ray.

Domain list database This project is pulled from v2fly/domain-list-community, with only its data changed to use several blocklists. Purpose of this pr

Lightingale Community Open Source Software 1 May 22, 2022
Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.

Project X Project X originates from XTLS protocol, provides a set of network tools such as Xray-core and Xray-flutter. License Mozilla Public License

Project X Community 9k Jun 26, 2022
A Xray backend framework that can easily support many panels. 一个基于Xray的后端框架,支持V2ay,Trojan,Shadowsocks协议,极易扩展,支持多面板对接

XRayR A Xray backend framework that can easily support many panels. 一个基于Xray的后端框架,支持V2ay,Trojan,Shadowsocks协议,极易扩展,支持多面板对接。 如果您喜欢本项目,可以右上角点个star+watch

null 989 Apr 25, 2022
A detector for the Trojan Source and other unicode-based vulnerabilities.

Trojan Source Detector This application detects Trojan Source attacks in source code. It can be used as part of the CI system to make sure there are n

Have you debugged.it? 5 Jan 6, 2022
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators

TrojanSourceFinder TrojanSourceFinder helps developers detect "Trojan Source" vulnerability in source code. Trojan Source vulnerability allows an atta

Ariary 44 Jun 13, 2022
An event driven remote access trojan for experimental purposes.

erat An event driven remote access trojan for experimental purposes. This example is very simple and leverages ssh failed login events to trigger erat

siovador 0 Jan 16, 2022
Trojan discord bot, used for grieving discord servers

disc-TROJAN-go Trojan discord bot, used for grieving discord servers How Does It Work? disc-TROJAN-go is a discord bot with hidden features. At the ti

null 3 Feb 28, 2022