Using this project, you can run a docker-based shadowsocks proxy by its v2ray plugin.

It comes originally from here with some extra elaboration and changes.

Prerequisite

1-Docker

https://docs.docker.com/engine/install/ubuntu/

2- A domain

Get project

git clone https://github.com/Zi4Sec/shadowsocks-v2ray-tls.git

Install certbot on your ubuntu

cd shadowsocks-v2ray-tls
mkdir certs
sudo apt-add-repository ppa:certbot/certbot
apt update
apt install certbot -y
certbot --version

Create certificate and privatekey with certbot command

• change YOUR_EMAIL_ADDRESS and DOMAIN_NAME to your own.

certbot certonly --standalone --preferred-challenges http --non-interactive --agree-tos --email <YOUR_EMAIL_ADDRESS> -d <DOMAIN_NAME>

then, copy pem files in certs directory.

cp /etc/letsencrypt/live/<DOMAIN_NAME>/fullchain.pem certs
cp /etc/letsencrypt/live/<DOMAIN_NAME>/privkey.pem certs

change config/config.json

• change DOMAIN_NAME to your own
• change PASSWORD to your own

Add a new non roor user and change the directory permissions

• It is better to run the service as a non-root user.

  sudo adduser vpn

• remember to restrict this user to login through ssh (you can add list of users who can just ssh to the server

sudo vi /etc/ssh/sshd_config

• press i and add AllowUsers user1 user2 to end of the file, but not add this non-root user. then make vpn user the owner of required files

chown -R vpn:vpn shadowsocks-v2ray-tls
chmod 755 -R shadowsocks-v2ray-tls

Run the service

docker compose up -d

check every thing is ok and the service is working on the specified port.

docker ps -a

client tools

In order to you the service in client-side, you need to get appropriate files from below links:

• https://github.com/shadowsocks/
• https://github.com/shadowsocks/v2ray-plugin/releases