#!/usr/bin/env bash PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:~/bin export PATH #=================================================================# # System Required: CentOS 6,7, Debian, Ubuntu # # Description: One click Install ShadowsocksR Server # # Author: Teddysun <i@teddysun.com> # # Thanks: @breakwa11 <https://twitter.com/breakwa11> # # Intro: https://shadowsocks.be/9.html # #=================================================================# clear echo echo "#############################################################" echo "# One click Install ShadowsocksR Server #" echo "# Intro: https://shadowsocks.be/9.html #" echo "# Author: Teddysun <i@teddysun.com> #" echo "# Github: https://github.com/breakwa11/shadowsocks #" echo "#############################################################" echo #Current folder cur_dir=`pwd` # Make sure only root can run our script rootness(){ if [[ $EUID -ne 0 ]]; then echo "Error: This script must be run as root!" 1>&2 exit 1 fi } # Disable selinux disable_selinux(){ if [ -s /etc/selinux/config ] && grep 'SELINUX=enforcing' /etc/selinux/config; then sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config setenforce 0 fi } #Check system check_sys(){ local checkType=$1 local value=$2 local release='' local systemPackage='' if [[ -f /etc/redhat-release ]]; then release="centos" systemPackage="yum" elif cat /etc/issue | grep -Eqi "debian"; then release="debian" systemPackage="apt" elif cat /etc/issue | grep -Eqi "ubuntu"; then release="ubuntu" systemPackage="apt" elif cat /etc/issue | grep -Eqi "centos|red hat|redhat"; then release="centos" systemPackage="yum" elif cat /proc/version | grep -Eqi "debian"; then release="debian" systemPackage="apt" elif cat /proc/version | grep -Eqi "ubuntu"; then release="ubuntu" systemPackage="apt" elif cat /proc/version | grep -Eqi "centos|red hat|redhat"; then release="centos" systemPackage="yum" fi if [[ ${checkType} == "sysRelease" ]]; then if [ "$value" == "$release" ]; then return 0 else return 1 fi elif [[ ${checkType} == "packageManager" ]]; then if [ "$value" == "$systemPackage" ]; then return 0 else return 1 fi fi } # Get version getversion(){ if [[ -s /etc/redhat-release ]]; then grep -oE "[0-9.]+" /etc/redhat-release else grep -oE "[0-9.]+" /etc/issue fi } # CentOS version centosversion(){ if check_sys sysRelease centos; then local code=$1 local version="$(getversion)" local main_ver=${version%%.*} if [ "$main_ver" == "$code" ]; then return 0 else return 1 fi else return 1 fi } # Get public IP address get_ip(){ local IP=$( ip addr | egrep -o '[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}' | egrep -v "^192\.168|^172\.1[6-9]\.|^172\.2[0-9]\.|^172\.3[0-2]\.|^10\.|^127\.|^255\.|^0\." | head -n 1 ) [ -z ${IP} ] && IP=$( wget -qO- -t1 -T2 ipv4.icanhazip.com ) [ -z ${IP} ] && IP=$( wget -qO- -t1 -T2 ipinfo.io/ip ) [ ! -z ${IP} ] && echo ${IP} || echo } # Pre-installation settings pre_install(){ if check_sys packageManager yum || check_sys packageManager apt; then # Not support CentOS 5 if centosversion 5; then echo "Error: Not supported CentOS 5, please change to CentOS 6+/Debian 7+/Ubuntu 12+ and try again." exit 1 fi else echo "Error: Your OS is not supported. please change OS to CentOS/Debian/Ubuntu and try again." exit 1 fi # Set ShadowsocksR config password echo "Please input password for ShadowsocksR:" read -p "(Default password: aahost.com):" shadowsockspwd [ -z "${shadowsockspwd}" ] && shadowsockspwd="aahost.com" echo echo "---------------------------" echo "password = ${shadowsockspwd}" echo "---------------------------" echo # Set ShadowsocksR config port while true do echo -e "Please input port for ShadowsocksR [1-65535]:" read -p "(Default port: 443):" shadowsocksport [ -z "${shadowsocksport}" ] && shadowsocksport="443" expr ${shadowsocksport} + 0 &>/dev/null if [ $? -eq 0 ]; then if [ ${shadowsocksport} -ge 1 ] && [ ${shadowsocksport} -le 65535 ]; then echo echo "---------------------------" echo "port = ${shadowsocksport}" echo "---------------------------" echo break else echo "Input error, please input correct number" fi else echo "Input error, please input correct number" fi done get_char(){ SAVEDSTTY=`stty -g` stty -echo stty cbreak dd if=/dev/tty bs=1 count=1 2> /dev/null stty -raw stty echo stty $SAVEDSTTY } echo echo "Press any key to start...or Press Ctrl+C to cancel" char=`get_char` # Install necessary dependencies if check_sys packageManager yum; then yum install -y unzip openssl-devel gcc swig python python-devel python-setuptools autoconf libtool libevent automake make curl curl-devel zlib-devel perl perl-devel cpio expat-devel gettext-devel elif check_sys packageManager apt; then apt-get -y update apt-get -y install python python-dev python-pip python-m2crypto curl wget unzip gcc swig automake make perl cpio build-essential fi cd ${cur_dir} } # Download files download_files(){ # Download libsodium file if ! wget --no-check-certificate -O libsodium-1.0.15.tar.gz https://github.com/jedisct1/libsodium/releases/download/1.0.15/libsodium-1.0.15.tar.gz; then echo "Failed to download libsodium-1.0.15.tar.gz!" exit 1 fi # Download ShadowsocksR file if ! wget --no-check-certificate -O manyuser.zip https://github.com/bakuniverse/shadowsocksr/archive/manyuser.zip; then echo "Failed to download ShadowsocksR file!" exit 1 fi # Download ShadowsocksR init script if check_sys packageManager yum; then if ! wget --no-check-certificate https://raw.githubusercontent.com/bakuniverse/shadowsocks_install/master/shadowsocksR -O /etc/init.d/shadowsocks; then echo "Failed to download ShadowsocksR chkconfig file!" exit 1 fi elif check_sys packageManager apt; then if ! wget --no-check-certificate https://raw.githubusercontent.com/bakuniverse/shadowsocks_install/master/shadowsocksR-debian -O /etc/init.d/shadowsocks; then echo "Failed to download ShadowsocksR chkconfig file!" exit 1 fi fi } # Firewall set firewall_set(){ echo "firewall set start..." if centosversion 6; then /etc/init.d/iptables status > /dev/null 2>&1 if [ $? -eq 0 ]; then iptables -L -n | grep -i ${shadowsocksport} > /dev/null 2>&1 if [ $? -ne 0 ]; then iptables -I INPUT -m state --state NEW -m tcp -p tcp --dport ${shadowsocksport} -j ACCEPT iptables -I INPUT -m state --state NEW -m udp -p udp --dport ${shadowsocksport} -j ACCEPT /etc/init.d/iptables save /etc/init.d/iptables restart else echo "port ${shadowsocksport} has been set up." fi else echo "WARNING: iptables looks like shutdown or not installed, please manually set it if necessary." fi elif centosversion 7; then systemctl status firewalld > /dev/null 2>&1 if [ $? -eq 0 ]; then firewall-cmd --permanent --zone=public --add-port=${shadowsocksport}/tcp firewall-cmd --permanent --zone=public --add-port=${shadowsocksport}/udp firewall-cmd --reload else echo "Firewalld looks like not running, try to start..." systemctl start firewalld if [ $? -eq 0 ]; then firewall-cmd --permanent --zone=public --add-port=${shadowsocksport}/tcp firewall-cmd --permanent --zone=public --add-port=${shadowsocksport}/udp firewall-cmd --reload else echo "WARNING: Try to start firewalld failed. please enable port ${shadowsocksport} manually if necessary." fi fi fi echo "firewall set completed..." } # Config ShadowsocksR config_shadowsocks(){ cat > /etc/shadowsocks.json<<-EOF { "server":"0.0.0.0", "server_ipv6":"::", "server_port":${shadowsocksport}, "local_address":"127.0.0.1", "local_port":1080, "password":"${shadowsockspwd}", "timeout":120, "method":"chacha20-ietf", "protocol":"auth_aes128_md5", "protocol_param":"", "obfs":"tls1.2_ticket_auth_compatible", "obfs_param":"", "redirect":"", "dns_ipv6":false, "fast_open":false, "workers":1 } EOF } # Install ShadowsocksR install(){ # Install libsodium tar zxf libsodium-1.0.15.tar.gz cd libsodium-1.0.15 ./configure && make && make install if [ $? -ne 0 ]; then echo "libsodium install failed!" install_cleanup exit 1 fi echo "/usr/local/lib" > /etc/ld.so.conf.d/local.conf ldconfig # Install ShadowsocksR cd ${cur_dir} unzip -q manyuser.zip mv shadowsocksr-manyuser/shadowsocks /usr/local/ if [ -f /usr/local/shadowsocks/server.py ]; then chmod +x /etc/init.d/shadowsocks if check_sys packageManager yum; then chkconfig --add shadowsocks chkconfig shadowsocks on elif check_sys packageManager apt; then update-rc.d -f shadowsocks defaults fi /etc/init.d/shadowsocks start clear echo echo "Congratulations, ShadowsocksR install completed!" echo -e "Server IP: \033[41;37m $(get_ip) \033[0m" echo -e "Server Port: \033[41;37m ${shadowsocksport} \033[0m" echo -e "Password: \033[41;37m ${shadowsockspwd} \033[0m" echo -e "Local IP: \033[41;37m 127.0.0.1 \033[0m" echo -e "Local Port: \033[41;37m 1080 \033[0m" echo -e "Protocol: \033[41;37m auth_aes128_md5 \033[0m" echo -e "obfs: \033[41;37m tls1.2_ticket_auth_compatible \033[0m" echo -e "Encryption Method: \033[41;37m chacha20-ietf \033[0m" echo echo "Welcome to visit: " echo "If you want to change protocol & obfs, please visit reference URL:" echo "https://github.com/breakwa11/shadowsocks-rss/wiki/Server-Setup" echo echo "Enjoy it!" echo else echo "ShadowsocksR install failed, please Email to Teddysun <i@teddysun.com> and contact" install_cleanup exit 1 fi } # Install cleanup install_cleanup(){ cd ${cur_dir} rm -rf manyuser.zip shadowsocks-manyuser libsodium-1.0.15.tar.gz libsodium-1.0.15 } # Uninstall ShadowsocksR uninstall_shadowsocks(){ printf "Are you sure uninstall ShadowsocksR? (y/n)" printf "\n" read -p "(Default: n):" answer [ -z ${answer} ] && answer="n" if [ "${answer}" == "y" ] || [ "${answer}" == "Y" ]; then /etc/init.d/shadowsocks status > /dev/null 2>&1 if [ $? -eq 0 ]; then /etc/init.d/shadowsocks stop fi if check_sys packageManager yum; then chkconfig --del shadowsocks elif check_sys packageManager apt; then update-rc.d -f shadowsocks remove fi rm -f /etc/shadowsocks.json rm -f /etc/init.d/shadowsocks rm -f /var/log/shadowsocks.log rm -rf /usr/local/shadowsocks echo "ShadowsocksR uninstall success!" else echo echo "uninstall cancelled, nothing to do..." echo fi } # Install ShadowsocksR install_shadowsocks(){ rootness disable_selinux pre_install download_files config_shadowsocks install if check_sys packageManager yum; then firewall_set fi install_cleanup } # Initialization step action=$1 [ -z $1 ] && action=install case "$action" in install|uninstall) ${action}_shadowsocks ;; *) echo "Arguments error! [${action}]" echo "Usage: `basename $0` {install|uninstall}" ;; esac