浏览器保存插件
【转帖】主流显卡H265、VP9硬件解码支持情况 - 知乎
Caddy – 方便够用的 HTTPS server 新手教程_weixin_34279184的博客-CSDN博客
亂數假文產生器 - Chinese Lorem Ipsum
Caddy实战- CSDN搜索
【如何优雅地写博客】利用h5ai自建一个视频床!
【如何优雅地写博客】自建一个永不裂开的图床!
小爱同学网络唤醒(Wake on Lan,WOL)启动电脑 - 知乎
安全的内网穿透保姆级教程,使用nginx反向代理给内网设备实现双向ssl认证,阻止无证书用户暴力破解nas|网卡|主机|内网穿透_新浪新闻
解决BCM94360CD 4天线,在windows10下蓝牙耳机断断续续问题
内网穿透 篇三:安全的内网穿透保姆级教程,使用nginx反向代理给内网设备实现双向ssl认证,阻止无证书用户暴力破解nas_NAS存储_什么值得买
5分钟了解游戏加速器的原理与搭建 - 知乎
解决BCM94360CD 4天线,在windows10下蓝牙耳机断断续续问题 | 粘贴怪
# PS2 重装机兵 沙尘之锁攻略
前线任务4攻略上
前线任务4攻略下
前线任务4系统详解
前线任务5详细流程攻略
Potplayer + LAVFilters + madVR 配置教程
linux 启动服务后台运行,linux后台启动任务
openwrt管理后台使用caddy代替uhttpd
编译caddy替代openwrt的uhttpd
如何获取Bing每日图片并作为网站背景图使用?
Bing每日壁纸API
一分钟自建zerotier-plant
zerotier的planet服务器(根服务器)的搭建踩坑记。无需zerotier官网账号
anylink
在 Linux 系统下使用迅雷远程离线下载
docker修改Docker容器启动配置参数
opkg 全部更新
甲骨文云 开户root,防火墙
UNRAID增加和缩小虚拟机虚拟磁盘大小
cm311-1a有2个IP的原因
榨干性能!魔百和CM311-1a KVM Openwrt& Docker安装以及Tailscale内网穿透保姆级教程_NAS存储_什么值得买
openwrt tailscale
UNRAID增加和缩小虚拟机虚拟磁盘大小
详解OpenWrt路由器设置Crontab定时检查网络并重启
Debian如何更换apt源
debian11 配置samba服务 linuxsys
debian11 配置samba服务
Debian 部署安装 Clash
防止甲骨文永久免费的计算实例被回收
怎么查看docker启动参数
Docker中Jellyfin开启硬件加速(Intel QuickSync)
Ext4文件系统修复
armbian显示系统信息的脚本-斐讯无线路由器以及其它斐迅网络设备-恩山无线论坛 - Powered by Discuz!
armbian显示系统信息的脚本
Linux 让终端走代理的几种方法
网站推荐
通过KMS方式激活 Windows 11 系统
各种显卡H265/HEVC/VP9/AV1格式4K和8K视频硬解码支持列表
unraid安装clash 及启用http代理_NAS存储_什么值得买
常见软路由/NAS/低功耗处理器对比 2020.12
1130-白嫖者联盟
Debian-Linux配置网卡网络方法
光猫桥接模式下,通过路由器访问光猫.简单设置
Docker一键脚本安装脚本(可选安装Docker Compose)
tgapi推送教程
UNRAID 使用自定义证书教程
只有 3MB 的自签名证书制作 Docker 工具镜像:Certs Maker
如何制作和使用自签名证书
通过Nginx Proxy Manager反代访问unraid管理页面
unRAID 篇十:unRAID 6.10.3远程管理并开启SSL访问_软件应用_什么值得买
unRAID 篇十一:unRAID 篇十:unRAID 6.10.3远程管理并开启SSL访问-填坑_软件应用_什么值得买
入正 Unraid ! 6.10 更新了什么?证书如何配置?
NAS那些事儿 篇一:纯IPV4访问纯IPV6且内网穿透_NAS存储_什么值得买
甲骨文Oracle取消强制修改密码
用uci配置openwrt防火墙
捡垃圾 篇八:花30元实现你的平价sonos——音响升级DLAN和Airplay,附上平价音响推荐_蓝牙音箱_什么值得买
3 分钟教你解锁 Sonos 和小爱等智能音箱的 AirPlay 功能_软件
CentOS7、ubuntu正确挂载网络磁盘方法
全网首发,没有比这更快的视频下载方法!
黑苹果硬件配置推荐,铭瑄MS-挑战者 H510ITX主板,安装真的很简单
黑苹果硬件配置推荐,铭瑄MS-挑战者H510ITX主板,安装真的很简单
openwrt 一键更新所有软件 opkg upgrade all packages
黑猴子的家:华为 OpenEuler(欧拉) Linux 之基本配置 - openEuler-20.03-LTS
免费翻墙,批量vless节点,反代伪装网页,轻松跑满本地宽带
小米(Mi) 6小米(Mi) 6 手机刷 TWRP 方法,刷三方Recovery方法(解决卡米问题)刷机解锁
debian12版本默认SSH不让ROOT账户远程登录解决方案(重置密码)
Debian安装Oh-my-zsh
【转发】zsh中 配置显示完整路径
如何在Linux系统中查看CPU温度
Fedora 启动 SSH服务 - 学海无涯1999 - 博客园
Bash命令行显示当前用户的完整路径
使用YUM安装docker
Linux 中的 ls 命令使用教程
Linux系统资源监控工具(top,htop,glances)
UNraid安装HomeAssistant与智能家庭部署_智能家居_什么值得买
Home Assistant如何安装配置HACS(hacs安装配置图文教程)
Homeassistant安装HACS_china(HACS)和ha_file_explorer(文件管理器) - kccic - 博客园
zsh 环境变量无法正常工作ShellClash
LInux远程文件传输效率工具:lrzsz
Windows 上的 Linux 子系统:WSL
Docker 无法启动 Failed to start LSB: Create lightweight, portable, self-sufficient containers.
一键安装docker(命令)
xiaoya全家桶系列教程:原版小雅、alist-tvbox、小雅-emby
Oracle OCI甲骨文云VPS启用原生IPv6
systemctl配置管理文件详解
Linux系统服务神器:systemctl的配置与使用 - 掘金
使用 oh-my-zsh 找不到 shellclash
ps2022总是提示需要访问钥匙串秘钥怎么解决?
在 macOS 中使用 Parallels Desktop 虚拟机安装 OpenWrt | Sukka's Blog
HP t430 Q&A
折腾 HP T430 Thin Client
惠普HP t430安装openwrt,配置旁路由,附跑分
联通GPON/4+1+WiFi(2.4G)TEWA-800G配置桥接模式
Ubuntu挂载Apfs文件系统磁盘(OSX分区) - 小家猫 - 博客园
unRAID虚拟机添加声卡_unraid虚拟机安装虚拟声卡-CSDN博客
docker 限制网速
jellyfin 代理
使用Cloudflare Worker代理Telegram Bot Api(2023.05)
Cloudflare + Backblaze私有桶 实现免费的图床 | king
MacOS 14 Sonoma 英特无线网卡无法检测更新及在线升级失败解决方案 - 黑果之家
惠普HP t430安装openwrt,配置旁路由,
小雅Alist定时清理缓存 - xyztank - 博客园
Unraid中安装小雅Alist、Emby全家桶
(图文)jellyfin如何重置账户密码的详细教程
【2023-10-24】【R4S】 (RK3399) jellyfin 硬解4K H.265 视频-OPENWRT专版-恩山无线论坛
从已运行容器获取docker run参数
armbian 一键换源
dts — rk3399.dtsi
samba搭建记录
docker限制容器下载速度
好好学Docker:Docker容器网络限速
记录一次Unraid开心版升级 | 一个无人问津的小站
manjaro软件包管理器pacman介绍,并于centOS7yum类比
当Mac文件被永久锁定后,如:hosts文件无法修改被锁定且无法解锁
switch《塞尔达传说王国之泪》1.21含60帧多功能mod
命令提示符、Powershell、CMD闪退问题的解决
批量更新 OpenWRT 软件包
ROS7.8 L6授权 MikroTik_RouterOS7.8 _UEFI_ESXI+PVE+unRaid_i225_i226
联通吉比特TEWA-800G超级管理员密码获取
systemd时代的/etc/fstab - Systemd系列文章
armbian插入磁盘自动挂载及docker安装
开发板linux自动挂载U盘和SD卡/Automount usb disk and sdcard on the linux
udev自动挂载和命名
使用Cloudflare Worker代理Telegram Bot Api
RK3588在Armbian上运行PIKVM
穷人的IP-KVM远程访问
禁用Intel ME
sunshine 基地版串流食用指南
Docker版本的Transmission更换webui为 transmission-web-control
WOL 网络唤醒避坑指南:常见问题的分析与内容补充_软件应用_什么值得买
Win11 设置 Syncthing 开机自启动
imlala/ubuntu-xfce-vnc-novnc
NAS用户必备!170 多个好玩的,好用的docker容器_NAS存储_什么值得买
通过Redroid搭建自己的云手机
基于 Telegraph 的免费图床 - 摸鱼派 - 白与画科技
Webmin--一个用于Linux基于Web的系统管理工具
CMWTAT_Digital_Edition/README.zh.md at master · TGSAN/CMWTAT_Digital_Edition
❤️🔥电视盒子助手Docker版使用摘要-悟空的日常
Update LineageOS on Xiaomi Mi 6
一加七Pro刷lineageos21(kernelsu+gapps)
Install LineageOS on Xiaomi Mi 6
Android刷機常見的GApps套件 (Google服務框架) 比較,OpenGApps、NikGApps、MindTheGApps、microG · Ivon的部落格
r08 armbian固件喇叭播放 - LaJiLao.Top
Docker 命令大全 | 菜鸟教程
本文档使用 MrDoc 发布
-
+
首页
折腾 HP T430 Thin Client
# 折腾 HP T430 Thin Client 发表于 2022-10-10 分类于 [2022](https://blog.plusls.com/2022/) , [10](https://blog.plusls.com/2022/10/) 阅读次数: 1960 本文字数: 10k 阅读时长 ≈ 9 分钟 距离上次写博客居然已经将近两年了,时间过得真快。最近一直在忙,国庆终于有空折腾一下自己的玩具,刚好捡的垃圾 HP T430 Thin Client 也到货了,趁着有时间折腾一下它,并做个记录。先放个折腾的效果图(看起来很是简陋):  ## [](https://blog.plusls.com/2022/10/play-with-hp-t430/#%E5%9F%BA%E6%9C%AC%E9%85%8D%E7%BD%AE "基本配置")基本配置 这个 HP T430 的配置为 Intel Celeron Processor N4000 (1.1 GHz up to 2.6 GHz), 2G RAM + 16 G EMMC,千兆网卡,170 入手的(充电器 15,电源 25,快递 20),到手后决定先刷个 BIOS(原版的 BIOS 还是 2018 年的)。 BIOS 下载地址: [https://support.hp.com/us-en/drivers/selfservice/hp-t430-thin-client/21316595](https://support.hp.com/us-en/drivers/selfservice/hp-t430-thin-client/21316595) 不知道为啥,选 win 10 的 BIOS 版本比 Linux 要低,这里下载的是 N41 的 BIOS,发布日期为 2022.6.27(听说能刷 N44 的,但是手头没编程器还是别作死了),下载后解压出目录 `SWSetup\SPI40825`,其中 `BIOS Flash.htm` 描述了几种刷 BIOS 的方案,其中尝试了 `Update from Computer Setup` 看起来它是将 BIOS 更新的 efi 应用写入了 U 盘的 HP 目录,然后由 BIOS 去主动调用来进行更新,不知道是不是因为我手头的板子 BIOS 版本太低,怎么试都不成功,最后放弃思考直接把 `Win\N41_0110.exe` 拷到装有 PE 的 U 盘里,在 PE 下进行更新。 剩下的步骤也就是开启 VT-d,设置来电自启,因为打算做软路由(万物皆可软路由),同时也因为把开关焊烂了(手残是这样的)。 ## [](https://blog.plusls.com/2022/10/play-with-hp-t430/#PVE "PVE")PVE 之前一直看群友搞了各种 j1900,锐角云,并且在上面折腾了一堆玩具,趁着这个机会也来折腾一下,当作少有的娱乐活动(然而这货只有 2G 内存 说实话有点蔡)。  ### [](https://blog.plusls.com/2022/10/play-with-hp-t430/#%E6%8D%A2%E6%BA%90 "换源")换源 没啥讲究,就是 PVE 有个企业源,不加订阅没法用,可以使用非订阅的源 /etc/apt/sources.list: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br><span>6</span><br></pre></td><td><pre><span>deb https://mirrors.ustc.edu.cn/debian bullseye main contrib non-free</span><br><span></span><br><span>deb https://mirrors.ustc.edu.cn/debian bullseye-updates main contrib non-free</span><br><span></span><br><span># security updates</span><br><span>deb https://mirrors.ustc.edu.cn/debian-security bullseye-security main contrib non-free</span><br></pre></td></tr></tbody></table> /etc/apt/sources.list.d/pve-enterprise.list: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br></pre></td><td><pre><span>#deb https://enterprise.proxmox.com/debian/pve bullseye pve-enterprise</span><br><span>deb https://mirrors.ustc.edu.cn/proxmox/debian/pve bullseye pve-no-subscription</span><br></pre></td></tr></tbody></table> ### [](https://blog.plusls.com/2022/10/play-with-hp-t430/#%E5%85%BC%E5%AE%B9-emmc "兼容 emmc")兼容 emmc 由于 PVE 本身的安装脚本并不支持安装到 EMMC 上,安装时会提示 **Unable to get device for partition 1 on device /dev/mmcblk1**,因此需要使用 Debug mode 进入 PVE 的安装盘,在进入安装 GUI 前修改 `/usr/bin/proxinstall` 来添加对 mmcblk 的支持 <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br><span>6</span><br><span>7</span><br><span>8</span><br><span>9</span><br></pre></td><td><pre><span>} elsif (<span>$dev</span> =~ m|^/dev/[^/]+/hd[a-z]$|) {</span><br><span> <span>return</span> <span>"<span>${dev}</span><span>$partnum</span>"</span>;</span><br><span>} elsif (<span>$dev</span> =~ m|^/dev/nvme\d+n\d+$|) {</span><br><span> <span>return</span> <span>"<span>${dev}</span>p<span>$partnum</span>"</span>;</span><br><span>} elsif (<span>$dev</span> =~ m|^/dev/mmcblk\d+$|) {</span><br><span> <span>return</span> <span>"<span>${dev}</span>p<span>$partnum</span>"</span>;</span><br><span>} <span>else</span> {</span><br><span> die <span>"unable to get device for partition <span>$partnum</span> on device <span>$dev</span>\n"</span>;</span><br><span>}</span><br></pre></td></tr></tbody></table> 参考资料:[解决 Proxmox VE 无法安装到 eMMC 上的问题](https://lookas2001.com/%E8%A7%A3%E5%86%B3-proxmox-ve-%E6%97%A0%E6%B3%95%E5%AE%89%E8%A3%85%E5%88%B0-emmc-%E4%B8%8A%E7%9A%84%E9%97%AE%E9%A2%98/) ### [](https://blog.plusls.com/2022/10/play-with-hp-t430/#LXQt "LXQt")LXQt 安装后想着,闲着有点浪费,装个 DE 试试,然而折腾了一圈,发现 KDE 和 xfce4 都跑不动,最后装了个 LXQt(然而只是个玩具,Firefox 都打不开) <table><tbody><tr><td><pre><span>1</span><br></pre></td><td><pre><span>apt install lxqt lightdm</span><br></pre></td></tr></tbody></table> 然而这个过程中还吃了一口屎,LXQt 使用 ConnMan 来管理网络连接,和 PVE 打架了,直接直接导致开机缓慢和无法上网,解决方案也很简单,卸掉就好了 <table><tbody><tr><td><pre><span>1</span><br></pre></td><td><pre><span>apt purge connman</span><br></pre></td></tr></tbody></table> ## [](https://blog.plusls.com/2022/10/play-with-hp-t430/#Openwrt "Openwrt")Openwrt 终于来到正头戏了,也是本次折腾的主要目的,安装一个 openwrt 并将其作为旁路由和透明代理 整个内网的网络为 192.168.2.0/24,机器如下 - 192.168.2.1: 主路由 - 192.168.2.2: PVE - 192.168.2.3: 待配置的 openwrt ### [](https://blog.plusls.com/2022/10/play-with-hp-t430/#%E5%AE%89%E8%A3%85 "安装")安装 openwrt 本身也是基于 Linux 的操作系统,PVE 则是基于 Debian,那最节省开销的方式显然是将 openwrt 安装为 PVE 的 LXC 容器,从而节省下虚拟化的开销 本来想直接在 LXC 中直接拉取 openwrt 的镜像,但是考虑到方便管理,还是从官网拉取了 amd64 的 rootfs 并自己创建了 CT 模板 链接:[https://downloads.openwrt.org/releases/22.03.0/targets/x86/64/openwrt-22.03.0-x86-64-rootfs.tar.gz](https://downloads.openwrt.org/releases/22.03.0/targets/x86/64/openwrt-22.03.0-x86-64-rootfs.tar.gz) 为了方便安装(某种强迫症),我并不太希望在命令行中创建 pve 容器,因此希望直接在 web 创建,但是直接创建会提示报错 `unable to detect OS distribution`,搜索了半天并没有找到在 web 设置 OS type 为 `unmanaged` 的方法,因此只能手动修改 `/usr/share/perl5/PVE/LXC/Setup.pm`,让其将 openwrt 识别为 `unmanaged` <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br><span>6</span><br><span>7</span><br><span>8</span><br><span>9</span><br><span>10</span><br><span>11</span><br><span>12</span><br><span>13</span><br><span>14</span><br></pre></td><td><pre><span> <span>return</span> <span>"alpine"</span>;</span><br><span> } elsif (-f <span>"<span>$rootdir</span>/etc/gentoo-release"</span>) {</span><br><span> <span>return</span> <span>"gentoo"</span>;</span><br><span> } elsif (-d <span>"<span>$rootdir</span>/nix/store"</span>) {</span><br><span> <span>return</span> <span>"nixos"</span>;</span><br><span> } elsif (-f <span>"<span>$rootdir</span>/etc/openwrt_release"</span>) {</span><br><span> <span>return</span> <span>"unmanaged"</span>; <span># openwrt</span></span><br><span> } elsif (-f <span>"<span>$rootdir</span>/etc/os-release"</span>) {</span><br><span> die <span>"unable to detect OS distribution\n"</span>;</span><br><span> } <span>else</span> {</span><br><span> warn <span>"/etc/os-release file not found and autodetection failed, falling back to 'unmanaged'\n"</span>;</span><br><span> <span>return</span> <span>"unmanaged"</span>;</span><br><span> }</span><br><span>};</span><br></pre></td></tr></tbody></table> 额外的安装配置: - 特权容器(不配置会导致 openwrt 的 dnsmasq 启动异常,貌似和 ujail 相关,参见 [openwrt-22-03-0-rc1-first-release-candidate](https://forum.openwrt.org/t/openwrt-22-03-0-rc1-first-release-candidate/126045/196)) - swap 0 - ram 512 - 磁盘大小 1G - 4 core - 关闭防火墙(我也不知道有没有必要,反正顺手点了避免吃屎) 此外还有一些别的配置: - 开机自启动 - 功能中除了无特权其它全部开启(其实主要是创建设备节点?不开不知道有没有问题,反正我没测) 由于配置的透明代理期望使用 TUN 来实现,因此需要将主机的 /dev/tun 挂载进容器,参考自 [OpenVPN\_in\_LXC](https://pve.proxmox.com/wiki/OpenVPN_in_LXC) 修改 `/etc/pve/lxc/100.conf` (其中 100 为容器 id),并添加如下语句: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br></pre></td><td><pre><span>lxc.cgroup2.devices.allow: c 10:200 rwm</span><br><span>lxc.mount.entry: /dev/net/tun dev/net/tun none bind,create=file</span><br></pre></td></tr></tbody></table> 随后只需要启动 openwrt,并在 PVE 控制台中配置其 ip 和网关(参考自 [openwrt\_as\_routerdevice](https://openwrt.org/docs/guide-user/network/openwrt_as_routerdevice))。 <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br></pre></td><td><pre><span>uci <span>set</span> network.lan.ipaddr=<span>"192.168.2.3"</span></span><br><span>uci <span>set</span> network.lan.gateway=<span>"192.168.2.1"</span></span><br><span>uci <span>set</span> network.lan.dns=<span>'114.114.114.114'</span></span><br><span>uci commit network</span><br><span>/etc/init.d/network restart</span><br></pre></td></tr></tbody></table> 配完网后可以安装一些常用的包来方便管理: - tmux - luci-i18n-base-zh-cn - ip-full # 完整的 ip,支持管理 tuntap 设备等 web 界面:  此外还需要在 web 中进行如下设置: 在 `接口->LAN-> DHCP 服务器` 中设置 `忽略此接口`,从而避免网络中存在两个 DHCP server。 在 `防火墙` 中将 `Forward` 设置为 `accpet`,不然 sing-box 无法处理其它机器路由来的流量,并会在内核日志中提示 `netlink: 'sing-box': attribute type 22 has an invalid length.`(参考资料:[issue 100](https://github.com/SagerNet/sing-box/issues/100)) ### [](https://blog.plusls.com/2022/10/play-with-hp-t430/#%E9%85%8D%E7%BD%AE%E4%B8%BB%E8%B7%AF%E7%94%B1 "配置主路由")配置主路由 其实主路由的配置很简单,只需要在 DHCP 中设置通告的网关地址和 dns 地址即可(3 表示网关,6 表示 DNS 服务器,参考自 [bootp-dhcp-parameters](https://www.iana.org/assignments/bootp-dhcp-parameters/bootp-dhcp-parameters.xhtml))  ### [](https://blog.plusls.com/2022/10/play-with-hp-t430/#%E5%9F%BA%E4%BA%8E-sing-box-tun-%E6%A8%A1%E5%BC%8F%E7%9A%84%E8%BD%AF%E8%B7%AF%E7%94%B1%E9%85%8D%E7%BD%AE "基于 sing-box tun 模式的软路由配置")基于 sing-box tun 模式的软路由配置 之前手机上一直使用 SagerNet 作为科学上网工具,其魔改了 v2ray-core 并添加了许多的协议支持,为此之前我也 fork 了一份 [Qv2ray](https://github.com/plusls/Qv2ray/pulls) 对其进行了简单的适配。后来发现 Project S 项目新出了一个 sing-box,貌似可以作为 v2ray 的替代品(clash 是什么,不熟不熟),因此决定采用其来配置透明代理 我本身有个 vless+ws+nginx tls+cf 的服务端配置,只需要替换 v2ray 的 vless 为 trojan(因为看文档描述 vless 貌似将会废弃)即可: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br><span>6</span><br><span>7</span><br><span>8</span><br><span>9</span><br><span>10</span><br><span>11</span><br><span>12</span><br><span>13</span><br><span>14</span><br><span>15</span><br><span>16</span><br><span>17</span><br><span>18</span><br><span>19</span><br></pre></td><td><pre><span><span>{</span></span><br><span> <span>"inbounds"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"trojan"</span><span>,</span></span><br><span> <span>"listen"</span><span>:</span> <span>"127.0.0.1"</span><span>,</span></span><br><span> <span>"listen_port"</span><span>:</span> <span>10000</span><span>,</span></span><br><span> <span>"users"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"name"</span><span>:</span> <span>"your-name"</span><span>,</span></span><br><span> <span>"password"</span><span>:</span> <span>"your-password"</span></span><br><span> <span>}</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"transport"</span><span>:</span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"ws"</span><span>,</span></span><br><span> <span>"path"</span><span>:</span> <span>"/your-path"</span></span><br><span> <span>}</span></span><br><span> <span>}</span></span><br><span> <span>]</span></span><br><span><span>}</span></span><br></pre></td></tr></tbody></table> PS:下载时我还疑惑了一下 amd64 和 amd64v3 是个啥区别,差了一下发现是 golang 针对新的 x86 cpu 做了一些特定优化,只有在新的 cpu 上才能使用,亲测 t430 只能使用 amd64。 openwrt 侧的透明代理配置如下: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br><span>6</span><br><span>7</span><br><span>8</span><br><span>9</span><br><span>10</span><br><span>11</span><br><span>12</span><br><span>13</span><br><span>14</span><br><span>15</span><br><span>16</span><br><span>17</span><br><span>18</span><br><span>19</span><br><span>20</span><br><span>21</span><br><span>22</span><br><span>23</span><br><span>24</span><br><span>25</span><br><span>26</span><br><span>27</span><br><span>28</span><br><span>29</span><br><span>30</span><br><span>31</span><br><span>32</span><br><span>33</span><br><span>34</span><br><span>35</span><br><span>36</span><br><span>37</span><br><span>38</span><br><span>39</span><br><span>40</span><br><span>41</span><br><span>42</span><br><span>43</span><br><span>44</span><br><span>45</span><br><span>46</span><br><span>47</span><br><span>48</span><br><span>49</span><br><span>50</span><br><span>51</span><br><span>52</span><br><span>53</span><br><span>54</span><br><span>55</span><br><span>56</span><br><span>57</span><br><span>58</span><br><span>59</span><br><span>60</span><br><span>61</span><br><span>62</span><br><span>63</span><br><span>64</span><br><span>65</span><br><span>66</span><br><span>67</span><br><span>68</span><br><span>69</span><br><span>70</span><br><span>71</span><br><span>72</span><br><span>73</span><br><span>74</span><br><span>75</span><br><span>76</span><br><span>77</span><br><span>78</span><br><span>79</span><br><span>80</span><br><span>81</span><br><span>82</span><br><span>83</span><br><span>84</span><br><span>85</span><br><span>86</span><br><span>87</span><br><span>88</span><br><span>89</span><br><span>90</span><br><span>91</span><br><span>92</span><br><span>93</span><br><span>94</span><br><span>95</span><br><span>96</span><br><span>97</span><br><span>98</span><br><span>99</span><br><span>100</span><br><span>101</span><br><span>102</span><br><span>103</span><br><span>104</span><br><span>105</span><br><span>106</span><br><span>107</span><br><span>108</span><br><span>109</span><br><span>110</span><br><span>111</span><br><span>112</span><br><span>113</span><br><span>114</span><br><span>115</span><br><span>116</span><br><span>117</span><br><span>118</span><br><span>119</span><br><span>120</span><br><span>121</span><br><span>122</span><br><span>123</span><br><span>124</span><br><span>125</span><br><span>126</span><br><span>127</span><br><span>128</span><br><span>129</span><br><span>130</span><br><span>131</span><br><span>132</span><br><span>133</span><br><span>134</span><br><span>135</span><br><span>136</span><br><span>137</span><br><span>138</span><br><span>139</span><br><span>140</span><br><span>141</span><br><span>142</span><br><span>143</span><br><span>144</span><br><span>145</span><br><span>146</span><br><span>147</span><br><span>148</span><br><span>149</span><br><span>150</span><br><span>151</span><br><span>152</span><br><span>153</span><br><span>154</span><br><span>155</span><br><span>156</span><br><span>157</span><br><span>158</span><br><span>159</span><br><span>160</span><br><span>161</span><br><span>162</span><br><span>163</span><br><span>164</span><br><span>165</span><br><span>166</span><br><span>167</span><br><span>168</span><br><span>169</span><br><span>170</span><br><span>171</span><br><span>172</span><br><span>173</span><br><span>174</span><br><span>175</span><br></pre></td><td><pre><span><span>{</span></span><br><span> <span>"log"</span><span>:</span> <span>{</span></span><br><span> <span>"disabled"</span><span>:</span> <span><span>false</span></span><span>,</span></span><br><span> <span>"level"</span><span>:</span> <span>"panic"</span><span>,</span></span><br><span> <span>"timestamp"</span><span>:</span> <span><span>true</span></span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>"dns"</span><span>:</span> <span>{</span></span><br><span> <span>"servers"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"tag"</span><span>:</span> <span>"cloudflare"</span><span>,</span></span><br><span> <span>"address"</span><span>:</span> <span>"tls://1.1.1.1"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"tag"</span><span>:</span> <span>"local"</span><span>,</span></span><br><span> <span>"address"</span><span>:</span> <span>"https://223.5.5.5/dns-query"</span><span>,</span></span><br><span> <span>"detour"</span><span>:</span> <span>"direct-out"</span></span><br><span> <span>}</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"rules"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"domain_suffix"</span><span>:</span> <span>[</span></span><br><span> <span>"qiangdong.xyz"</span><span>,</span></span><br><span> <span>"cookies97.com"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"domain_keyword"</span><span>:</span> <span>[</span></span><br><span> <span>"plusls"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"geosite"</span><span>:</span> <span>"cn"</span><span>,</span></span><br><span> <span>"server"</span><span>:</span> <span>"local"</span></span><br><span> <span>}</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"strategy"</span><span>:</span> <span>"ipv4_only"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>"inbounds"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"tun"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"proxy-auto-in"</span><span>,</span></span><br><span> <span>"inet4_address"</span><span>:</span> <span>"172.114.0.1/31"</span><span>,</span></span><br><span> <span>"auto_route"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"sniff"</span><span>:</span> <span><span>true</span></span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"socks"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"direct-in"</span><span>,</span></span><br><span> <span>"listen"</span><span>:</span> <span>"::"</span><span>,</span></span><br><span> <span>"listen_port"</span><span>:</span> <span>1088</span><span>,</span></span><br><span> <span>"tcp_fast_open"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"sniff"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"users"</span><span>:</span> <span>[</span><span>]</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"socks"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"proxy-in"</span><span>,</span></span><br><span> <span>"listen"</span><span>:</span> <span>"::"</span><span>,</span></span><br><span> <span>"listen_port"</span><span>:</span> <span>1089</span><span>,</span></span><br><span> <span>"tcp_fast_open"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"sniff"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"users"</span><span>:</span> <span>[</span><span>]</span></span><br><span> <span>}</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"outbounds"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"trojan"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"jp-out"</span><span>,</span></span><br><span> <span>"server"</span><span>:</span> <span>"server_name"</span><span>,</span></span><br><span> <span>"server_port"</span><span>:</span> <span>443</span><span>,</span></span><br><span> <span>"password"</span><span>:</span> <span>"plusls"</span><span>,</span></span><br><span> <span>"network"</span><span>:</span> <span>"tcp"</span><span>,</span></span><br><span> <span>"tls"</span><span>:</span> <span>{</span></span><br><span> <span>"enabled"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"server_name"</span><span>:</span> <span>"server_name"</span><span>,</span></span><br><span> <span>"utls"</span><span>:</span> <span>{</span></span><br><span> <span>"enabled"</span><span>:</span> <span><span>false</span></span><span>,</span></span><br><span> <span>"fingerprint"</span><span>:</span> <span>"chrome"</span></span><br><span> <span>}</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>"transport"</span><span>:</span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"ws"</span><span>,</span></span><br><span> <span>"path"</span><span>:</span> <span>"/your-path-name"</span></span><br><span> <span>}</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"trojan"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"us-out"</span><span>,</span></span><br><span> <span>"server"</span><span>:</span> <span>"server_name"</span><span>,</span></span><br><span> <span>"server_port"</span><span>:</span> <span>443</span><span>,</span></span><br><span> <span>"password"</span><span>:</span> <span>"plusls"</span><span>,</span></span><br><span> <span>"network"</span><span>:</span> <span>"tcp"</span><span>,</span></span><br><span> <span>"tls"</span><span>:</span> <span>{</span></span><br><span> <span>"enabled"</span><span>:</span> <span><span>true</span></span><span>,</span></span><br><span> <span>"server_name"</span><span>:</span> <span>"server_name"</span><span>,</span></span><br><span> <span>"utls"</span><span>:</span> <span>{</span></span><br><span> <span>"enabled"</span><span>:</span> <span><span>false</span></span><span>,</span></span><br><span> <span>"fingerprint"</span><span>:</span> <span>"chrome"</span></span><br><span> <span>}</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>"transport"</span><span>:</span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"ws"</span><span>,</span></span><br><span> <span>"path"</span><span>:</span> <span>"/your-path-name"</span></span><br><span> <span>}</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"shadowsocks"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"hgc-out"</span><span>,</span></span><br><span> <span>"server"</span><span>:</span> <span>"server_name"</span><span>,</span></span><br><span> <span>"server_port"</span><span>:</span> <span>46887</span><span>,</span></span><br><span> <span>"method"</span><span>:</span> <span>"chacha20-ietf-poly1305"</span><span>,</span></span><br><span> <span>"password"</span><span>:</span> <span>"password"</span><span>,</span></span><br><span> <span>"plugin"</span><span>:</span> <span>"obfs-local"</span><span>,</span></span><br><span> <span>"plugin_opts"</span><span>:</span> <span>"obfs=tls;obfs-host=833c936905.microsoft.com"</span><span>,</span></span><br><span> <span>"tcp_fast_open"</span><span>:</span> <span><span>true</span></span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"direct"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"direct-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"block"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"block-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"type"</span><span>:</span> <span>"dns"</span><span>,</span></span><br><span> <span>"tag"</span><span>:</span> <span>"dns-out"</span></span><br><span> <span>}</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"route"</span><span>:</span> <span>{</span></span><br><span> <span>"rules"</span><span>:</span> <span>[</span></span><br><span> <span>{</span></span><br><span> <span>"protocol"</span><span>:</span> <span>"dns"</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"dns-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"geosite"</span><span>:</span> <span>"category-ads-all"</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"block-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"inbound"</span><span>:</span> <span>[</span></span><br><span> <span>"proxy-in"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"jp-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"inbound"</span><span>:</span> <span>[</span></span><br><span> <span>"direct-in"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"direct-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"geosite"</span><span>:</span> <span>"cn"</span><span>,</span></span><br><span> <span>"geoip"</span><span>:</span> <span>[</span></span><br><span> <span>"cn"</span><span>,</span></span><br><span> <span>"private"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"direct-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"domain_suffix"</span><span>:</span> <span>[</span></span><br><span> <span>"qiangdong.xyz"</span><span>,</span></span><br><span> <span>"cookies97.com"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"domain_keyword"</span><span>:</span> <span>[</span></span><br><span> <span>"plusls"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"direct-out"</span></span><br><span> <span>}</span><span>,</span></span><br><span> <span>{</span></span><br><span> <span>"inbound"</span><span>:</span> <span>[</span></span><br><span> <span>"proxy-auto-in"</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"outbound"</span><span>:</span> <span>"jp-out"</span></span><br><span> <span>}</span></span><br><span> <span>]</span><span>,</span></span><br><span> <span>"auto_detect_interface"</span><span>:</span> <span><span>true</span></span></span><br><span> <span>}</span></span><br><span><span>}</span></span><br></pre></td></tr></tbody></table> 其中 dns rule 中的关键字 plusls 和两个域名是为了过滤出代理的域名,让其直接走直连的 dns,从而避免产生查询回环,1088 和 1089 两个 socks 代理则对应了 **强制直连** 和 **强制代理**,运行 sing-box 后其会自动创建 tun 设备并设置 ip 和路由,十分方便。 为了方便其自启动,可以添加 `/etc/init.d/sing-box` 作为服务: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br><span>4</span><br><span>5</span><br><span>6</span><br><span>7</span><br><span>8</span><br><span>9</span><br><span>10</span><br><span>11</span><br><span>12</span><br><span>13</span><br><span>14</span><br><span>15</span><br><span>16</span><br><span>17</span><br><span>18</span><br><span>19</span><br></pre></td><td><pre><span><span>#!/bin/sh /etc/rc.common</span></span><br><span></span><br><span>USE_PROCD=1</span><br><span>START=95</span><br><span>STOP=15</span><br><span></span><br><span>CONFIG_PATH=<span>"/root/sing-box/sing-box.json"</span></span><br><span>SING_BOX_PATH=<span>"/root/sing-box/sing-box"</span></span><br><span>WORKING_PATH=<span>"/root/sing-box"</span></span><br><span></span><br><span><span><span>start_service</span></span>() {</span><br><span> procd_open_instance</span><br><span> procd_set_param <span>command</span> sh -c <span>"<span>$SING_BOX_PATH</span> run -c <span>$CONFIG_PATH</span> -D <span>$WORKING_PATH</span>"</span> </span><br><span> procd_set_param file <span>$CONFIG_PATH</span> <span># when file change, auto run /etc/init.d/your_service reload</span></span><br><span> procd_set_param stdout 1 <span># forward stdout to logd</span></span><br><span> procd_set_param stderr 1 <span># same for stderr</span></span><br><span> procd_set_param pidfile /var/run/sing-box.pid</span><br><span> procd_close_instance</span><br><span>}</span><br></pre></td></tr></tbody></table> 随后为其设置可执行权限以及开机自启动: <table><tbody><tr><td><pre><span>1</span><br><span>2</span><br><span>3</span><br></pre></td><td><pre><span><span>chmod</span> +x /etc/init.d/sing-box</span><br><span>service sing-box <span>enable</span></span><br><span>service sing-box restart</span><br></pre></td></tr></tbody></table> 我很可爱,请给我钱  支付宝 - **本文作者:** plusls - **本文链接:** [https://blog.plusls.com/2022/10/play-with-hp-t430/](https://blog.plusls.com/2022/10/play-with-hp-t430/ "折腾 HP T430 Thin Client") - **版权声明:** 本博客所有文章除特别声明外,均采用 [BY-NC-SA](https://creativecommons.org/licenses/by-nc-sa/4.0/) 许可协议。转载请注明出处! 欢迎关注我的其它发布渠道 [RSS](https://blog.plusls.com/atom.xml) [\# openwrt](https://blog.plusls.com/tags/openwrt/) [\# proxy](https://blog.plusls.com/tags/proxy/) [\# pve](https://blog.plusls.com/tags/pve/) [\# linux](https://blog.plusls.com/tags/linux/) [\# t430](https://blog.plusls.com/tags/t430/) [\# sing-box](https://blog.plusls.com/tags/sing-box/) [Linux Kernel 调试环境配置](https://blog.plusls.com/2020/10/linux-kernel-debug/ "Linux Kernel 调试环境配置")
bigood
2024年3月9日 15:16
转发文档
收藏文档
上一篇
下一篇
手机扫码
复制链接
手机扫一扫转发分享
复制链接
Markdown文件
分享
链接
类型
密码
更新密码