Home Explore Help
Sign In
irwanmohi
/
test
Watch 1
Star 0
Fork 1
Files Issues 0 Pull Requests 0 Wiki
Tree: e4f7a8ca15
Branches Tags
test
/
webserver.sh

webserver.sh 2.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 
  1. #!\bin\bash
    2. 

  2. 

  3. echo -n "Nama Domain : "
    4. 

  4. read domain
    5. 

  5. 

  6. echo -n "Alamat Email : "
    7. 

  7. read email
    8. 

  8. 

  9. echo -n "V2Ray Port : "
    10. 

  10. read port
    11. 

  11. 

  12. # use the new config
    13. 

  13. read -r -d '' conf <<"EOT"
    14. 

  14. server {
    15. 

  15.         listen 85;
    16. 

  16.         listen [::]:85;
    17. 

  17. 

  18.         # SSL configuration
    19. 

  19.         #
    20. 

  20.         listen 80 ssl default_server;
    21. 

  21.         listen [::]:80 ssl default_server;
    22. 

  22.         ssl on;
    23. 

  23.         ssl_certificate /etc/letsencrypt/live/v_domain/fullchain.pem;
    24. 

  24.         ssl_certificate_key /etc/letsencrypt/live/v_domain/privkey.pem;
    25. 

  25.         ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    26. 

  26.         ssl_ciphers HIGH:!aNULL:!MD5;
    27. 

  27. 

  28.         #
    29. 

  29.         # Note: You should disable gzip for SSL traffic.
    30. 

  30.         # See: https://bugs.debian.org/773332
    31. 

  31.         #
    32. 

  32.         # Read up on ssl_ciphers to ensure a secure configuration.
    33. 

  33.         # See: https://bugs.debian.org/765782
    34. 

  34.         #
    35. 

  35.         # Self signed certs generated by the ssl-cert package
    36. 

  36.         # Don't use them in a production server!
    37. 

  37.         #
    38. 

  38.         # include snippets/snakeoil.conf;
    39. 

  39. 

  40.         root /var/www/html;
    41. 

  41. 

  42.         # Add index.php to the list if you are using PHP
    43. 

  43.         index index.html index.htm index.nginx-debian.html;
    44. 

  44. 

  45.         server_name v_domain;
    46. 

  46. 

  47.         location / {
    48. 

  48.                 # First attempt to serve request as file, then
    49. 

  49.                 # as directory, then fall back to displaying a 404.
    50. 

  50.                 try_files $uri $uri/ =404;
    51. 

  51.         }
    52. 

  52. 

  53.         location /ray { # Consistent with the path of V2Ray configuration
    54. 

  54.             if ($http_upgrade != "websocket") { # Return 404 error when WebSocket upgrading negotiate failed
    55. 

  55.                 return 404;
    56. 

  56.             }
    57. 

  57.             proxy_redirect off;
    58. 

  58.             proxy_pass http://127.0.0.1:v_port; # Assume WebSocket is listening at localhost on port of 10000
    59. 

  59.             proxy_http_version 1.1;
    60. 

  60.             proxy_set_header Upgrade $http_upgrade;
    61. 

  61.             proxy_set_header Connection "upgrade";
    62. 

  62.             proxy_set_header Host $host;
    63. 

  63.             # Show real IP in v2ray access.log
    64. 

  64.             proxy_set_header X-Real-IP $remote_addr;
    65. 

  65.             proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    66. 

  66.         }
    67. 

  67. }
    68. 

  68. EOT
    69. 

  69. 

  70. # installing
    71. 

  71. apt install software-properties-common -y
    72. 

  72. apt install certbot -y
    73. 

  73. 

  74. # creating SSL Certificates
    75. 

  75. certbot certonly --standalone --preferred-challenges http --agree-tos --email $email -d $domain --agree-tos
    76. 

  76. certbot renew --force-renewal
    77. 

  77. apt install nginx -y
    78. 

  78. 

  79. # update config
    80. 

  80. cd /etc/nginx/sites-available
    81. 

  81. mv default ~/default-nginx.conf
    82. 

  82. echo "$conf" > default
    83. 

  83. 

  84. sed -i "s/v_domain/$domain/g" default
    85. 

  85. sed -i "s/v_port/$port/g" default
    86. 

  86. 

  87. systemctl restart nginx
    88.