Merge pull request #29 from trojanpanel/dev_v1.2

Dev v1.2

README.md

@@ -1,6 +1,6 @@
 # Trojan Panel
 
-支持多用户多协议的可视化管理面板
+支持Xray/Trojan-Go/Hysteria的多用户Web管理面板
 
 # System Requirements
 
@@ -22,11 +22,7 @@ source <(curl -L https://github.com/trojanpanel/install-script/raw/main/install_
 
 # Features
 
-1. 3分钟傻瓜式一键安装所有服务，占内存小
-2. 自动申请/续签证书
-3. 功能强大的多用户可视化管理面板，支持用户管理、节点管理、邮件管理、黑名单管理、自定义伪装网站、系统看板等
-4. 节点类型支持多协议，例如: trojan-go、hysteria
-5. 支持数据库版节点集群和单机版节点
+[使用教程](https://trojanpanel.github.io/tutorial/using-tutorials.html)
 
 # Documentation
 
@@ -43,8 +39,9 @@ source <(curl -L https://github.com/trojanpanel/install-script/raw/main/install_
 
 # Thanks
 
-- [trojan-gfw](https://github.com/trojan-gfw/trojan)
+- [trojan](https://github.com/trojan-gfw/trojan)
 - [trojan-go](https://github.com/p4gefau1t/trojan-go)
+- [Xray-core](https://github.com/XTLS/Xray-core)
 - [hysteria](https://github.com/HyNetwork/hysteria)
 
 ## Stargazers over time

install_script_standalone.sh

@@ -0,0 +1,943 @@
+#!/usr/bin/env bash
+PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:~/bin
+export PATH
+
+# System Required: CentOS 7+/Ubuntu 18+/Debian 10+
+# Version: v1.0.0
+# Description: One click Install Trojan Panel standalone server
+# Author: jonssonyan <https://jonssonyan.com>
+# Github: https://github.com/trojanpanel/install-script
+
+init_var() {
+  ECHO_TYPE="echo -e"
+
+  package_manager=""
+  release=""
+  get_arch=""
+  can_google=0
+
+  # Docker
+  DOCKER_MIRROR='"https://registry.docker-cn.com","https://hub-mirror.c.163.com","https://docker.mirrors.ustc.edu.cn"'
+
+  # 项目目录
+  TP_DATA="/tpdata/"
+
+  STATIC_HTML="https://github.com/trojanpanel/install-script/releases/download/v1.0.0/html.tar.gz"
+
+  # Caddy
+  CADDY_DATA="/tpdata/caddy/"
+  CADDY_Caddyfile="/tpdata/caddy/Caddyfile"
+  CADDY_SRV="/tpdata/caddy/srv/"
+  CADDY_ACME="/tpdata/caddy/acme/"
+  DOMAIN_FILE="/tpdata/caddy/domain.lock"
+  domain=""
+  caddy_remote_port=8863
+  your_email="[email protected]"
+  crt_path=""
+  key_path=""
+  ssl_option=1
+
+  # trojanGFW
+  TROJANGFW_DATA="/tpdata/trojanGFW/"
+  TROJANGFW_STANDALONE_CONFIG="/tpdata/trojanGFW/standalone_config.json"
+  trojanGFW_port=443
+  # trojanGO
+  TROJANGO_DATA="/tpdata/trojanGO/"
+  TROJANGO_STANDALONE_CONFIG="/tpdata/trojanGO/standalone_config.json"
+  trojanGO_port=443
+  trojanGO_websocket_enable=false
+  trojanGO_websocket_path="trojan-panel-websocket-path"
+  trojanGO_shadowsocks_enable=false
+  trojanGO_shadowsocks_method="AES-128-GCM"
+  trojanGO_shadowsocks_password=""
+  trojanGO_mux_enable=true
+  # trojan
+  trojan_pas=""
+  remote_addr="127.0.0.1"
+
+  # hysteria
+  HYSTERIA_DATA="/tpdata/hysteria/"
+  HYSTERIA_STANDALONE_CONFIG="/tpdata/hysteria/standalone_config.json"
+  hysteria_port=443
+  hysteria_password=""
+  hysteria_protocol="udp"
+  hysteria_up_mbps=100
+  hysteria_down_mbps=100
+}
+
+echo_content() {
+  case $1 in
+  "red")
+    ${ECHO_TYPE} "\033[31m$2\033[0m"
+    ;;
+  "green")
+    ${ECHO_TYPE} "\033[32m$2\033[0m"
+    ;;
+  "yellow")
+    ${ECHO_TYPE} "\033[33m$2\033[0m"
+    ;;
+  "blue")
+    ${ECHO_TYPE} "\033[34m$2\033[0m"
+    ;;
+  "purple")
+    ${ECHO_TYPE} "\033[35m$2\033[0m"
+    ;;
+  "skyBlue")
+    ${ECHO_TYPE} "\033[36m$2\033[0m"
+    ;;
+  "white")
+    ${ECHO_TYPE} "\033[37m$2\033[0m"
+    ;;
+  esac
+}
+
+mkdir_tools() {
+  # 项目目录
+  mkdir -p ${TP_DATA}
+
+  # Caddy
+  mkdir -p ${CADDY_DATA}
+  touch ${CADDY_Caddyfile}
+  mkdir -p ${CADDY_SRV}
+  mkdir -p ${CADDY_ACME}
+
+  # trojanGFW
+  mkdir -p ${TROJANGFW_DATA}
+  touch ${TROJANGFW_STANDALONE_CONFIG}
+
+  # trojanGO
+  mkdir -p ${TROJANGO_DATA}
+  touch ${TROJANGO_STANDALONE_CONFIG}
+
+  # hysteria
+  mkdir -p ${HYSTERIA_DATA}
+  touch ${HYSTERIA_STANDALONE_CONFIG}
+}
+
+can_connect() {
+  ping -c2 -i0.3 -W1 "$1" &>/dev/null
+  if [[ "$?" == "0" ]]; then
+    return 0
+  else
+    return 1
+  fi
+}
+
+check_sys() {
+  if [[ $(command -v yum) ]]; then
+    package_manager='yum'
+  elif [[ $(command -v dnf) ]]; then
+    package_manager='dnf'
+  elif [[ $(command -v apt) ]]; then
+    package_manager='apt'
+  elif [[ $(command -v apt-get) ]]; then
+    package_manager='apt-get'
+  fi
+
+  if [[ -z "${package_manager}" ]]; then
+    echo_content red "暂不支持该系统"
+    exit 0
+  fi
+
+  if [[ -n $(find /etc -name "redhat-release") ]] || grep </proc/version -q -i "centos"; then
+    release="centos"
+  elif grep </etc/issue -q -i "debian" && [[ -f "/etc/issue" ]] || grep </etc/issue -q -i "debian" && [[ -f "/proc/version" ]]; then
+    release="debian"
+  elif grep </etc/issue -q -i "ubuntu" && [[ -f "/etc/issue" ]] || grep </etc/issue -q -i "ubuntu" && [[ -f "/proc/version" ]]; then
+    release="ubuntu"
+  fi
+
+  if [[ -z "${release}" ]]; then
+    echo_content red "仅支持CentOS 7+/Ubuntu 18+/Debian 10+系统"
+    exit 0
+  fi
+
+  if [[ $(arch) =~ ("x86_64"|"amd64"|"arm64"|"aarch64"|"arm"|"s390x") ]]; then
+    get_arch=$(arch)
+  fi
+
+  if [[ -z "${get_arch}" ]]; then
+    echo_content red "仅支持amd64/arm64/arm/s390x处理器架构"
+    exit 0
+  fi
+}
+
+depend_install() {
+  if [[ "${package_manager}" != 'yum' && "${package_manager}" != 'dnf' ]]; then
+    ${package_manager} update -y
+  fi
+  ${package_manager} install -y \
+    curl \
+    wget \
+    tar \
+    lsof \
+    systemd
+}
+
+# 安装BBRPlus 仅支持CentOS系统
+install_bbr_plus() {
+  kernel_version="4.14.129-bbrplus"
+  if [[ ! -f /etc/redhat-release ]]; then
+    echo_content yellow "仅支持CentOS系统"
+    exit 0
+  fi
+
+  if [[ "$(uname -r)" == "${kernel_version}" ]]; then
+    echo_content yellow "内核已经安装，无需重复执行"
+    exit 0
+  fi
+
+  # 卸载原加速
+  echo_content green "卸载加速..."
+  sed -i '/net.core.default_qdisc/d' /etc/sysctl.conf
+  sed -i '/net.ipv4.tcp_congestion_control/d' /etc/sysctl.conf
+  if [[ -e /appex/bin/serverSpeeder.sh ]]; then
+    wget --no-check-certificate -O appex.sh https://raw.githubusercontent.com/0oVicero0/serverSpeeder_Install/master/appex.sh && chmod +x appex.sh && bash appex.sh uninstall
+    rm -f appex.sh
+  fi
+  echo_content green "下载内核..."
+  wget https://github.com/cx9208/bbrplus/raw/master/centos7/x86_64/kernel-${kernel_version}.rpm
+  echo_content green "安装内核..."
+  yum install -y kernel-${kernel_version}.rpm
+
+  # 检查内核是否安装成功
+  list="$(awk -F\' '$1=="menuentry " {print i++ " : " $2}' /etc/grub2.cfg)"
+  target="CentOS Linux (${kernel_version})"
+  result=$(echo "${list}" | grep "${target}")
+  if [[ -z "${result}" ]]; then
+    echo_content red "内核安装失败"
+    exit 1
+  fi
+
+  echo_content green "切换内核..."
+  grub2-set-default "CentOS Linux (${kernel_version}) 7 (Core)"
+  echo_content green "启用模块..."
+  echo "net.core.default_qdisc=fq" >>/etc/sysctl.conf
+  echo "net.ipv4.tcp_congestion_control=bbrplus" >>/etc/sysctl.conf
+  rm -f kernel-${kernel_version}.rpm
+
+  read -r -p "BBRPlusPlus安装完成，现在重启 ? [Y/n] :" yn
+  [[ -z "${yn}" ]] && yn="y"
+  if [[ $yn == [Yy] ]]; then
+    echo_content green "重启中..."
+    reboot
+  fi
+}
+
+# 安装Docker
+install_docker() {
+  if [[ ! $(docker -v 2>/dev/null) ]]; then
+    echo_content green "---> 安装Docker"
+
+    # 关闭防火墙
+    if [[ "$(firewall-cmd --state 2>/dev/null)" == "running" ]]; then
+      systemctl stop firewalld.service && systemctl disable firewalld.service
+    fi
+
+    # 时区
+    timedatectl set-timezone Asia/Shanghai
+
+    can_connect www.google.com
+    [[ "$?" == "0" ]] && can_google=1
+
+    if [[ ${can_google} == 0 ]]; then
+      sh <(curl -sL https://get.docker.com) --mirror Aliyun
+      # 设置Docker国内源
+      mkdir -p /etc/docker &&
+        cat >/etc/docker/daemon.json <<EOF
+{
+  "registry-mirrors":[${DOCKER_MIRROR}],
+  "log-driver":"json-file",
+  "log-opts":{
+      "max-size":"50m",
+      "max-file":"3"
+  }
+}
+EOF
+    else
+      sh <(curl -sL https://get.docker.com)
+    fi
+
+    systemctl enable docker &&
+      systemctl restart docker
+
+    if [[ $(docker -v 2>/dev/null) ]]; then
+      echo_content skyBlue "---> Docker安装完成"
+    else
+      echo_content red "---> Docker安装失败"
+      exit 0
+    fi
+  else
+    echo_content skyBlue "---> 你已经安装了Docker"
+  fi
+}
+
+# 安装Caddy TLS
+install_caddy_tls() {
+  if [[ -z $(docker ps -a -q -f "name=^trojan-panel-caddy$") ]]; then
+    echo_content green "---> 安装Caddy TLS"
+
+    wget --no-check-certificate -O ${CADDY_DATA}html.tar.gz ${STATIC_HTML} &&
+      tar -zxvf ${CADDY_DATA}html.tar.gz -C ${CADDY_SRV}
+
+    read -r -p "请输入Caddy的转发端口(用于申请证书,默认:8863): " caddy_remote_port
+    [[ -z "${caddy_remote_port}" ]] && caddy_remote_port=8863
+
+    while read -r -p "请输入你的域名(必填): " domain; do
+      if [[ -z "${domain}" ]]; then
+        echo_content red "域名不能为空"
+      else
+        break
+      fi
+    done
+
+    mkdir "${CADDY_ACME}${domain}"
+
+    while read -r -p "请选择设置证书的方式?(1/自动申请和续签证书 2/手动设置证书路径 默认:1/自动申请和续签证书): " ssl_option; do
+      if [[ -z ${ssl_option} || ${ssl_option} == 1 ]]; then
+
+        echo_content yellow "正在检测域名,请稍后..."
+        ping_ip=$(ping "${domain}" -s1 -c1 | grep "ttl=" | head -n1 | cut -d"(" -f2 | cut -d")" -f1)
+        curl_ip=$(curl ifconfig.me)
+        if [[ "${ping_ip}" != "${curl_ip}" ]]; then
+          echo_content yellow "你的域名没有解析到本机IP,请稍后再试"
+          echo_content red "---> Caddy安装失败"
+          exit 0
+        fi
+
+        read -r -p "请输入你的邮箱(用于申请证书,默认:[email protected]): " your_email
+        [[ -z "${your_email}" ]] && your_email="[email protected]"
+
+        cat >${CADDY_Caddyfile} <<EOF
+http://${domain}:80 {
+    redir https://${domain}:${caddy_remote_port}{url}
+}
+https://${domain}:${caddy_remote_port} {
+    gzip
+    tls ${your_email}
+    root ${CADDY_SRV}
+}
+EOF
+        break
+      else
+        if [[ ${ssl_option} != 2 ]]; then
+          echo_content red "不可以输入除1和2之外的其他字符"
+        else
+
+          while read -r -p "请输入证书的.crt文件路径(必填): " crt_path; do
+            if [[ -z "${crt_path}" ]]; then
+              echo_content red "路径不能为空"
+            else
+              if [[ ! -f "${crt_path}" ]]; then
+                echo_content red "证书的.crt文件路径不存在"
+              else
+                cp "${crt_path}" "${CADDY_ACME}${domain}/${domain}.crt"
+                break
+              fi
+            fi
+          done
+
+          while read -r -p "请输入证书的.key文件路径(必填): " key_path; do
+            if [[ -z "${key_path}" ]]; then
+              echo_content red "路径不能为空"
+            else
+              if [[ ! -f "${key_path}" ]]; then
+                echo_content red "证书的.key文件路径不存在"
+              else
+                cp "${key_path}" "${CADDY_ACME}${domain}/${domain}.key"
+                break
+              fi
+            fi
+          done
+
+          cat >${CADDY_Caddyfile} <<EOF
+http://${domain}:80 {
+    redir https://${domain}:${caddy_remote_port}{url}
+}
+https://${domain}:${caddy_remote_port} {
+    gzip
+    tls /root/.caddy/acme/acme-v02.api.letsencrypt.org/sites/${domain}/${domain}.crt /root/.caddy/acme/acme-v02.api.letsencrypt.org/sites/${domain}/${domain}.key
+    root ${CADDY_SRV}
+}
+EOF
+          break
+        fi
+      fi
+    done
+
+    if [[ -n $(lsof -i:80,443 -t) ]]; then
+      kill -9 "$(lsof -i:80,443 -t)"
+    fi
+
+    docker pull teddysun/caddy:1.0.5 &&
+      docker run -d --name trojan-panel-caddy --restart always \
+        --network=host \
+        -v ${CADDY_Caddyfile}:"/etc/caddy/Caddyfile" \
+        -v ${CADDY_ACME}:"/root/.caddy/acme/acme-v02.api.letsencrypt.org/sites/" \
+        -v ${CADDY_SRV}:${CADDY_SRV} \
+        teddysun/caddy:1.0.5
+
+    if [[ -n $(docker ps -q -f "name=^trojan-panel-caddy$" -f "status=running") ]]; then
+      cat >${DOMAIN_FILE} <<EOF
+${domain}
+EOF
+      echo_content skyBlue "---> Caddy安装完成"
+    else
+      echo_content red "---> Caddy安装失败或运行异常,请尝试修复或卸载重装"
+      exit 0
+    fi
+  else
+    domain=$(cat "${DOMAIN_FILE}")
+    echo_content skyBlue "---> 你已经安装了Caddy"
+  fi
+}
+
+# 安装TrojanGFW 单机版
+install_trojan_gfw_standalone() {
+  if [[ -z $(docker ps -a -q -f "name=^trojan-panel-trojanGFW-standalone$") ]]; then
+    echo_content green "---> 安装TrojanGFW"
+
+    read -r -p "请输入TrojanGFW的端口(默认:443): " trojanGFW_port
+    [[ -n ${trojanGFW_port} ]] && trojanGFW_port=443
+    while read -r -p "请输入TrojanGFW的密码(必填): " trojan_pas; do
+      if [[ -z "${trojan_pas}" ]]; then
+        echo_content red "密码不能为空"
+      else
+        break
+      fi
+    done
+
+    cat >${TROJANGFW_STANDALONE_CONFIG} <<EOF
+    {
+    "run_type": "server",
+    "local_addr": "0.0.0.0",
+    "local_port": ${trojanGFW_port},
+    "remote_addr": "${remote_addr}",
+    "remote_port": 80,
+    "password": [
+        "${trojan_pas}"
+    ],
+    "log_level": 1,
+    "ssl": {
+        "cert": "${CADDY_ACME}${domain}/${domain}.crt",
+        "key": "${CADDY_ACME}${domain}/${domain}.key",
+        "key_password": "",
+        "cipher": "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384",
+        "cipher_tls13": "TLS_AES_128_GCM_SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_256_GCM_SHA384",
+        "prefer_server_cipher": true,
+        "alpn": [
+            "http/1.1"
+        ],
+        "alpn_port_override": {
+            "h2": 81
+        },
+        "reuse_session": true,
+        "session_ticket": false,
+        "session_timeout": 600,
+        "plain_http_response": "",
+        "curves": "",
+        "dhparam": ""
+    },
+    "tcp": {
+        "prefer_ipv4": false,
+        "no_delay": true,
+        "keep_alive": true,
+        "reuse_port": false,
+        "fast_open": false,
+        "fast_open_qlen": 20
+    },
+    "mysql": {
+        "enabled": false,
+        "server_addr": "127.0.0.1",
+        "server_port": 3306,
+        "database": "",
+        "username": "",
+        "password": "",
+        "key": "",
+        "cert": "",
+        "ca": ""
+    }
+}
+EOF
+
+    docker pull trojangfw/trojan &&
+      docker run -d --name trojan-panel-trojanGFW-standalone --restart always \
+        --network=host \
+        -v ${TROJANGFW_STANDALONE_CONFIG}:"/config/config.json" \
+        -v ${CADDY_ACME}:${CADDY_ACME} \
+        trojangfw/trojan
+
+    if [[ -n $(docker ps -q -f "name=^trojan-panel-trojanGFW-standalone$" -f "status=running") ]]; then
+      echo_content skyBlue "---> TrojanGFW 单机版 安装完成"
+      echo_content red "\n=============================================================="
+      echo_content skyBlue "TrojanGFW+Caddy+Web+TLS节点 单机版 安装成功"
+      echo_content yellow "域名: ${domain}"
+      echo_content yellow "TrojanGFW的端口: ${trojanGFW_port}"
+      echo_content yellow "TrojanGFW的密码: ${trojan_pas}"
+      echo_content red "\n=============================================================="
+    else
+      echo_content red "---> TrojanGFW 单机版 安装失败或运行异常,请尝试修复或卸载重装"
+      exit 0
+    fi
+  else
+    echo_content skyBlue "---> 你已经安装了TrojanGFW 单机版"
+  fi
+}
+
+# 安装TrojanGO 单机版
+install_trojanGO_standalone() {
+  if [[ -z $(docker ps -a -q -f "name=^trojan-panel-trojanGO-standalone$") ]]; then
+    echo_content green "---> 安装TrojanGO 单机版"
+
+    read -r -p "请输入TrojanGO的端口(默认:443): " trojanGO_port
+    [[ -z "${trojanGO_port}" ]] && trojanGO_port=443
+    while read -r -p "请输入TrojanGO的密码(必填): " trojan_pas; do
+      if [[ -z "${trojan_pas}" ]]; then
+        echo_content red "密码不能为空"
+      else
+        break
+      fi
+    done
+
+    while read -r -p "是否开启多路复用?(false/关闭 true/开启 默认:true/开启): " trojanGO_mux_enable; do
+      if [[ -z "${trojanGO_mux_enable}" || ${trojanGO_mux_enable} == true ]]; then
+        trojanGO_mux_enable=true
+        break
+      else
+        if [[ ${trojanGO_mux_enable} != false ]]; then
+          echo_content red "不可以输入除false和true之外的其他字符"
+        else
+          break
+        fi
+      fi
+    done
+
+    while read -r -p "是否开启Websocket?(false/关闭 true/开启 默认:false/关闭): " trojanGO_websocket_enable; do
+      if [[ -z "${trojanGO_websocket_enable}" || ${trojanGO_websocket_enable} == false ]]; then
+        trojanGO_websocket_enable=false
+        break
+      else
+        if [[ ${trojanGO_websocket_enable} != true ]]; then
+          echo_content red "不可以输入除false和true之外的其他字符"
+        else
+          read -r -p "请输入Websocket路径(默认:trojan-panel-websocket-path): " trojanGO_websocket_path
+          [[ -z "${trojanGO_websocket_path}" ]] && trojanGO_websocket_path="trojan-panel-websocket-path"
+          break
+        fi
+      fi
+    done
+
+    while read -r -p "是否启用Shadowsocks AEAD加密?(false/关闭 true/开启 默认:false/关闭): " trojanGO_shadowsocks_enable; do
+      if [[ -z "${trojanGO_shadowsocks_enable}" || ${trojanGO_shadowsocks_enable} == false ]]; then
+        trojanGO_shadowsocks_enable=false
+        break
+      else
+        if [[ ${trojanGO_shadowsocks_enable} != true ]]; then
+          echo_content yellow "不可以输入除false和true之外的其他字符"
+        else
+          echo_content skyBlue "Shadowsocks AEAD加密方式如下:"
+          echo_content yellow "1. AES-128-GCM(默认)"
+          echo_content yellow "2. CHACHA20-IETF-POLY1305"
+          echo_content yellow "3. AES-256-GCM"
+          read -r -p "请输入Shadowsocks AEAD加密方式(默认:1): " select_method_type
+          [[ -z "${select_method_type}" ]] && select_method_type=1
+          case ${select_method_type} in
+          1)
+            trojanGO_shadowsocks_method="AES-128-GCM"
+            ;;
+          2)
+            trojanGO_shadowsocks_method="CHACHA20-IETF-POLY1305"
+            ;;
+          3)
+            trojanGO_shadowsocks_method="AES-256-GCM"
+            ;;
+          *)
+            trojanGO_shadowsocks_method="AES-128-GCM"
+            ;;
+          esac
+
+          while read -r -p "请输入Shadowsocks AEAD加密密码(必填): " trojanGO_shadowsocks_password; do
+            if [[ -z "${trojanGO_shadowsocks_password}" ]]; then
+              echo_content red "密码不能为空"
+            else
+              break
+            fi
+          done
+          break
+        fi
+      fi
+    done
+
+    cat >${TROJANGO_STANDALONE_CONFIG} <<EOF
+{
+  "run_type": "server",
+  "local_addr": "0.0.0.0",
+  "local_port": ${trojanGO_port},
+  "remote_addr": "${remote_addr}",
+  "remote_port": 80,
+  "log_level": 1,
+  "log_file": "",
+  "password": [
+      "${trojan_pas}"
+  ],
+  "disable_http_check": false,
+  "udp_timeout": 60,
+  "ssl": {
+    "verify": true,
+    "verify_hostname": true,
+    "cert": "${CADDY_ACME}${domain}/${domain}.crt",
+    "key": "${CADDY_ACME}${domain}/${domain}.key",
+    "key_password": "",
+    "cipher": "",
+    "curves": "",
+    "prefer_server_cipher": false,
+    "sni": "",
+    "alpn": [
+      "http/1.1"
+    ],
+    "session_ticket": true,
+    "reuse_session": true,
+    "plain_http_response": "",
+    "fallback_addr": "",
+    "fallback_port": 80,
+    "fingerprint": ""
+  },
+  "tcp": {
+    "no_delay": true,
+    "keep_alive": true,
+    "prefer_ipv4": false
+  },
+    "mux": {
+    "enabled": ${trojanGO_mux_enable},
+    "concurrency": 8,
+    "idle_timeout": 60
+  },
+  "websocket": {
+    "enabled": ${trojanGO_websocket_enable},
+    "path": "/${trojanGO_websocket_path}",
+    "host": "${domain}"
+  },
+  "shadowsocks": {
+    "enabled": ${trojanGO_shadowsocks_enable},
+    "method": "${trojanGO_shadowsocks_method}",
+    "password": "${trojanGO_shadowsocks_password}"
+  },
+  "mysql": {
+    "enabled": false,
+    "server_addr": "localhost",
+    "server_port": 3306,
+    "database": "",
+    "username": "",
+    "password": "",
+    "check_rate": 60
+  }
+}
+EOF
+
+    docker pull p4gefau1t/trojan-go &&
+      docker run -d --name trojan-panel-trojanGO-standalone --restart=always \
+        --network=host \
+        -v ${TROJANGO_STANDALONE_CONFIG}:"/etc/trojan-go/config.json" \
+        -v ${CADDY_ACME}:${CADDY_ACME} \
+        p4gefau1t/trojan-go
+
+    if [[ -n $(docker ps -q -f "name=^trojan-panel-trojanGO-standalone$" -f "status=running") ]]; then
+      echo_content skyBlue "---> TrojanGO 单机版 安装完成"
+      echo_content red "\n=============================================================="
+      echo_content skyBlue "TrojanGO+Caddy+Web+TLS+Websocket节点 单机版 安装成功"
+      echo_content yellow "域名: ${domain}"
+      echo_content yellow "TrojanGO的端口: ${trojanGO_port}"
+      echo_content yellow "TrojanGO的密码: ${trojan_pas}"
+      echo_content yellow "TrojanGO私钥和证书目录: ${CADDY_ACME}${domain}/"
+      if [[ ${trojanGO_websocket_enable} == true ]]; then
+        echo_content yellow "Websocket路径: ${trojanGO_websocket_path}"
+      fi
+      if [[ ${trojanGO_shadowsocks_enable} == true ]]; then
+        echo_content yellow "Shadowsocks AEAD加密方式: ${trojanGO_shadowsocks_method}"
+        echo_content yellow "Shadowsocks AEAD加密密码: ${trojanGO_shadowsocks_password}"
+      fi
+      echo_content red "\n=============================================================="
+    else
+      echo_content red "---> TrojanGO 单机版 安装失败或运行异常,请尝试修复或卸载重装"
+      exit 0
+    fi
+  else
+    echo_content skyBlue "---> 你已经了安装了TrojanGO 单机版"
+  fi
+}
+
+# 安装Hysteria 单机版
+install_hysteria_standalone() {
+  if [[ -z $(docker ps -a -q -f "name=^trojan-panel-hysteria-standalone$") ]]; then
+    echo_content green "---> 安装Hysteria 单机版"
+
+    echo_content skyBlue "Hysteria的模式如下:"
+    echo_content yellow "1. udp(默认)"
+    echo_content yellow "2. faketcp"
+    read -r -p "请输入Hysteria的模式(默认:1): " selectProtocolType
+    [[ -z "${selectProtocolType}" ]] && selectProtocolType=1
+    case ${selectProtocolType} in
+    1)
+      hysteria_protocol="udp"
+      ;;
+    2)
+      hysteria_protocol="faketcp"
+      ;;
+    *)
+      hysteria_protocol="udp"
+      ;;
+    esac
+    read -r -p "请输入Hysteria的端口(默认:443): " hysteria_port
+    [[ -z ${hysteria_port} ]] && hysteria_port=443
+    read -r -p "请输入单客户端最大上传速度/Mbps(默认:100): " hysteria_up_mbps
+    [[ -z "${hysteria_up_mbps}" ]] && hysteria_up_mbps=100
+    read -r -p "请输入单客户端最大下载速度/Mbps(默认:100): " hysteria_down_mbps
+    [[ -z "${hysteria_down_mbps}" ]] && hysteria_down_mbps=100
+    while read -r -p "请输入Hysteria的密码(必填): " hysteria_password; do
+      if [[ -z ${hysteria_password} ]]; then
+        echo_content red "密码不能为空"
+      else
+        break
+      fi
+    done
+
+    cat >${HYSTERIA_STANDALONE_CONFIG} <<EOF
+{
+  "listen": ":${hysteria_port}",
+  "protocol": "${hysteria_protocol}",
+  "cert": "${CADDY_ACME}${domain}/${domain}.crt",
+  "key": "${CADDY_ACME}${domain}/${domain}.key",
+  "up_mbps": ${hysteria_up_mbps},
+  "down_mbps": ${hysteria_down_mbps},
+  "obfs": "${hysteria_password}"
+}
+EOF
+
+    docker pull tobyxdd/hysteria &&
+      docker run -d --name trojan-panel-hysteria-standalone --restart=always \
+        --network=host \
+        -v ${HYSTERIA_STANDALONE_CONFIG}:/etc/hysteria.json \
+        -v ${CADDY_ACME}:${CADDY_ACME} \
+        tobyxdd/hysteria -c /etc/hysteria.json server
+
+    if [[ -n $(docker ps -q -f "name=^trojan-panel-hysteria-standalone$" -f "status=running") ]]; then
+      echo_content skyBlue "---> Hysteria 单机版 安装完成"
+      echo_content red "\n=============================================================="
+      echo_content skyBlue "Hysteria节点 单机版 安装成功"
+      echo_content yellow "域名: ${domain}"
+      echo_content yellow "Hysteria的端口: ${hysteria_port}"
+      echo_content yellow "Hysteria的密码: ${hysteria_password}"
+      echo_content yellow "Hysteria私钥和证书目录: ${CADDY_ACME}${domain}/"
+      echo_content red "\n=============================================================="
+    else
+      echo_content red "---> Hysteria 单机版 安装失败或运行异常,请尝试修复或卸载重装"
+      exit 0
+    fi
+  else
+    echo_content skyBlue "---> 你已经安装了Hysteria 单机版"
+  fi
+}
+
+# 卸载Caddy TLS
+uninstall_caddy_tls() {
+  # 判断Caddy TLS是否安装
+  if [[ -n $(docker ps -a -q -f "name=^trojan-panel-caddy$") ]]; then
+    echo_content green "---> 卸载Caddy TLS"
+
+    docker rm -f trojan-panel-caddy &&
+      rm -rf ${CADDY_DATA}
+
+    echo_content skyBlue "---> Caddy TLS卸载完成"
+  else
+    echo_content red "---> 请先安装Caddy TLS"
+  fi
+}
+
+# 卸载TrojanGFW 单机版
+uninstall_trojan_gfw_standalone() {
+  if [[ -n $(docker ps -a -q -f "name=^trojan-panel-trojanGFW-standalone$") ]]; then
+    echo_content green "---> 卸载TrojanGFW 单机版"
+
+    docker rm -f trojan-panel-trojanGFW-standalone &&
+      docker rmi -f trojangfw/trojan &&
+      rm -f ${TROJANGFW_STANDALONE_CONFIG}
+
+    echo_content skyBlue "---> TrojanGFW 单机版卸载完成"
+  else
+    echo_content red "---> 请先安装TrojanGFW 单机版"
+  fi
+}
+
+# 卸载TrojanGO 单机版
+uninstall_trojanGO_standalone() {
+  if [[ -n $(docker ps -a -q -f "name=^trojan-panel-trojanGO-standalone$") ]]; then
+    echo_content green "---> 卸载TrojanGO 单机版"
+
+    docker rm -f trojan-panel-trojanGO-standalone &&
+      docker rmi -f p4gefau1t/trojan-go &&
+      rm -f ${TROJANGO_STANDALONE_CONFIG}
+
+    echo_content skyBlue "---> TrojanGO 单机版卸载完成"
+  else
+    echo_content red "---> 请先安装TrojanGO 单机版"
+  fi
+}
+
+# 卸载Hysteria节点 单机版
+uninstall_hysteria_standalone() {
+  if [[ -n $(docker ps -a -q -f "name=^trojan-panel-hysteria-standalone$") ]]; then
+    echo_content green "---> 卸载Hysteria节点 单机版"
+
+    docker rm -f trojan-panel-hysteria-standalone &&
+      docker rmi -f tobyxdd/hysteria &&
+      rm -f ${HYSTERIA_STANDALONE_CONFIG}
+
+    echo_content skyBlue "---> Hysteria节点 单机版卸载完成"
+  else
+    echo_content red "---> 请先安装Hysteria节点 单机版"
+  fi
+}
+
+# 卸载全部Trojan Panel相关的容器
+uninstall_all() {
+  echo_content green "---> 卸载全部Trojan Panel相关的容器"
+
+  docker rm -f $(docker ps -a -q -f "name=^trojan-panel") &&
+    docker rmi -f $(docker images | grep "^trojan-panel" | awk '{print $3}') &&
+    rm -rf ${TP_DATA}
+
+  echo_content skyBlue "---> 卸载全部Trojan Panel相关的容器完成"
+}
+
+# 故障检测
+failure_testing() {
+  echo_content green "---> 故障检测开始"
+  if [[ ! $(docker -v 2>/dev/null) ]]; then
+    echo_content red "---> Docker运行异常"
+  else
+    if [[ -n $(docker ps -a -q -f "name=^trojan-panel-caddy$") ]]; then
+      if [[ -z $(docker ps -q -f "name=^trojan-panel-caddy$" -f "status=running") ]]; then
+        echo_content red "---> Caddy TLS运行异常"
+      else
+        domain=$(cat "${DOMAIN_FILE}")
+        if [[ -z $(cat "${DOMAIN_FILE}") || ! -d "${CADDY_ACME}${domain}" || ! -f "${CADDY_ACME}${domain}/${domain}.crt" ]]; then
+          echo_content red "---> 证书申请异常，请尝试重启服务器将重新申请证书或者重新搭建选择自定义证书选项"
+        fi
+      fi
+    fi
+    if [[ -n $(docker ps -a -q -f "name=^trojan-panel-trojanGFW-standalone$") && -z $(docker ps -q -f "name=^trojan-panel-trojanGFW-standalone$" -f "status=running") ]]; then
+      echo_content red "---> TrojanGFW运行异常"
+    fi
+    if [[ -n $(docker ps -a -q -f "name=^trojan-panel-trojanGO-standalone$") && -z $(docker ps -q -f "name=^trojan-panel-trojanGO-standalone$" -f "status=running") ]]; then
+      echo_content red "---> TrojanGO运行异常"
+    fi
+    if [[ -n $(docker ps -a -q -f "name=^trojan-panel-hysteria-standalone$") && -z $(docker ps -q -f "name=^trojan-panel-hysteria-standalone$" -f "status=running") ]]; then
+      echo_content red "---> Hysteria运行异常"
+    fi
+  fi
+  echo_content green "---> 故障检测结束"
+}
+
+# 卸载阿里云内置相关监控
+uninstall_aliyun() {
+  # 卸载云监控(Cloudmonitor) Java 版
+  /usr/local/cloudmonitor/wrapper/bin/cloudmonitor.sh stop &&
+    /usr/local/cloudmonitor/wrapper/bin/cloudmonitor.sh remove &&
+    rm -rf /usr/local/cloudmonitor
+  # 卸载云盾(安骑士)
+  wget --no-check-certificate -O uninstall.sh http://update.aegis.aliyun.com/download/uninstall.sh && chmod +x uninstall.sh && ./uninstall.sh
+  wget --no-check-certificate -O quartz_uninstall.sh http://update.aegis.aliyun.com/download/quartz_uninstall.sh && chmod +x quartz_uninstall.sh && ./quartz_uninstall.sh
+  pkill aliyun-service
+  rm -fr /etc/init.d/agentwatch /usr/sbin/aliyun-service
+  rm -rf /usr/local/aegis*
+  iptables -I INPUT -s 140.205.201.0/28 -j DROP
+  iptables -I INPUT -s 140.205.201.16/29 -j DROP
+  iptables -I INPUT -s 140.205.201.32/28 -j DROP
+  iptables -I INPUT -s 140.205.225.192/29 -j DROP
+  iptables -I INPUT -s 140.205.225.200/30 -j DROP
+  iptables -I INPUT -s 140.205.225.184/29 -j DROP
+  iptables -I INPUT -s 140.205.225.183/32 -j DROP
+  iptables -I INPUT -s 140.205.225.206/32 -j DROP
+  iptables -I INPUT -s 140.205.225.205/32 -j DROP
+  iptables -I INPUT -s 140.205.225.195/32 -j DROP
+  iptables -I INPUT -s 140.205.225.204/32 -j DROP
+}
+
+main() {
+  cd "$HOME" || exit 0
+  init_var
+  mkdir_tools
+  check_sys
+  depend_install
+  clear
+  echo_content red "\n=============================================================="
+  echo_content skyBlue "System Required: CentOS 7+/Ubuntu 18+/Debian 10+"
+  echo_content skyBlue "Version: v1.0.0"
+  echo_content skyBlue "Description: One click Install Trojan Panel standalone server"
+  echo_content skyBlue "Author: jonssonyan <https://jonssonyan.com>"
+  echo_content skyBlue "Github: https://github.com/trojanpanel/install-script"
+  echo_content red "\n=============================================================="
+  echo_content yellow "1. 卸载阿里云盾(仅支持阿里云服务器)"
+  echo_content yellow "2. 安装BBRPlus(仅支持CentOS系统)"
+  echo_content green "\n=============================================================="
+  echo_content yellow "3. 安装TrojanGFW+Caddy+Web+TLS+Websocket节点 单机版"
+  echo_content yellow "4. 卸载TrojanGFW 单机版"
+  echo_content green "\n=============================================================="
+  echo_content yellow "5. 安装TrojanGO+Caddy+Web+TLS+Websocket节点 单机版"
+  echo_content yellow "6. 卸载TrojanGO 单机版"
+  echo_content green "\n=============================================================="
+  echo_content yellow "7. 安装Hysteria节点 单机版"
+  echo_content yellow "8. 卸载Hysteria节点 单机版"
+  echo_content green "\n=============================================================="
+  echo_content yellow "9. 卸载Caddy TLS"
+  echo_content yellow "10. 卸载全部Trojan Panel相关的容器"
+  echo_content green "\n=============================================================="
+  echo_content yellow "11. 故障检测"
+  read -r -p "请选择:" selectInstall_type
+  case ${selectInstall_type} in
+  1)
+    uninstall_aliyun
+    ;;
+  2)
+    install_bbr_plus
+    ;;
+  3)
+    install_docker
+    install_caddy_tls
+    install_trojan_gfw_standalone
+    ;;
+  4)
+    uninstall_trojan_gfw_standalone
+    ;;
+  5)
+    install_docker
+    install_caddy_tls
+    install_trojanGO_standalone
+    ;;
+  6)
+    uninstall_trojanGO_standalone
+    ;;
+  7)
+    install_docker
+    install_caddy_tls
+    install_hysteria_standalone
+    ;;
+  8)
+    uninstall_hysteria_standalone
+    ;;
+  9)
+    uninstall_caddy_tls
+    ;;
+  10)
+    uninstall_all
+    ;;
+  11)
+    failure_testing
+    ;;
+  *)
+    echo_content red "没有这个选项"
+    ;;
+  esac
+}
+
+main