Zhen, [2025-07-27 21:19] 参考这篇文章部署了中韩、中美的隧道,https://01.me/2025/03/layer-3-tunnel/
Zhen, [2025-07-27 21:20] 买了北京这边200M带宽的服务器,流量0.8CNY/GB,真是贵。所以个人想自己参考 dler 这种,部署中转隧道梯子,成本真的太高了。
Zhen, [2025-07-27 21:20] 现在这个可以作为一个保底手段,适合带宽/流量要求没那么高,但是对网络质量要求高的场合,例如 Claude Code 这类检测 IP 的服务。
Zhen, [2025-07-27 21:25] 现有的代理方式和隧道的差异文章中也说了,可以访问 https://ipcheck.ing/#/ 查看检测。
e246bda0-4a3b-4106-9c5e-a688efd8bfee
服务器私钥: uMdBLDmw+fOrxF4DpSMRCkHDNrCFo68QdVcA+jfQ0Vg= 服务器公钥: UXYKJ7/90IhqkLgNe5xYUCZNFxfXBQwGQCRRZfHXukM= psk keGCrpIVcJTFMr9+cM+UpSReN1AfOQCb3MkQQV182w4=
客户端私钥: cLoKe9RIIHmBa1Ar5UoKjNoLIsKhPAwJubQjyKqCe0g= 客户端公钥: CHFTyWZ64km28oo9vlGuHJKFoHqk4n6zF7l3rVPEsjg=
KR c4111cf9-1364-4b55-993f-9692771b4899
服务器私钥: aJbbuS+f6JuPpxZt4o4NgqrPpktc6p+FLPMC7S/Nf2A= 服务器公钥: 8b1S0blYVHAGL/qH7OjldPQZBMqyQkWQPXInAfZzKHA= FX9OvCMHVRaJIRIwb+fzryFnqP8IbK9Wo/+vOnBAKNs=
客户端私钥: QJjq0xFbHIYwFrUZtOC3FDAhDuC4IptRzX5DqDE1jGU= 客户端公钥: QstUTazxy9AnuvnXi0n3igQl0bSvIMddYBVJJB2lmCM=
[Interface]
Address = 10.10.30.1/16
ListenPort = 42371
PrivateKey = aJbbuS+f6JuPpxZt4o4NgqrPpktc6p+FLPMC7S/Nf2A=
MTU = 1280
[Peer]
PublicKey = QstUTazxy9AnuvnXi0n3igQl0bSvIMddYBVJJB2lmCM=
PresharedKey = FX9OvCMHVRaJIRIwb+fzryFnqP8IbK9Wo/+vOnBAKNs=
AllowedIPs = 10.10.0.0/24
[Interface]
PrivateKey = QJjq0xFbHIYwFrUZtOC3FDAhDuC4IptRzX5DqDE1jGU=
Address = 10.10.0.1/16
DNS = 8.8.8.8, 8.8.4.4
MTU = 1280
[Peer]
PublicKey = 8b1S0blYVHAGL/qH7OjldPQZBMqyQkWQPXInAfZzKHA=
PresharedKey = FX9OvCMHVRaJIRIwb+fzryFnqP8IbK9Wo/+vOnBAKNs=
AllowedIPs = 0.0.0.0/0, ::/0
Endpoint = sh.wogong.net:42372
PersistentKeepalive = 25
sudo iptables -A FORWARD -i kr -o eth0 -j ACCEPT
sudo iptables -A FORWARD -i eth0 -o kr -m state --state ESTABLISHED,RELATED -j ACCEPT
国内服务器 Xray 配置
{
"log": {
"access": "/var/log/xray/access.log",
"error": "/var/log/xray/error.log",
"loglevel": "debug"
},
"inbounds": [
// --- 原有的美国隧道入口 ---
{
"listen": "0.0.0.0",
"port": 42371, // 美国隧道的端口
"protocol": "dokodemo-door",
"settings": {
"network": "udp",
"address": "127.0.0.1", // 这里可以保持不变
"port": 42371
},
"tag": "wg-us-in" // 给它一个清晰的标签
},
// --- 新增的韩国隧道入口 ---
{
"listen": "0.0.0.0",
"port": 42372, // 韩国隧道的新端口
"protocol": "dokodemo-door",
"settings": {
"network": "udp",
"address": "127.0.0.1",
"port": 42372
},
"tag": "wg-kr-in" // 新的标签
}
],
"outbounds": [
// --- 原有的美国出站配置 ---
{
"tag": "vless-us-out",
"protocol": "vless",
"settings": {
"vnext": [
{
"address": "la.wogong.net",
"port": 10444,
"users": [
{
"id": "e246bda0-4a3b-4106-9c5e-a688efd8bfee",
"encryption": "none"
}
]
}
]
},
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/wss"
}
}
},
// --- 新增的韩国出站配置 ---
{
"tag": "vless-kr-out",
"protocol": "vless",
"settings": {
"vnext": [
{
"address": "kr.wogong.net", // 韩国服务器IP
"port": 10444, // 韩国服务器Xray端口
"users": [
{
"id": "c4111cf9-1364-4b55-993f-9692771b4899", // 韩国服务器UUID
"encryption": "none"
}
]
}
]
},
"streamSettings": {
"network": "ws",
"wsSettings": {
"path": "/wss-kr" // 可以用不同的路径以作区分
}
}
}
],
"routing": {
"strategy": "rules",
"rules": [
{
"type": "field",
"inboundTag": ["wg-us-in"],
"outboundTag": "vless-us-out"
},
{
"type": "field",
"inboundTag": ["wg-kr-in"],
"outboundTag": "vless-kr-out"
}
]
}
}
其他配置文件
#bj-kr
[Interface]
PrivateKey = QJjq0xFbHIYwFrUZtOC3FDAhDuC4IptRzX5DqDE1jGU=
Address = 10.10.0.1/16
DNS = 168.126.63.1
MTU = 1280
[Peer]
PublicKey = 8b1S0blYVHAGL/qH7OjldPQZBMqyQkWQPXInAfZzKHA=
PresharedKey = FX9OvCMHVRaJIRIwb+fzryFnqP8IbK9Wo/+vOnBAKNs=
AllowedIPs = 0.0.0.0/0, ::/0
Endpoint = bj.wogong.net:42372
PersistentKeepalive = 25
#bj-la
[Interface]
PrivateKey = cLoKe9RIIHmBa1Ar5UoKjNoLIsKhPAwJubQjyKqCe0g=
Address = 10.10.0.1/16
DNS = 8.8.8.8
MTU = 1280
[Peer]
PublicKey = UXYKJ7/90IhqkLgNe5xYUCZNFxfXBQwGQCRRZfHXukM=
PresharedKey = keGCrpIVcJTFMr9+cM+UpSReN1AfOQCb3MkQQV182w4=
AllowedIPs = 0.0.0.0/0, ::/0
Endpoint = bj.wogong.net:42371
PersistentKeepalive = 25
隧道示意图 #
graph LR
A(终端用户) --> B{CN中转服务器};
B --> C(KR服务器);
B --> D(US服务器);
C --> E((互联网));
D --> E((互联网));
links #
- https://01.me/2025/03/layer-3-tunnel/ 搭建全程美国 IP、无需手动设置代理的三层隧道