How to Use an IP Blocked By GFW as a Proxy Service

server

#!/bin/bash

DOMAIN="example.com"
USER="username"
PASS="password"
PORT=443

BIND_IP=0.0.0.0
CERT_DIR=/etc/letsencrypt
CERT=${CERT_DIR}/live/${DOMAIN}/fullchain.pem
KEY=${CERT_DIR}/live/${DOMAIN}/privkey.pem
docker run -d --name gost \
    -v ${CERT_DIR}:${CERT_DIR}:ro \
    --restart=always \
    --net=host ginuerzh/gost \
    -L "mwss://${USER}:${PASS}@${BIND_IP}:${PORT}?cert=${CERT}&key=${KEY}&probe_resist=code:404&knock=www.google.com"
    # -L "http2://${USER}:${PASS}@${BIND_IP}:${PORT}?cert=${CERT}&key=${KEY}&probe_resist=code:404&knock=www.google.com"

cloudflare

client

gost -L ss://aes-256-gcm:12345678@:1080 -F 'mwss://username:password@example.com:443'

HTTPS ports supported by Cloudflare

443
2053
2083
2087
2096
8443

reference

https://github.com/haoel/haoel.github.io
https://developers.cloudflare.com/fundamentals/get-started/reference/network-ports/

server

cloudflare

client

HTTPS ports supported by Cloudflare

reference

Comments: