本贴废弃,不保证可用性
食用说明
实测Debian11系统能正常运行,应该也兼容Debian10、Ubuntu22等。
使用教程
首先创建一个 gost_manager.sh 的空白文件,把下方代码本体复制粘贴进去,然后保存一下文件,最后在命令行输入 chmod +x gost_manager.sh && ./gost_manager.sh 就可以运行了
更新日志
V1.1 脚本出生
代码本体
#!/bin/bash
SERVICE_FILE="/etc/systemd/system/gost.service"
GOST_BIN="/usr/local/bin/gost"
SERVICE_USER="gost"
# 创建服务文件
function create_service_file() {
cat > "$SERVICE_FILE" <<EOF
[Unit]
Description=GOST Forwarding Service
After=network-online.target
Wants=network-online.target
[Service]
Type=simple
Restart=always
RestartSec=5s
User=$SERVICE_USER
Group=$SERVICE_USER
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
AmbientCapabilities=CAP_NET_BIND_SERVICE
ExecStart=$GOST_BIN
[Install]
WantedBy=multi-user.target
EOF
}
# 验证端口输入
function input_valid_port() {
while true; do
read -p "$1" port
if [[ $port =~ ^[0-9]+$ ]] && ((port > 0 && port < 65536)); then
echo $port
break
fi
echo "错误:端口号必须为1-65535之间的整数"
done
}
# 显示当前转发规则
function show_forwards() {
echo "当前转发规则:"
if ! grep -qP '(?<=-L=:)\d+' "$SERVICE_FILE"; then
echo "暂无转发规则。"
return
fi
grep -oP '(?<=-L=:)\d+.*?(?=\s+-L|$)' "$SERVICE_FILE" | while read -r rule; do
local_port=$(echo "$rule" | cut -d' ' -f1 | cut -d: -f2)
remote=$(echo "$rule" | grep -oP '(?<=-F=).+')
echo "本地端口: $local_port → 远程地址: $remote"
done
}
# 安装GOST
function install_gost() {
if [[ -f "$GOST_BIN" ]]; then
echo "GOST 已安装,跳过安装步骤。"
return
fi
echo "正在安装 GOST..."
if ! wget -q --show-progress -O gost-linux-amd64-2.11.5.gz https://github.com/ginuerzh/gost/releases/download/v2.11.5/gost-linux-amd64-2.11.5.gz; then
echo "下载失败,请检查网络连接"
exit 1
fi
if ! gunzip gost-linux-amd64-2.11.5.gz; then
echo "解压失败"
exit 1
fi
mv gost-linux-amd64-2.11.5 "$GOST_BIN"
chmod +x "$GOST_BIN"
# 创建专用用户
if ! id "$SERVICE_USER" &>/dev/null; then
useradd -r -s /usr/sbin/nologin "$SERVICE_USER"
fi
echo "GOST 安装完成!"
}
# 添加转发规则
function add_forward() {
local_port=$(input_valid_port "请输入本地监听端口: ")
while true; do
read -p "请输入远程地址(域名): " remote_host
if [[ $remote_host =~ ^[a-zA-Z0-9.-]+$ ]]; then
break
fi
echo "错误:请输入有效的域名"
done
remote_port=$(input_valid_port "请输入远程端口: ")
if [ ! -f "$SERVICE_FILE" ]; then
create_service_file
fi
current_cmd=$(grep 'ExecStart=' "$SERVICE_FILE" | cut -d= -f2-)
new_cmd="${current_cmd} -L=:${local_port} -F=relay+tls://${remote_host}:${remote_port}"
sed -i "s|^ExecStart=.*|ExecStart=$new_cmd|" "$SERVICE_FILE"
systemctl daemon-reload
if ! systemctl restart gost; then
echo "服务启动失败,请检查配置"
journalctl -u gost -n 10 --no-pager
exit 1
fi
echo "GOST 转发添加完成!"
}
# 删除转发规则
function delete_forward() {
del_port=$(input_valid_port "请输入要删除的本地监听端口: ")
if ! sed -i "/-L=:${del_port}/d" "$SERVICE_FILE"; then
echo "删除转发规则失败"
exit 1
fi
if ! grep -q "-L" "$SERVICE_FILE"; then
echo "已无转发规则,正在删除 GOST 服务..."
rm -f "$SERVICE_FILE"
systemctl daemon-reload
fi
systemctl restart gost 2>/dev/null || echo "GOST 服务未运行,无需重启。"
echo "转发规则已删除!"
}
# 卸载GOST
function uninstall_gost() {
echo "正在卸载 GOST..."
systemctl stop gost 2>/dev/null
systemctl disable gost 2>/dev/null
rm -f "$GOST_BIN" "$SERVICE_FILE"
userdel "$SERVICE_USER" 2>/dev/null
systemctl daemon-reload
echo "GOST 已卸载!"
}
# 主菜单
function main_menu() {
echo "绿草地のGOST转发脚本(V1.1)"
echo "请选择操作:"
echo "1) 安装 GOST"
echo "2) 添加转发"
echo "3) 查看当前转发列表"
echo "4) 删除转发"
echo "5) 卸载 GOST"
read -p "请输入选项 (1-5): " option
case "$option" in
1) install_gost ;;
2) add_forward ;;
3) show_forwards ;;
4) delete_forward ;;
5) uninstall_gost ;;
*) echo "无效输入,退出。" && exit 1 ;;
esac
}
# 检查root权限
if [[ $EUID -ne 0 ]]; then
echo "错误:本脚本需要root权限运行"
exit 1
fi
main_menu