~# dnf copr enable librehat/shadowsocks~# dnf update~# dnf install shadowsocks-libev

{"server":"0.0.0.0","server_port":10718,"local_port":1080,"password":"passwd","timeout":800,"method":"chacha20","fast_open":true,//需要内核3.7+"mode":"tcp_and_udp"}

systemctlenableshadowsocks-libev.service# 开机自启动systemctl start shadowsocks-libev.service# 运行ss-server

# max open filesfs.file-max = 51200# max read buffernet.core.rmem_max = 67108864# max write buffernet.core.wmem_max = 67108864# default read buffernet.core.rmem_default = 65536# default write buffernet.core.wmem_default = 65536# max processor input queuenet.core.netdev_max_backlog = 4096# max backlognet.core.somaxconn = 4096# resist SYN flood attacksnet.ipv4.tcp_syncookies = 1# reuse timewait sockets when safenet.ipv4.tcp_tw_reuse = 1# turn off fast timewait sockets recyclingnet.ipv4.tcp_tw_recycle = 0# short FIN timeoutnet.ipv4.tcp_fin_timeout = 30# short keepalive timenet.ipv4.tcp_keepalive_time = 1200# outbound port rangenet.ipv4.ip_local_port_range = 10000 65000# max SYN backlognet.ipv4.tcp_max_syn_backlog = 4096# max timewait sockets held by system simultaneouslynet.ipv4.tcp_max_tw_buckets = 5000# turn on TCP Fast Open on both client and server sidenet.ipv4.tcp_fastopen = 3# TCP receive buffernet.ipv4.tcp_rmem = 4096 87380 67108864# TCP write buffernet.ipv4.tcp_wmem = 4096 65536 67108864# turn on path MTU discoverynet.ipv4.tcp_mtu_probing = 1# require linux kernel 4.9net.core.default_qdisc=fq# for high-latency networknet.ipv4.tcp_congestion_control =bbr# for strongswan vpnnet.ipv4.ip_forward = 1

sysctl -p