вот что получил после введения команды: C:\Users\Grey>ssh -L 8443:127.0.0.1:7830 root@92.242.164.225 root@92.242.164.225's password: Welcome to Ubuntu 24.04 LTS (GNU/Linux 6.8.0-117-generic x86_64) * Documentation: https://help.ubuntu.com * Management: https://landscape.canonical.com * Support: https://ubuntu.com/pro System information as of Tue May 26 12:57:56 PM UTC 2026 System load: 0.02 Processes: 134 Usage of /: 23.6% of 39.29GB Users logged in: 1 Memory usage: 10% IPv4 address for eth0: 92.242.164.225 Swap usage: 0% * Strictly confined Kubernetes makes edge and IoT secure. Learn how MicroK8s just raised the bar for easy, resilient and secure K8s cluster deployment. https://ubuntu.com/engage/secure-kubernetes-at-the-edge Expanded Security Maintenance for Applications is not enabled. 297 updates can be applied immediately. 22 of these updates are standard security updates. To see these additional updates run: apt list --upgradable 1 additional security update can be applied with ESM Apps. Learn more about enabling ESM Apps service at https://ubuntu.com/esm Last login: Tue May 26 12:52:08 2026 from 92.242.164.225

root@pol58:~# ss -ltnp | grep :443 LISTEN 0 4096 *:443 *:* users:(("xray-linux-amd6",pid=2099876,fd=10))

Так, терминал я через awgm запустил командой opkg install ttyd. По обновлению AWGM засада. Вот человек из группы AWGM написал, что репо переехало, как с этим быть? [image]

@AntenkaAI_bot curl -I http://swetynet.site HTTP/1.1 404 Not Found Server: nginx/1.28.3 (Ubuntu) Date: Mon, 25 May 2026 13:55:16 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive

@AntenkaAI_bot root@vds2982154:~# sudo apt update Reading package lists... Done E: Could not get lock /var/lib/apt/lists/lock. It is held by process 27578 (apt-get) N: Be aware that removing the lock file is not a solution and may break your system. E: Unable to lock directory /var/lib/apt/lists/ root@vds2982154:~# lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu 24.04.2 LTS Release: 24.04 Codename: noble root@vds2982154:~# apt-cache policy cloudflare-warp N: Unable to locate package cloudflare-warp

goVLESS — это скрипт, который ставится на свежий VPS одной командой и управляется через Telegram-бота. Под капотом — 3X-UI + Xray с протоколом VLESS и маскировкой Reality (без домена) или TLS (со своим доменом). Полезен тем, кто хочет свой VPN без подписки и без чужих посредников, но не готов вручную настраивать xray.json — установка спрашивает 2-3 вопроса и через 5 минут выдаёт готовые QR-коды. Telegram-бот заменяет SSH: добавил клиента, посмотрел статистику, переключил Lite ↔ Pro — без открытия терминала. Бесшовное переключение режимов сохраняет UUID клиентов, так что подписные ссылки не ломаются. Установить: export GH_TOKEN="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" bash <(curl -sL -H "Authorization: Bearer $GH_TOKEN" https://raw.githubusercontent.com/anten-ka/goVLESS/main/bootstrap.sh) После установки управление скриптом командой: govless

root@instzav:/etc/telemt# curl -kI https://npkiz.site/ HTTP/2 200 server: nginx/1.24.0 (Ubuntu) date: Sun, 24 May 2026 18:36:24 GMT content-type: text/html content-length: 20287 last-modified: Sun, 24 May 2026 17:58:03 GMT etag: "6a133c2b-4f3f" strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block referrer-policy: strict-origin-when-cross-origin accept-ranges: bytes root@instzav:/etc/telemt# curl -k https://npkiz.site/ | head % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 20287 100 20287 0 0 <!doctype html>--:-- --:--:-- --:--:-- 0 8<html> 9<head> 3<meta charset="utf-8"> k<meta name="viewport" content="width=device-width, maximum-scale=1"> <title>Unique</title> <link rel="icon" href="favicon.png" type="image/png"> <link href="css/bootstrap.min.css" rel="stylesheet" type="text/css"> <link href="css/style.css" rel="stylesheet" type="text/css"> <link href="css/font-awesome.css" rel="stylesheet" type="text/css"> 0 --:--:-- --:--:-- --:--:-- 900k curl: Failed writing body

root@instzav:/etc/telemt# sudo tail -n 50 /var/log/nginx/access.log /var/log/nginx/error.log ==> /var/log/nginx/access.log <== 134.122.28.88 - - [24/May/2026:16:43:15 +0000] "GET /swagger.json HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:16 +0000] "GET /swagger/v1/swagger.json HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:17 +0000] "GET /v2/api-docs HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:18 +0000] "GET /v3/api-docs HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:19 +0000] "GET /api-docs/swagger.json HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:20 +0000] "GET /api/swagger.json HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:21 +0000] "GET /trace.axd HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:22 +0000] "GET /@vite/env HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:23 +0000] "GET /.vscode/sftp.json HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:24 +0000] "OPTIONS / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:25 +0000] "GET /?rest_route=/wp/v2/users/ HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 134.122.28.88 - - [24/May/2026:16:43:26 +0000] "GET /debug/default/view?panel=config HTTP/1.1" 301 178 "-" "Mozilla/5.0 (l9scan/2.0.132323e29383e2532313e29383; +https://leakix.net)" 131.153.172.174 - - [24/May/2026:16:45:14 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 62.113.113.43 - - [24/May/2026:16:48:17 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0(WindowsNT6.0)AppleWebKit/537.36(KHTML,likeGecko)Chrome/31.0.1650.63Safari/537.36" 143.137.164.22 - - [24/May/2026:16:50:23 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (iPad; CPU OS 18_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Mobile/15E148 Safari/604.1" 143.137.164.22 - - [24/May/2026:16:50:24 +0000] "GET http://npkiz.site/favicon.ico HTTP/1.1" 301 178 "-" "Mozilla/5.0 (iPad; CPU OS 18_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Mobile/15E148 Safari/604.1" 143.137.164.22 - - [24/May/2026:16:50:25 +0000] "GET http://npkiz.site/favicon.png HTTP/1.1" 301 178 "-" "Mozilla/5.0 (iPad; CPU OS 18_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Mobile/15E148 Safari/604.1" 45.86.18.23 - - [24/May/2026:16:50:27 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" 45.86.18.23 - - [24/May/2026:16:50:28 +0000] "GET http://npkiz.site/favicon.ico HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" 45.86.18.23 - - [24/May/2026:16:50:28 +0000] "GET /favicon.png HTTP/1.1" 301 178 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" 170.246.54.219 - - [24/May/2026:16:50:29 +0000] "GET / HTTP/1.1" 301 178 "-" "Mozilla/5.0 (iPad; CPU OS 17_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Mobile/15E148 Safari/604.1"

вот смотри сейчас слушают эти. дал для понимания кто слушает. Какие рекомендации для скрипта и правки.. root@vm1619016:~# sudo ss -tulnp | awk 'NR>1 {split($5, a, ":"); port=a[2]; gsub(/\(|\)/,"", $7); print "Порт: " port ", Протокол: " $1 ", PID: " $7 ", Процесс: " $8}' Порт: 53, Протокол: udp, PID: users:"systemd-resolve",pid=490,fd=16, Процесс: Порт: 53, Протокол: udp, PID: users:"systemd-resolve",pid=490,fd=14, Процесс: Порт: 32905, Протокол: udp, PID: users:"xray-linux-amd6",pid=2233844,fd=8, Процесс: Порт: 3390, Протокол: udp, PID: users:"docker-proxy",pid=28432,fd=7, Процесс: Порт: 28177, Протокол: tcp, PID: users:"x-ui",pid=2224090,fd=11, Процесс: Порт: 22, Протокол: tcp, PID: users:"sshd",pid=959,fd=3,"systemd",pid=1,fd=77, Процесс: Порт: 45643, Протокол: tcp, PID: users:"containerd",pid=26171,fd=14, Процесс: Порт: 80, Протокол: tcp, PID: users:"nginx",pid=4438,fd=5,"nginx",pid=4437,fd=5, Процесс: Порт: 32905, Протокол: tcp, PID: users:"xray-linux-amd6",pid=2233844,fd=7, Процесс: Порт: 53, Протокол: tcp, PID: users:"systemd-resolve",pid=490,fd=15, Процесс: Порт: 53, Протокол: tcp, PID: users:"systemd-resolve",pid=490,fd=17, Процесс: Порт: 11111, Протокол: tcp, PID: users:"xray-linux-amd6",pid=2233844,fd=9, Процесс: Порт: 443, Протокол: tcp, PID: users:"telemt",pid=2271081,fd=18, Процесс: Порт: 9090, Протокол: tcp, PID: users:"telemt",pid=2271081,fd=64, Процесс: Порт: 9091, Протокол: tcp, PID: users:"telemt",pid=2271081,fd=9, Процесс: Порт: 1984, Протокол: tcp, PID: users:"python3",pid=332969,fd=3, Процесс: Порт: 8443, Протокол: tcp, PID: users:"nginx",pid=4438,fd=6,"nginx",pid=4437,fd=6, Процесс: Порт: 62789, Протокол: tcp, PID: users:"xray-linux-amd6",pid=2233844,fd=4, Процесс:

Expanded Security Maintenance for Applications is not enabled. 189 updates can be applied immediately. 12 of these updates are standard security updates. To see these additional updates run: apt list --upgradable Enable ESM Apps to receive additional future security updates. See https://ubuntu.com/esm or run: sudo pro status ● x-ui.service - x-ui Service Loaded: loaded (/etc/systemd/system/x-ui.service; enabled; preset: enabled) Active: active (running) since Mon 2026-05-18 00:35:18 UTC; 1 day 20h ago Main PID: 60065 (x-ui) Tasks: 17 (limit: 2263) Memory: 34.5M (peak: 34.9M) CPU: 6min 2.988s CGroup: /system.slice/x-ui.service ├─60065 /usr/local/x-ui/x-ui └─60077 bin/xray-linux-amd64 -c bin/config.json May 19 13:18:44 RusKaskade x-ui[60065]: 2026/05/19 13:18:44 http: TLS handshake error from 128.14.236.128:37378: read tcp 13> May 19 13:18:44 RusKaskade x-ui[60065]: 2026/05/19 13:18:44 http: TLS handshake error from 128.14.236.128:37394: read tcp 13> May 19 13:18:45 RusKaskade x-ui[60065]: 2026/05/19 13:18:45 http: TLS handshake error from 128.14.236.128:37400: read tcp 13> May 19 13:18:45 RusKaskade x-ui[60065]: 2026/05/19 13:18:45 http: TLS handshake error from 128.14.236.128:37406: tls: no cip> May 19 13:18:46 RusKaskade x-ui[60065]: 2026/05/19 13:18:46 http: TLS handshake error from 128.14.236.128:37408: read tcp 13> May 19 13:18:46 RusKaskade x-ui[60065]: 2026/05/19 13:18:46 http: TLS handshake error from 128.14.236.128:42466: tls: client> May 19 13:18:47 RusKaskade x-ui[60065]: 2026/05/19 13:18:47 http: TLS handshake error from 128.14.236.128:42480: read tcp 13> May 19 13:18:48 RusKaskade x-ui[60065]: 2026/05/19 13:18:48 http: TLS handshake error from 128.14.236.128:42488: read tcp 13> May 19 13:18:48 RusKaskade x-ui[60065]: 2026/05/19 13:18:48 http: TLS handshake error from 128.14.236.128:42496: tls: no cip> May 19 13:18:49 RusKaskade x-ui[60065]: 2026/05/19 13:18:49 http: TLS handshake error from 128.14.236.128:42506: read tcp 13>

как настроить на сервере с Ubuntu 24 и панелью 3X-UINAT masquerade + route + fasttrack off.

дай команду на смену порта Amnezia через терминал, а то я в приложении такого пункта не нашел

Новый сервер. Чистая Ubuntu. Установка 3x-ui скриптом из пункта 11. Давай искать кто выдал сертификат и на какой срок

@AntenkaAI_bot пытаюсь установить Kaskad PRO. Копирую текст в терминал. Нажимаю enter. И попадаю опять на ввод

@AntenkaAI_bot привет. Gotelegram и gowarp на одном vps Ubuntu 24

я настраиваю не на кинетике, у меня ubuntu 24.04 в европе и телефон в России

@AntenkaAI_bot, я переустановил ubuntu и панель 3x-ui. теперь выяснилось если я Srcurity - не "reality", а "none" то ютуб с телефона работает. А если Srcurity - "reality", то интернет вообще пропадает при коннекте [image]

root@rulocalhost:~/x-ui# x-ui settings The OS release is: ubuntu [INF] current panel settings as follows: Panel is secure with SSL hasDefaultCredential: false port: 29809 webBasePath: /это тоже скрыл/ Access URL: https://ИП и порт скрыл/и это тоже скрыл/ root@rulocalhost:~/x-ui# Что далее для завершения установки и настройки ?

root@rulocalhost:~/x-ui# x-ui setting -show The OS release is: ubuntu ┌────────────────────────────────────────────────────────────────┐ │ x-ui control menu usages (subcommands): │ │ │ │ x-ui - Admin Management Script │ │ x-ui start - Start │ │ x-ui stop - Stop │ │ x-ui restart - Restart │ | x-ui restart-xray - Restart Xray │ │ x-ui status - Current Status │ │ x-ui settings - Current Settings │ │ x-ui enable - Enable Autostart on OS Startup │ │ x-ui disable - Disable Autostart on OS Startup │ │ x-ui log - Check logs │ │ x-ui banlog - Check Fail2ban ban logs │ │ x-ui update - Update │ │ x-ui update-all-geofiles - Update all geo files │ │ x-ui legacy - Legacy version │ │ x-ui install - Install │ │ x-ui uninstall - Uninstall │ └────────────────────────────────────────────────────────────────┘ root@rulocalhost:~/x-ui#

RU сервер сам смог скачать. Вывод ниже, что далее? Какой командой установить ? root@rulocalhost:~# wget https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-amd64.tar.gz && wget https://raw.githubusercontent.com/MHSanaei/3x-ui/main/x-ui.service.debian -O x-ui.service --2026-05-07 03:42:11-- https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-amd64.tar.gz Resolving github.com (github.com)... 140.82.121.3 Connecting to github.com (github.com)|140.82.121.3|:443... connected. HTTP request sent, awaiting response... 302 Found Location: https://release-assets.githubusercontent.com/github-production-release-asset/599735720/5cf98390-5255-4c64-841d-8b47b079e994?sp=r&sv=2018-11-09&sr=b&spr=https&se=2026-05-07T04%3A39%3A49Z&rscd=attachment%3B+filename%3Dx-ui-linux-amd64.tar.gz&rsct=application%2Foctet-stream&skoid=96c2d410-5711-43a1-aedd-ab1947aa7ab0&sktid=398a6654-997b-47e9-b12b-9515b896b4de&skt=2026-05-07T03%3A39%3A03Z&ske=2026-05-07T04%3A39%3A49Z&sks=b&skv=2018-11-09&sig=SIclUlUs7ncjxjj11Qt9Xa1U%2BEnlmq5Q0eqkgkkXCUI%3D&jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmVsZWFzZS1hc3NldHMuZ2l0aHVidXNlcmNvbnRlbnQuY29tIiwia2V5Ijoia2V5MSIsImV4cCI6MTc3ODEyNzAwOSwibmJmIjoxNzc4MTI1MjA5LCJwYXRoIjoicmVsZWFzZWFzc2V0cHJvZHVjdGlvbi5ibG9iLmNvcmUud2luZG93cy5uZXQifQ.xotZaJ1QEVLHYwjddrUcTfcglUuf5rZ5XzOlUcuLbf8&response-content-disposition=attachment%3B%20filename%3Dx-ui-linux-amd64.tar.gz&response-content-type=application%2Foctet-stream [following] --2026-05-07 03:42:11-- https://release-assets.githubusercontent.com/github-production-release-asset/599735720/5cf98390-5255-4c64-841d-8b47b079e994?sp=r&sv=2018-11-09&sr=b&spr=https&se=2026-05-07T04%3A39%3A49Z&rscd=attachment%3B+filename%3Dx-ui-linux-amd64.tar.gz&rsct=application%2Foctet-stream&skoid=96c2d410-5711-43a1-aedd-ab1947aa7ab0&sktid=398a6654-997b-47e9-b12b-9515b896b4de&skt=2026-05-07T03%3A39%3A03Z&ske=2026-05-07T04%3A39%3A49Z&sks=b&skv=2018-11-09&sig=SIclUlUs7ncjxjj11Qt9Xa1U%2BEnlmq5Q0eqkgkkXCUI%3D&jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmVsZWFzZS1hc3NldHMuZ2l0aHVidXNlcmNvbnRlbnQuY29tIiwia2V5Ijoia2V5MSIsImV4cCI6MTc3ODEyNzAwOSwibmJmIjoxNzc4MTI1MjA5LCJwYXRoIjoicmVsZWFzZWFzc2V0cHJvZHVjdGlvbi5ibG9iLmNvcmUud2luZG93cy5uZXQifQ.xotZaJ1QEVLHYwjddrUcTfcglUuf5rZ5XzOlUcuLbf8&response-content-disposition=attachment%3B%20filename%3Dx-ui-linux-amd64.tar.gz&response-content-type=application%2Foctet-stream Resolving release-assets.githubusercontent.com (release-assets.githubusercontent.com)... 185.199.108.133, 185.199.109.133, 185.199.111.133, ... Connecting to release-assets.githubusercontent.com (release-assets.githubusercontent.com)|185.199.108.133|:443... connected. HTTP request sent, awaiting response... 200 OK Length: 71288093 (68M) [application/octet-stream] Saving to: ‘x-ui-linux-amd64.tar.gz’ x-ui-linux-amd64.tar.gz 100%[=============================================================================>] 67.99M 34.0MB/s in 2.0s 2026-05-07 03:42:14 (34.0 MB/s) - ‘x-ui-linux-amd64.tar.gz’ saved [71288093/71288093] --2026-05-07 03:42:14-- https://raw.githubusercontent.com/MHSanaei/3x-ui/main/x-ui.service.debian Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 185.199.109.133, 185.199.110.133, 185.199.108.133, ... Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|185.199.109.133|:443... connected. HTTP request sent, awaiting response... 200 OK Length: 342 [text/plain] Saving to: ‘x-ui.service’ x-ui.service 100%[=============================================================================>] 342 --.-KB/s in 0s 2026-05-07 03:42:14 (9.48 MB/s) - ‘x-ui.service’ saved [342/342] root@rulocalhost:~#

═══════════════════════════════════════════ + echo -e '\033[0;33m⚠️ IMPORTANT: Save these credentials securely!\033[0m' ⚠️ IMPORTANT: Save these credentials securely! + echo -e '\033[0;33m⚠️ SSL Certificate: Enabled and configured\033[0m' ⚠️ SSL Certificate: Enabled and configured + /usr/local/x-ui/x-ui migrate Start migrating database... Migration done! + '[' -d /etc/.git ']' + [[ ubuntu == \a\l\p\i\n\e ]] + service_installed=false + '[' -f x-ui.service ']' + '[' false = false ']' + case "${release}" in + '[' -f x-ui.service.debian ']' + '[' false = false ']' + echo -e '\033[0;33mService files not found in tar.gz, downloading from GitHub...\033[0m' Service files not found in tar.gz, downloading from GitHub... + case "${release}" in + curl -4fLRo /etc/systemd/system/x-ui.service https://raw.githubusercontent.com/MHSanaei/3x-ui/main/x-ui.service.debian Здесь подвисло

github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com user-images.githubusercontent.com private-user-images.githubusercontent.com opengraph.githubassets.com marketplace-screenshots.githubusercontent.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com secured-user-images.githubusercontent.com private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com github.githubassets.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/ server: github.com x-github-request-id: C6AE:295ABA:135E523:FD6684:69FC06B7 HTTP/2 200 last-modified: Tue, 05 May 2026 22:53:57 GMT etag: "0x8DEAAF930823581" server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 0921d054-b01e-0062-5fe2-dc2372000000 x-ms-version: 2018-11-09 x-ms-creation-time: Tue, 05 May 2026 22:53:57 GMT x-ms-lease-status: unlocked x-ms-lease-state: available x-ms-blob-type: BlockBlob x-ms-server-encrypted: true x-ms-access-tier: Hot x-ms-access-tier-inferred: true via: 1.1 varnish, 1.1 varnish accept-ranges: bytes age: 2154 date: Thu, 07 May 2026 03:27:51 GMT x-served-by: cache-iad-kiad7000116-IAD, cache-bma-essb1270056-BMA x-cache: HIT, HIT x-cache-hits: 4, 0 x-timer: S1778124472.628601,VS0,VE1 content-disposition: attachment; filename=x-ui-linux-amd64.tar.gz content-type: application/octet-stream content-length: 71288093 root@rulocalhost:~#

root@rulocalhost:~# curl -4 -L -I https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-amd64.tar.gz HTTP/2 302 date: Thu, 07 May 2026 03:27:51 GMT content-type: text/html; charset=utf-8 content-length: 0 vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With, Sec-Fetch-Site,Accept-Encoding, Accept, X-Requested-With location: https://release-assets.githubusercontent.com/github-production-release-asset/599735720/5cf98390-5255-4c64-841d-8b47b079e994?sp=r&sv=2018-11-09&sr=b&spr=https&se=2026-05-07T04%3A10%3A18Z&rscd=attachment%3B+filename%3Dx-ui-linux-amd64.tar.gz&rsct=application%2Foctet-stream&skoid=96c2d410-5711-43a1-aedd-ab1947aa7ab0&sktid=398a6654-997b-47e9-b12b-9515b896b4de&skt=2026-05-07T03%3A10%3A15Z&ske=2026-05-07T04%3A10%3A18Z&sks=b&skv=2018-11-09&sig=lLtm3VLDGhYK3SJ4e054oVq87kWkRKPWInpurE%2FzBUc%3D&jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmVsZWFzZS1hc3NldHMuZ2l0aHVidXNlcmNvbnRlbnQuY29tIiwia2V5Ijoia2V5MSIsImV4cCI6MTc3ODEyNjI3MSwibmJmIjoxNzc4MTI0NDcxLCJwYXRoIjoicmVsZWFzZWFzc2V0cHJvZHVjdGlvbi5ibG9iLmNvcmUud2luZG93cy5uZXQifQ.gDosg89ZjG7zipauu1h1I-cqp5uNaw2iofjLQT232PU&response-content-disposition=attachment%3B%20filename%3Dx-ui-linux-amd64.tar.gz&response-content-type=application%2Foctet-stream cache-control: no-cache strict-transport-security: max-age=31536000; includeSubdomains; preload x-frame-options: deny x-content-type-options: nosniff x-xss-protection: 0 referrer-policy: no-referrer-when-downgrade content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com github.githubassets.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net productionresultssa1.blob.core.windows.net productionresultssa2.blob.core.windows.net productionresultssa3.blob.core.windows.net productionresultssa4.blob.core.windows.net productionresultssa5.blob.core.windows.net productionresultssa6.blob.core.windows.net productionresultssa7.blob.core.windows.net productionresultssa8.blob.core.windows.net productionresultssa9.blob.core.windows.net productionresultssa10.blob.core.windows.net productionresultssa11.blob.core.windows.net productionresultssa12.blob.core.windows.net productionresultssa13.blob.core.windows.net productionresultssa14.blob.core.windows.net productionresultssa15.blob.core.windows.net productionresultssa16.blob.core.windows.net productionresultssa17.blob.core.windows.net productionresultssa18.blob.core.windows.net productionresultssa19.blob.core.windows.net github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com wss://alive-staging.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob:

root@rulocalhost:~# curl -s https://api.github.com/repos/MHSanaei/3x-ui/releases/latest | grep browser_download_url "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-386.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-amd64.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-arm64.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-armv5.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-armv6.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-armv7.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-linux-s390x.tar.gz" "browser_download_url": "https://github.com/MHSanaei/3x-ui/releases/download/v2.9.4/x-ui-windows-amd64.zip" root@rulocalhost:~#

root@rulocalhost:~# sudo apt update && sudo apt install -y git curl openssl qrencode systemd && rm -rf ~/self-signed-cert-script-by-antenka && git clone https://github.com/anten-ka/self-signed-cert-script-by-antenka.git && cd self-signed-cert-script-by-antenka && chmod +x self_signed_cert.sh && sudo ./self_signed_cert.sh Hit:1 http://ru.archive.ubuntu.com/ubuntu noble InRelease Hit:2 http://ru.archive.ubuntu.com/ubuntu noble-updates InRelease Hit:3 http://ru.archive.ubuntu.com/ubuntu noble-backports InRelease Hit:4 http://security.ubuntu.com/ubuntu noble-security InRelease Reading package lists... Done Building dependency tree... Done Reading state information... Done 334 packages can be upgraded. Run 'apt list --upgradable' to see them. Reading package lists... Done Building dependency tree... Done Reading state information... Done git is already the newest version (1:2.43.0-1ubuntu7.3). curl is already the newest version (8.5.0-2ubuntu10.9). openssl is already the newest version (3.0.13-0ubuntu3.9). qrencode is already the newest version (4.1.1-1build2). systemd is already the newest version (255.4-1ubuntu8.15). 0 upgraded, 0 newly installed, 0 to remove and 334 not upgraded. Cloning into 'self-signed-cert-script-by-antenka'... remote: Enumerating objects: 119, done. remote: Counting objects: 100% (60/60), done. remote: Compressing objects: 100% (41/41), done. remote: Total 119 (delta 27), reused 43 (delta 19), pack-reused 59 (from 1) Receiving objects: 100% (119/119), 96.85 KiB | 1.23 MiB/s, done. Resolving deltas: 100% (47/47), done. --- Подготовка системы (sqlite3, expect, qrencode) --- Hit:1 http://ru.archive.ubuntu.com/ubuntu noble InRelease Hit:2 http://ru.archive.ubuntu.com/ubuntu noble-updates InRelease Hit:3 http://ru.archive.ubuntu.com/ubuntu noble-backports InRelease Hit:4 http://security.ubuntu.com/ubuntu noble-security InRelease Reading package lists... Done Reading package lists... Done Building dependency tree... Done Reading state information... Done expect is already the newest version (5.45.4-3). qrencode is already the newest version (4.1.1-1build2). curl is already the newest version (8.5.0-2ubuntu10.9). sqlite3 is already the newest version (3.45.1-1ubuntu2.5). 0 upgraded, 0 newly installed, 0 to remove and 334 not upgraded. --- Запуск установки 3x-ui --- spawn bash -c curl -Ls https://raw.githubusercontent.com/mhsanaei/3x-ui/master/install.sh | bash The OS release is: ubuntu Arch: amd64 Running... Hit:1 http://ru.archive.ubuntu.com/ubuntu noble InRelease Get:2 http://ru.archive.ubuntu.com/ubuntu noble-updates InRelease [126 kB] Hit:3 http://ru.archive.ubuntu.com/ubuntu noble-backports InRelease Hit:4 http://security.ubuntu.com/ubuntu noble-security InRelease Fetched 126 kB in 1s (192 kB/s) Reading package lists... Done N: Missing Signed-By in the sources.list(5) entry for 'http://ru.archive.ubuntu.com/ubuntu' Reading package lists... Building dependency tree... Reading state information... cron is already the newest version (3.0pl1-184ubuntu2). curl is already the newest version (8.5.0-2ubuntu10.9). tar is already the newest version (1.35+dfsg-3build1). tzdata is already the newest version (2026a-0ubuntu0.24.04.1). tzdata set to manually installed. socat is already the newest version (1.8.0.0-4build3). ca-certificates is already the newest version (20240203). openssl is already the newest version (3.0.13-0ubuntu3.9). 0 upgraded, 0 newly installed, 0 to remove and 334 not upgraded. Got x-ui latest version: v2.9.4, beginning the installation... % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 0 0 0 0 0 0 0 0 --:--:-- 0:01:15 --:--:-- 0

Может быть причиной что версия ubuntu 24.04 ?

@AntenkaAI_bot На vps ubuntu 24.04 есть панель 3x-ui. Lan подсесть дома 192.168.2.1

@AntenkaAI_bot # dig @1.1.1.1 snowstorm61.store A ; <<>> DiG 9.18.39-0ubuntu0.24.04.3-Ubuntu <<>> @1.1.1.1 snowstorm61.store A ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44264 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 1232 ;; QUESTION SECTION: ;snowstorm61.store. IN A ;; AUTHORITY SECTION: store. 300 IN SOA ns.trs-dns.com. trs-ops.tucows.com. 1778047171 1800 900 604800 300 ;; Query time: 12 msec ;; SERVER: 1.1.1.1#53(1.1.1.1) (UDP) ;; WHEN: Wed May 06 06:09:31 UTC 2026 ;; MSG SIZE rcvd: 111 # whois snowstorm61.store Command 'whois' not found, but can be installed with: apt install whois

# curl -I https://snowstorm61.store dig snowstorm61.store ss -tulpn | grep :443 curl: (6) Could not resolve host: snowstorm61.store ; <<>> DiG 9.18.39-0ubuntu0.24.04.3-Ubuntu <<>> snowstorm61.store ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44753 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;snowstorm61.store. IN A ;; AUTHORITY SECTION: store. 200 IN SOA ns.trs-dns.com. trs-ops.tucows.com. 1778046573 1800 900 604800 300 ;; Query time: 6 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) (UDP) ;; WHEN: Wed May 06 06:02:03 UTC 2026 ;; MSG SIZE rcvd: 111 tcp LISTEN 0 1024 0.0.0.0:443 0.0.0.0:* users:(("telemt",pid=27315,fd=17))

@AntenkaAI_bot 1)Ubuntu 2) не открывает 3) установлен

root@FinTG:~# sudo cat /etc/nginx/sites-enabled/* sudo cat /etc/nginx/sites-available/* sudo ss -lntup | grep -E ':(80|443|8443)\b' sudo systemctl status nginx --no-pager # GoTelegram v2.5.0 — nginx config # Pro: nginx на 127.0.0.1:8443 (внутренний), telemt на 0.0.0.0:443 (внешний) # Обычный браузер → :443 → telemt → 127.0.0.1:8443 → nginx (сайт) server { listen 80; listen [::]:80; server_name termitrus.site; # Let's Encrypt ACME challenge location /.well-known/acme-challenge/ { root /var/www/certbot; allow all; } # Редирект на HTTPS location / { return 301 https://$server_name$request_uri; } } server { listen 127.0.0.1:8443 ssl http2; server_name termitrus.site; # SSL сертификаты ssl_certificate /etc/letsencrypt/live/termitrus.site/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/termitrus.site/privkey.pem; # Современные TLS настройки ssl_protocols TLSv1.2 TLSv1.3; ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384; ssl_prefer_server_ciphers off; ssl_session_cache shared:SSL:10m; ssl_session_timeout 1d; ssl_session_tickets off; # OCSP stapling ssl_stapling on; ssl_stapling_verify on; # Security headers add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always; add_header X-Content-Type-Options "nosniff" always; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header Referrer-Policy "strict-origin-when-cross-origin" always; # Корень сайта root /var/www/gotelegram-site; index index.html; location / { try_files $uri $uri/ =404; expires 30d; } # Кеширование статики location ~* \.(jpg|jpeg|png|gif|ico|css|js|svg|woff|woff2|ttf|eot)$ { expires 1y; add_header Cache-Control "public, immutable"; } # Скрываем служебные файлы location ~ /\. { deny all; } location = /robots.txt { allow all; log_not_found off; access_log off; } location = /favicon.ico { log_not_found off; access_log off; } } ## # You should look at the following URL's in order to grasp a solid understanding # of Nginx configuration files in order to fully unleash the power of Nginx. # https://www.nginx.com/resources/wiki/start/ # https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/ # https://wiki.debian.org/Nginx/DirectoryStructure # # In most cases, administrators will remove this file from sites-enabled/ and # leave it as reference inside of sites-available where it will continue to be # updated by the nginx packaging team. # # This file will automatically load configuration files provided by other # applications, such as Drupal or Wordpress. These applications will be made # available underneath a path with that package name, such as /drupal8. # # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. ## # Default server configuration # server { listen 80 default_server; listen [::]:80 default_server; # SSL configuration # # listen 443 ssl default_server; # listen [::]:443 ssl default_server; # # Note: You should disable gzip for SSL traffic. # See: https://bugs.debian.org/773332 # # Read up on ssl_ciphers to ensure a secure configuration. # See: https://bugs.debian.org/765782 # # Self signed certs generated by the ssl-cert package # Don't use them in a production server! # # include snippets/snakeoil.conf; root /var/www/html; # Add index.php to the list if you are using PHP index index.html index.htm index.nginx-debian.html; server_name _; location / { # First attempt to serve request as file, then # as directory, then fall back to displaying a 404. try_files $uri $uri/ =404; }} # pass PHP scripts to FastCGI server # #location ~ \.php$ { # include snippets/fastcgi-php.conf; # # # With php-fpm (or other unix sockets): # fastcgi_pass unix:/run/php/php7.4-fpm.sock; # # With php-cgi (or other tcp sockets): # fastcgi_pass 127.0.0.1:9000; #} # deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /\.ht { # deny all; #} } # Virtual Host configuration for example.com # # You can move that to a different file under sites-available/ and symlink that # to sites-enabled/ to enable it. # #server { # listen 80; # listen [::]:80; # # server_name example.com; # # root /var/www/example.com; # index index.html; # # location / { # try_files $uri $uri/ =404; # } #} # GoTelegram v2.5.0 — nginx config # Pro: nginx на 127.0.0.1:8443 (внутренний), telemt на 0.0.0.0:443 (внешний) # Обычный браузер → :443 → telemt → 127.0.0.1:8443 → nginx (сайт) server { listen 80; listen [::]:80; server_name termitrus.site; # Let's Encrypt ACME challenge location /.well-known/acme-challenge/ { root /var/www/certbot; allow all; } # Редирект на HTTPS location / { return 301 https://$server_name$request_uri; } } server { listen 127.0.0.1:8443 ssl http2; server_name termitrus.site; # SSL сертификаты ssl_certificate /etc/letsencrypt/live/termitrus.site/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/termitrus.site/privkey.pem; # Современные TLS настройки ssl_protocols TLSv1.2 TLSv1.3; ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384; ssl_prefer_server_ciphers off; ssl_session_cache shared:SSL:10m; ssl_session_timeout 1d; ssl_session_tickets off; # OCSP stapling ssl_stapling on; ssl_stapling_verify on; # Security headers add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always; add_header X-Content-Type-Options "nosniff" always; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header Referrer-Policy "strict-origin-when-cross-origin" always; # Корень сайта root /var/www/gotelegram-site; index index.html; location / { try_files $uri $uri/ =404; expires 30d; } # Кеширование статики location ~* \.(jpg|jpeg|png|gif|ico|css|js|svg|woff|woff2|ttf|eot)$ { expires 1y; add_header Cache-Control "public, immutable"; } # Скрываем служебные файлы location ~ /\. { deny all; } location = /robots.txt { allow all; log_not_found off; access_log off; } location = /favicon.ico { log_not_found off; access_log off; } } tcp LISTEN 0 1024 0.0.0.0:443 0.0.0.0:* users:(("telemt",pid=147501,fd=56)) tcp LISTEN 0 511 127.0.0.1:8443 0.0.0.0:* users:(("nginx",pid=92765,fd=8),("nginx",pid=92763,fd=8)) tcp LISTEN 0 511 0.0.0.0:80 0.0.0.0:* users:(("nginx",pid=92765,fd=6),("nginx",pid=92763,fd=6)) tcp LISTEN 0 511 [::]:80 [::]:* users:(("nginx",pid=92765,fd=7),("nginx",pid=92763,fd=7)) ● nginx.service - A high performance web server and a reverse proxy server Loaded: loaded (/lib/systemd/system/nginx.service; enabled; vendor preset: enabled) Active: active (running) since Sun 2026-05-03 12:57:37 UTC; 48min ago Docs: man:nginx(8) Process: 92760 ExecStartPre=/usr/sbin/nginx -t -q -g daemon on; master_process on; (code=exited, status=0/SUCCESS) Process: 92762 ExecStart=/usr/sbin/nginx -g daemon on; master_process on; (code=exited, status=0/SUCCESS) Main PID: 92763 (nginx) Tasks: 2 (limit: 2234) Memory: 6.4M CPU: 1.656s CGroup:

root@FinTG:~# sudo cat /etc/nginx/sites-enabled/* sudo cat /etc/nginx/sites-available/* sudo ss -lntup | grep -E ':(80|443|8443)\b' sudo systemctl status nginx --no-pager # GoTelegram v2.5.0 — nginx config # Pro: nginx на 127.0.0.1:8443 (внутренний), telemt на 0.0.0.0:443 (внешний) # Обычный браузер → :443 → telemt → 127.0.0.1:8443 → nginx (сайт) server { listen 80; listen [::]:80; server_name termitrus.site; # Let's Encrypt ACME challenge location /.well-known/acme-challenge/ { root /var/www/certbot; allow all; } # Редирект на HTTPS location / { return 301 https://$server_name$request_uri; } } server { listen 127.0.0.1:8443 ssl http2; server_name termitrus.site; # SSL сертификаты ssl_certificate /etc/letsencrypt/live/termitrus.site/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/termitrus.site/privkey.pem; # Современные TLS настройки ssl_protocols TLSv1.2 TLSv1.3; ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384; ssl_prefer_server_ciphers off; ssl_session_cache shared:SSL:10m; ssl_session_timeout 1d; ssl_session_tickets off; # OCSP stapling ssl_stapling on; ssl_stapling_verify on; # Security headers add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always; add_header X-Content-Type-Options "nosniff" always; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header Referrer-Policy "strict-origin-when-cross-origin" always; # Корень сайта root /var/www/gotelegram-site; index index.html; location / { try_files $uri $uri/ =404; expires 30d; } # Кеширование статики location ~* \.(jpg|jpeg|png|gif|ico|css|js|svg|woff|woff2|ttf|eot)$ { expires 1y; add_header Cache-Control "public, immutable"; } # Скрываем служебные файлы location ~ /\. { deny all; } location = /robots.txt { allow all; log_not_found off; access_log off; } location = /favicon.ico { log_not_found off; access_log off; } } ## # You should look at the following URL's in order to grasp a solid understanding # of Nginx configuration files in order to fully unleash the power of Nginx. # https://www.nginx.com/resources/wiki/start/ # https://www.nginx.com/resources/wiki/start/topics/tutorials/config_pitfalls/ # https://wiki.debian.org/Nginx/DirectoryStructure # # In most cases, administrators will remove this file from sites-enabled/ and # leave it as reference inside of sites-available where it will continue to be # updated by the nginx packaging team. # # This file will automatically load configuration files provided by other # applications, such as Drupal or Wordpress. These applications will be made # available underneath a path with that package name, such as /drupal8. # # Please see /usr/share/doc/nginx-doc/examples/ for more detailed examples. ## # Default server configuration # server { listen 80 default_server; listen [::]:80 default_server; # SSL configuration # # listen 443 ssl default_server; # listen [::]:443 ssl default_server; # # Note: You should disable gzip for SSL traffic. # See: https://bugs.debian.org/773332 # # Read up on ssl_ciphers to ensure a secure configuration. # See: https://bugs.debian.org/765782 # # Self signed certs generated by the ssl-cert package # Don't use them in a production server! # # include snippets/snakeoil.conf; root /var/www/html; # Add index.php to the list if you are using PHP index index.html index.htm index.nginx-debian.html; server_name _; location / { # First attempt to serve request as file, then # as directory, then fall back to displaying a 404. try_files $uri $uri/ =404; }} # pass PHP scripts to FastCGI server # #location ~ \.php$ { # include snippets/fastcgi-php.conf; # # # With php-fpm (or other unix sockets): # fastcgi_pass unix:/run/php/php7.4-fpm.sock; # # With php-cgi (or other tcp sockets): # fastcgi_pass 127.0.0.1:9000; #} # deny access to .htaccess files, if Apache's document root # concurs with nginx's one # #location ~ /\.ht { # deny all; #} } # Virtual Host configuration for example.com # # You can move that to a different file under sites-available/ and symlink that # to sites-enabled/ to enable it. # #server { # listen 80; # listen [::]:80; # # server_name example.com; # # root /var/www/example.com; # index index.html; # # location / { # try_files $uri $uri/ =404; # } #} # GoTelegram v2.5.0 — nginx config # Pro: nginx на 127.0.0.1:8443 (внутренний), telemt на 0.0.0.0:443 (внешний) # Обычный браузер → :443 → telemt → 127.0.0.1:8443 → nginx (сайт) server { listen 80; listen [::]:80; server_name termitrus.site; # Let's Encrypt ACME challenge location /.well-known/acme-challenge/ { root /var/www/certbot; allow all; } # Редирект на HTTPS location / { return 301 https://$server_name$request_uri; } } server { listen 127.0.0.1:8443 ssl http2; server_name termitrus.site; # SSL сертификаты ssl_certificate /etc/letsencrypt/live/termitrus.site/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/termitrus.site/privkey.pem; # Современные TLS настройки ssl_protocols TLSv1.2 TLSv1.3; ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384; ssl_prefer_server_ciphers off; ssl_session_cache shared:SSL:10m; ssl_session_timeout 1d; ssl_session_tickets off; # OCSP stapling ssl_stapling on; ssl_stapling_verify on; # Security headers add_header Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" always; add_header X-Content-Type-Options "nosniff" always; add_header X-Frame-Options "SAMEORIGIN" always; add_header X-XSS-Protection "1; mode=block" always; add_header Referrer-Policy "strict-origin-when-cross-origin" always; # Корень сайта root /var/www/gotelegram-site; index index.html; location / { try_files $uri $uri/ =404; expires 30d; } # Кеширование статики location ~* \.(jpg|jpeg|png|gif|ico|css|js|svg|woff|woff2|ttf|eot)$ { expires 1y; add_header Cache-Control "public, immutable"; } # Скрываем служебные файлы location ~ /\. { deny all; } location = /robots.txt { allow all; log_not_found off; access_log off; } location = /favicon.ico { log_not_found off; access_log off; } } tcp LISTEN 0 1024 0.0.0.0:443 0.0.0.0:* users:(("telemt",pid=147501,fd=56)) tcp LISTEN 0 511 127.0.0.1:8443 0.0.0.0:* users:(("nginx",pid=92765,fd=8),("nginx",pid=92763,fd=8)) tcp LISTEN 0 511 0.0.0.0:80 0.0.0.0:* users:(("nginx",pid=92765,fd=6),("nginx",pid=92763,fd=6)) tcp LISTEN 0 511 [::]:80 [::]:* users:(("nginx",pid=92765,fd=7),("nginx",pid=92763,fd=7)) ● nginx.service - A high performance web server and a reverse proxy server Loaded: loaded (/lib/systemd/system/nginx.service; enabled; vendor preset: enabled) Active: active (running) since Sun 2026-05-03 12:57:37 UTC; 48min ago Docs: man:nginx(8) Process: 92760 ExecStartPre=/usr/sbin/nginx -t -q -g daemon on; master_process on; (code=exited, status=0/SUCCESS) Process: 92762 ExecStart=/usr/sbin/nginx -g daemon on; master_process on; (code=exited, status=0/SUCCESS) Main PID: 92763 (nginx) Tasks: 2 (limit: 2234) Memory: 6.4M CPU: 1.656s CGroup:

Какую версию OS лучше поставить при перестановке? Ubuntu 22.04 или 24.04?

@AntenkaAI_bot я хочу обновить на VPS Ubuntu 22.04 на 26.04, установить GoTelegram и 3x-ui панель, X-ray, AWG 2.0 Как мне это сделать и какая последовательность действий

@AntenkaAI_bot есть минипк со свободным переключением linux/windows систем с виртуализацией, проводное и беспроводное подключение между основным компьютером, wifi-extender mercusys me1500x, основной роутер mr60x V2 (в нем куча функций, я не стал читать про все) - что можешь предложить?