mirror of
https://github.com/schroinerxy/Sing-box.git
synced 2026-06-22 04:35:49 +08:00
eooce
296 lines
12 KiB
Bash
296 lines
12 KiB
Bash
#!/bin/bash
|
|
# 将此文件放到vps,填写以下服务器配置后bash keep_00.sh运行即可,如果需要在青龙面板运行,注释或删除此文件里的31至76行,保留中间的第58行
|
|
# 请将哪吒面板上agent名字以:S1,S2,S3,S4....形式命名, 也可以修改112行里的大写S为其他前缀
|
|
SCRIPT_PATH="/root/keep_00.sh" # 脚本路径
|
|
NEZHA_URL="http://nezha.abcgefg.com" # 哪吒面板地址
|
|
API_TOKEN="RtzwTHlXjG2RXHaVW5JUBMcO2DR9OI123" # 哪吒面板api token
|
|
|
|
# Telegram消息提醒配置(可选,不需要留空即可)
|
|
TG_CHAT_ID="12345678" # 替换为你的TG chat_id
|
|
TG_BOT_TOKEN="" # 替换为你的TG机器人token
|
|
# 以下配置不需要可以留空或保持默认
|
|
export UUID=${UUID:-'bc97f674-c578-4940-9234-0a1da46041b0'} # UUID
|
|
export CFIP=${CFIP:-'www.visa.com.tw'} # 优选域名或优选ip
|
|
export CFPORT=${CFIPPORT:-'443'} # 优选域名或优选ip对应端口
|
|
export SUB_TOKEN=${SUB_TOKEN:-${UUID:0:8}} # 订阅token
|
|
|
|
# serv00或ct8服务器及端口配置,请按照以下格式填写,每个变量之间用英文输入法状态下冒号分隔
|
|
declare -A servers=( # 账号:密码:tcp端口:udp1端口:udp2端口:哪吒客户端域名:哪吒agent端口:哪吒密钥:argo域名:Argo隧道json或token
|
|
["s0.serv00.com"]='abcd:abd12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s0.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s1.serv00.com"]='abcd:dbc12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s1.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s2.serv00.com"]='abcd:avd12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s2.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s3.serv00.com"]='abcd:dss12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s3.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PfRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s4.serv00.com"]='abcd:sds12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s4.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s5.serv00.com"]='abcd:dsd12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s5.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s6.serv00.com"]='abcd:dsd12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s6.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s7.serv00.com"]='abcd:dsd12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s7.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
["s8.serv00.com"]='abcd:dss12345678:1234:2345:3455:nezha.abcd.com:5555:c234dfddsddd:s8.2go.com:{"AccountTag":"8b9724080e55e70370fb74287922f31b","TunnelSecret":"C+OA5/LjJz9UHZ0vOkCC5PVRkvXiPhrWNcnxJBrfTPc=","TunnelID":"28125b91-34309-44d2-94be-b5e718944dad"}'
|
|
# 添加更多服务器......
|
|
)
|
|
|
|
# 定义颜色
|
|
red() { echo -e "\e[1;91m$1\033[0m"; }
|
|
green() { echo -e "\e[1;32m$1\033[0m"; }
|
|
yellow() { echo -e "\e[1;33m$1\033[0m"; }
|
|
purple() { echo -e "\e[1;35m$1\033[0m"; }
|
|
|
|
export TERM=xterm
|
|
export DEBIAN_FRONTEND=noninteractive
|
|
install_packages() {
|
|
if [ -f /etc/debian_version ]; then
|
|
package_manager="apt-get install -y"
|
|
elif [ -f /etc/redhat-release ]; then
|
|
package_manager="yum install -y"
|
|
elif [ -f /etc/fedora-release ]; then
|
|
package_manager="dnf install -y"
|
|
elif [ -f /etc/alpine-release ]; then
|
|
package_manager="apk add"
|
|
else
|
|
red "不支持的系统架构!"
|
|
exit 1
|
|
fi
|
|
$package_manager sshpass curl netcat-openbsd jq cron >/dev/null 2>&1 &
|
|
}
|
|
install_packages
|
|
clear
|
|
|
|
# 结束上一次运行的残留进程(排除当前进程)
|
|
bash -c 'ps aux | grep -E "/bin/bash /root/keep.sh|sshpass|ssh|curl" | grep -v "pts/" | awk "\$2 != \"'$$'\" {print \$2}" | xargs kill -9 > /dev/null 2>&1' >/dev/null 2>&1 &
|
|
|
|
# 添加定时任务
|
|
add_cron_job() {
|
|
if [ -f /etc/alpine-release ]; then
|
|
if ! command -v crond >/dev/null 2>&1; then
|
|
apk add --no-cache cronie bash >/dev/null 2>&1 &
|
|
rc-update add crond && rc-service crond start
|
|
fi
|
|
fi
|
|
# 检查定时任务是否已经存在
|
|
if ! crontab -l 2>/dev/null | grep -q "$SCRIPT_PATH"; then
|
|
(crontab -l 2>/dev/null; echo "*/2 * * * * /bin/bash $SCRIPT_PATH >> /root/keep.log 2>&1") | crontab -
|
|
green "已添加计划任务,每两分钟执行一次"
|
|
else
|
|
purple "计划任务已存在,跳过添加计划任务"
|
|
fi
|
|
}
|
|
add_cron_job
|
|
|
|
# 检查 TCP 端口是否通畅
|
|
check_tcp_port() {
|
|
local host=$1
|
|
local port=$2
|
|
nc -z -w 3 "$host" "$port" &> /dev/null
|
|
return $?
|
|
}
|
|
|
|
# 检查 Argo 隧道是否在线
|
|
check_argo_tunnel() {
|
|
local argo_domain=$1
|
|
if [ -z "$argo_domain" ]; then
|
|
return 1
|
|
else
|
|
http_code=$(curl -o /dev/null -s -w "%{http_code}\n" "https://$argo_domain")
|
|
if [ "$http_code" -eq 404 ]; then
|
|
return 0
|
|
else
|
|
return 1
|
|
fi
|
|
fi
|
|
}
|
|
|
|
# 检查哪吒 agent 是否在线
|
|
check_nezha_agent() {
|
|
NEZHA_API="$NEZHA_URL/api/v1/server/list"
|
|
response=$(curl -s -H "Authorization: $API_TOKEN" "$NEZHA_API")
|
|
|
|
if [ $? -ne 0 ]; then
|
|
red "请求失败,请检查您的哪吒URL或api_token"
|
|
return 1
|
|
fi
|
|
|
|
local current_time=$(date +%s)
|
|
local target_agent="S${1}"
|
|
local agent_found=false
|
|
local agent_online=false
|
|
|
|
while read -r server; do
|
|
server_name=$(echo "$server" | jq -r '.name')
|
|
last_active=$(echo "$server" | jq -r '.last_active')
|
|
|
|
if [[ $server_name == $target_agent ]]; then
|
|
agent_found=true
|
|
if [ $(( current_time - last_active )) -le 30 ]; then
|
|
agent_online=true
|
|
break
|
|
fi
|
|
fi
|
|
done < <(echo "$response" | jq -c '.result[]')
|
|
|
|
if ! $agent_found; then
|
|
red "未找到 agent: $target_agent"
|
|
return 1
|
|
elif $agent_online; then
|
|
return 0
|
|
else
|
|
return 1
|
|
fi
|
|
}
|
|
|
|
# 发送提醒消息到TG
|
|
send_telegram_message() {
|
|
local message="$1"
|
|
if [ -n "$TG_BOT_TOKEN" ] && [ -n "$TG_CHAT_ID" ]; then
|
|
curl -s -X POST "https://api.telegram.org/bot$TG_BOT_TOKEN/sendMessage" \
|
|
-d "chat_id=$TG_CHAT_ID" \
|
|
-d "text=$message" \
|
|
-d "parse_mode=HTML" > /dev/null
|
|
fi
|
|
}
|
|
|
|
# 执行远程命令
|
|
run_remote_command() {
|
|
local host=$1
|
|
local ssh_user=$2
|
|
local ssh_pass=$3
|
|
local tcp_port=$4
|
|
local udp1_port=$5
|
|
local udp2_port=$6
|
|
local nezha_server=$7
|
|
local nezha_port=$8
|
|
local nezha_key=$9
|
|
local argo_domain=${10}
|
|
local argo_auth=${11}
|
|
|
|
remote_command="SUB_TOKEN=$SUB_TOKEN UUID=$UUID NEZHA_SERVER=$nezha_server NEZHA_PORT=$nezha_port NEZHA_KEY=$nezha_key ARGO_DOMAIN=$argo_domain ARGO_AUTH='$argo_auth' CFIP=$CFIP CFPORT=$CFPORT bash <(curl -Ls https://raw.githubusercontent.com/eooce/sing-box/main/sb_00.sh)"
|
|
|
|
sshpass -p "$ssh_pass" ssh -o StrictHostKeyChecking=no -o ConnectTimeout=60 "$ssh_user@$host" "$remote_command"
|
|
}
|
|
|
|
# 如果3次检测失败,发送消息到TG,连接 SSH 并执行远程命令
|
|
connect_ssh() {
|
|
if [ $tcp_attempt -ge 3 ] || [ $argo_attempt -ge 3 ] || [ $nezha_attempt -ge 3 ]; then
|
|
# 构建告警消息
|
|
local alert_message="⚠️ Serv00异常警报
|
|
|
|
📅 时间: $time
|
|
👤 账户: $ssh_user
|
|
🖥️ 服务器: $host"
|
|
|
|
if [ $tcp_attempt -ge 3 ]; then
|
|
alert_message="$alert_message
|
|
❌ 检测到TCP端口 $tcp_port 不通"
|
|
fi
|
|
if [ $argo_attempt -ge 3 ]; then
|
|
alert_message="$alert_message
|
|
❌ 检测到Argo隧道 $argo_domain 离线"
|
|
fi
|
|
if [ $nezha_attempt -ge 3 ]; then
|
|
alert_message="$alert_message
|
|
❌ 检测到哪吒Agent离线"
|
|
fi
|
|
|
|
# 发送告警消息
|
|
send_telegram_message "$alert_message"
|
|
|
|
yellow "$time 多次检测失败,尝试通过SSH连接并远程执行命令 服务器: $host 账户: $ssh_user"
|
|
|
|
ssh_output=$(sshpass -p "$ssh_pass" ssh -o StrictHostKeyChecking=no -o ConnectTimeout=60 "$ssh_user@$host" -q exit 2>&1)
|
|
|
|
# 检查账户是否被封
|
|
if echo "$ssh_output" | grep -q "HAS BEEN BLOCKED"; then
|
|
red "$time 账户已被封禁 服务器: $host 账户: $ssh_user"
|
|
# 发送账户封禁提醒
|
|
send_telegram_message "🚫 账户已被封锁
|
|
|
|
👤 账户: $ssh_user
|
|
🖥️ 服务器: $host
|
|
⚠️ 请尽快移除keep文件中封禁的账户"
|
|
return 0
|
|
fi
|
|
|
|
# 检查 SSH 连接是否成功
|
|
if [ $? -eq 0 ]; then
|
|
green "$time SSH远程连接成功 服务器: $host 账户 : $ssh_user"
|
|
output=$(run_remote_command "$host" "$ssh_user" "$ssh_pass" "$tcp_port" "$udp1_port" "$udp2_port" "$nezha_server" "$nezha_port" "$nezha_key" "$argo_domain" "$argo_auth")
|
|
yellow "远程命令执行结果:\n"
|
|
echo "$output"
|
|
|
|
# 发送服务恢复消息
|
|
send_telegram_message "✅ Serv00服务已恢复
|
|
|
|
👤 账户: $ssh_user
|
|
🖥️ 服务器: $host
|
|
📡 自适应节点订阅链接:
|
|
https://${ssh_user}.serv00.net/${SUB_TOKEN}"
|
|
return 0
|
|
else
|
|
red "$time 连接失败,请检查你的账户密码 服务器: $host 账户: $ssh_user"
|
|
# 发送失败通知
|
|
send_telegram_message "❌ SSH连接失败
|
|
|
|
👤 账户: $ssh_user
|
|
🖥️ 服务器: $host
|
|
⚠️ 请检查你的账户密码"
|
|
return 0
|
|
fi
|
|
fi
|
|
}
|
|
|
|
|
|
# 循环遍历服务器列表检测
|
|
for host in "${!servers[@]}"; do
|
|
IFS=':' read -r ssh_user ssh_pass tcp_port udp1_port udp2_port nezha_server nezha_port nezha_key argo_domain argo_auth <<< "${servers[$host]}"
|
|
|
|
nezha_agent_name=${host%%.*}
|
|
nezha_index=${nezha_agent_name:1}
|
|
|
|
tcp_attempt=0
|
|
argo_attempt=0
|
|
nezha_attempt=0
|
|
max_attempts=3
|
|
time=$(TZ="Asia/Hong_Kong" date +"%Y-%m-%d %H:%M")
|
|
|
|
# 检查 Nezha agent
|
|
while [ $nezha_attempt -lt $max_attempts ]; do
|
|
if check_nezha_agent "$nezha_index"; then
|
|
green "$time Nezha agent在线 服务器: $host 账户: $ssh_user"
|
|
nezha_attempt=0
|
|
break
|
|
else
|
|
red "$time Nezha agent离线 服务器: $host 账户: $ssh_user"
|
|
sleep 5
|
|
nezha_attempt=$((nezha_attempt+1))
|
|
connect_ssh
|
|
fi
|
|
done
|
|
|
|
# 检查 TCP 端口
|
|
while [ $tcp_attempt -lt $max_attempts ]; do
|
|
if check_tcp_port "$host" "$tcp_port"; then
|
|
green "$time TCP端口${tcp_port}通畅 服务器: $host 账户: $ssh_user"
|
|
tcp_attempt=0
|
|
break
|
|
else
|
|
red "$time TCP端口${tcp_port}不通 服务器: $host 账户: $ssh_user"
|
|
sleep 5
|
|
tcp_attempt=$((tcp_attempt+1))
|
|
connect_ssh
|
|
fi
|
|
done
|
|
|
|
# # 检查 Argo 隧道
|
|
while [ $argo_attempt -lt $max_attempts ]; do
|
|
if check_argo_tunnel "$argo_domain"; then
|
|
green "$time Argo 隧道在线 Argo域名: $argo_domain 账户: $ssh_user\n"
|
|
argo_attempt=0
|
|
break
|
|
else
|
|
red "$time Argo 隧道离线 Argo域名: $argo_domain 账户: $ssh_user"
|
|
sleep 5
|
|
argo_attempt=$((argo_attempt+1))
|
|
connect_ssh
|
|
fi
|
|
done
|
|
|
|
done
|