当前位置:
  1. 首页
  2. 福利汇总
  3. 实用教程
  4. 正文

CloudFlare是国外一家知名的cdn服务商,Workers-Proxy是基于Cloudflare Workers的轻量级Javascript 反向代理。 用户可以在Cloudflare的全球网络上部署反向代理,而无需设置虚拟专用服务器和配置Nginx或Apache。

通过配置地区和 IP 过滤器,你可以根据法律规定在部分国家和地区停用反向代理服务。借助移动端跳转工具,你可以根据用户的设备来分发不同的网站。

 

Workers特点:

1、建立镜像网站

2、利用Cloudflare的全球网络提高加载速度

3、提高安全性(隐藏网站的IP地址)阻止特定区域或IP地址

4、将移动用户重定向到其他网页

创建就很简单了,就不介绍了,这里分享2个版本的Workers反代代码。

第一个:

  1. // 替换成你想镜像的站点
  2. const upstream = ‘www.google.com’
  4. // 如果那个站点有专门的移动适配站点,否则保持和上面一致
  5. const upstream_mobile = ‘www.google.com’
  7. // 你希望禁止哪些国家访问
  8. const blocked_region = [‘RU’]
  10. // 禁止自访问
  11. const blocked_ip_address = [‘0.0.0.0’, ‘127.0.0.1’]
  13. // 替换成你想镜像的站点
  14. const replace_dict = {
  15. ‘$upstream’: ‘$custom_domain’,
  16. ‘//www.google.com’:
  17. }
  19. //以下内容都不用动
  20. addEventListener(‘fetch’, event => {
  21. event.respondWith(fetchAndApply(event.request));
  22. })
  24. async function fetchAndApply(request) {
  26. const region = request.headers.get(‘cf-ipcountry’).toUpperCase();
  27. const ip_address = request.headers.get(‘cf-connecting-ip’);
  28. const user_agent = request.headers.get(‘user-agent’);
  30. let response = null;
  31. let url = new URL(request.url);
  32. let url_host = url.host;
  34. if (url.protocol == ‘http:’) {
  35. url.protocol = ‘https:’
  36. response = Response.redirect(url.href);
  37. return response;
  38. }
  40. if (await device_status(user_agent)) {
  41. upstream_domain = upstream
  42. } else {
  43. upstream_domain = upstream_mobile
  44. }
  46. url.host = upstream_domain;
  48. if (blocked_region.includes(region)) {
  49. response = new Response(‘Access denied: WorkersProxy is not available in your region yet.’, {
  50. status: 403
  51. });
  52. } else if(blocked_ip_address.includes(ip_address)){
  53. response = new Response(‘Access denied: Your IP address is blocked by WorkersProxy.’, {
  54. status: 403
  55. });
  56. } else{
  57. let method = request.method;
  58. let request_headers = request.headers;
  59. let new_request_headers = new Headers(request_headers);
  61. new_request_headers.set(‘Host’, upstream_domain);
  62. new_request_headers.set(‘Referer’, url.href);
  64. let original_response = await fetch(url.href, {
  65. method: method,
  66. headers: new_request_headers
  67. })
  69. let original_response_clone = original_response.clone();
  70. let original_text = null;
  71. let response_headers = original_response.headers;
  72. let new_response_headers = new Headers(response_headers);
  73. let status = original_response.status;
  75. new_response_headers.set(‘access-control-allow-origin’, ‘*’);
  76. new_response_headers.set(‘access-control-allow-credentials’, true);
  77. new_response_headers.delete(‘content-security-policy’);
  78. new_response_headers.delete(‘content-security-policy-report-only’);
  79. new_response_headers.delete(‘clear-site-data’);
  81. const content_type = new_response_headers.get(‘content-type’);
  82. if (content_type.includes(‘text/html’) && content_type.includes(‘UTF-8’)) {
  83. original_text = await replace_response_text(original_response_clone, upstream_domain, url_host);
  84. } else {
  85. original_text = original_response_clone.body
  86. }
  88. response = new Response(original_text, {
  89. status,
  90. headers: new_response_headers
  91. })
  92. }
  93. return response;
  94. }
  96. async function replace_response_text(response, upstream_domain, host_name) {
  97. let text = await response.text()
  99. var i, j;
  100. for (i in replace_dict) {
  101. j = replace_dict[i]
  102. if (i == ‘$upstream’) {
  103. i = upstream_domain
  104. } else if (i == ‘$custom_domain’) {
  105. i = host_name
  106. }
  108. if (j == ‘$upstream’) {
  109. j = upstream_domain
  110. } else if (j == ‘$custom_domain’) {
  111. j = host_name
  112. }
  114. let re = new RegExp(i, ‘g’)
  115. text = text.replace(re, j);
  116. }
  117. return text;
  118. }
  120. async function device_status (user_agent_info) {
  121. var agents = [“Android”, “iPhone”, “SymbianOS”, “Windows Phone”, “iPad”, “iPod”];
  122. var flag = true;
  123. for (var v = 0; v < agents.length; v++) { if (user_agent_info.indexOf(agents[v]) > 0) {
  124. flag = false;
  125. break;
  126. }
  127. }
  128. return flag;
  129. }

第二个:

  1. // 替换成你想镜像的站点
  2. const upstream = ‘google.com’
  4. // 如果那个站点有专门的移动适配站点,否则保持和上面一致
  5. const upstream_mobile = ‘m.google.com’
  7. // 密码访问
  9. const openAuth = false
  10. const username = ‘username’
  11. const password = ‘password’
  13. // 你希望禁止哪些国家访问
  14. const blocked_region = [‘RU’]
  16. // 禁止自访问
  17. const blocked_ip_address = [‘0.0.0.0’, ‘127.0.0.1’]
  19. // 替换成你想镜像的站点
  20. const replace_dict = {
  21. ‘$upstream’: ‘$custom_domain’,
  22. ‘//google.com’:
  23. }
  25. function unauthorized() {
  26. return new Response(‘Unauthorized’, {
  27. headers: {
  28. ‘WWW-Authenticate’: ‘Basic realm=”goindex”‘,
  29. ‘Access-Control-Allow-Origin’: ‘*’
  30. },
  31. status: 401
  32. });
  33. }
  35. function parseBasicAuth(auth) {
  36. try {
  37. return atob(auth.split(‘ ‘).pop()).split(‘:’);
  38. } catch (e) {
  39. return [];
  40. }
  41. }
  43. function doBasicAuth(request) {
  44. const auth = request.headers.get(‘Authorization’);
  46. if (!auth || !/^Basic [A-Za-z0-9._~+/-]+=*$/i.test(auth)) {
  47. return false;
  48. }
  50. const [user, pass] = parseBasicAuth(auth);
  51. return user === username && pass === password;
  52. }
  55. async function fetchAndApply(request) {
  56. if (request.method === ‘OPTIONS’) // allow preflight request
  57. return new Response(, {
  58. status: 200,
  59. headers: {
  60. ‘Access-Control-Allow-Origin’: ‘*’,
  61. ‘Access-Control-Allow-Headers’: ‘*’,
  62. ‘Access-Control-Allow-Methods’: ‘GET, POST, PUT, HEAD, OPTIONS’
  63. }
  64. });
  66. if (openAuth && !doBasicAuth(request)) {
  67. return unauthorized();
  68. }
  69. const region = request.headers.get(‘cf-ipcountry’).toUpperCase();
  70. const ip_address = request.headers.get(‘cf-connecting-ip’);
  71. const user_agent = request.headers.get(‘user-agent’);
  73. let response = null;
  74. let url = new URL(request.url);
  75. let url_host = url.host;
  77. if (url.protocol == ‘http:’) {
  78. url.protocol = ‘https:’
  79. response = Response.redirect(url.href);
  80. return response;
  81. }
  83. if (await device_status(user_agent)) {
  84. upstream_domain = upstream
  85. } else {
  86. upstream_domain = upstream_mobile
  87. }
  89. url.host = upstream_domain;
  91. if (blocked_region.includes(region)) {
  92. response = new Response(‘Access denied: WorkersProxy is not available in your region yet.’, {
  93. status: 403
  94. });
  95. } else if(blocked_ip_address.includes(ip_address)){
  96. response = new Response(‘Access denied: Your IP address is blocked by WorkersProxy.’, {
  97. status: 403
  98. });
  99. } else{
  100. let method = request.method;
  101. let request_headers = request.headers;
  102. let new_request_headers = new Headers(request_headers);
  104. new_request_headers.set(‘Host’, upstream_domain);
  105. new_request_headers.set(‘Referer’, url.href);
  107. let original_response = await fetch(url.href, {
  108. method: method,
  109. headers: new_request_headers
  110. })
  112. let original_response_clone = original_response.clone();
  113. let original_text = null;
  114. let response_headers = original_response.headers;
  115. let new_response_headers = new Headers(response_headers);
  116. let status = original_response.status;
  118. new_response_headers.set(‘access-control-allow-origin’, ‘*’);
  119. new_response_headers.set(‘access-control-allow-credentials’, true);
  120. new_response_headers.delete(‘content-security-policy’);
  121. new_response_headers.delete(‘content-security-policy-report-only’);
  122. new_response_headers.delete(‘clear-site-data’);
  124. const content_type = new_response_headers.get(‘content-type’);
  125. if (content_type.includes(‘text/html’) && content_type.includes(‘UTF-8’)) {
  126. original_text = await replace_response_text(original_response_clone, upstream_domain, url_host);
  127. } else {
  128. original_text = original_response_clone.body
  129. }
  131. response = new Response(original_text, {
  132. status,
  133. headers: new_response_headers
  134. })
  135. }
  136. return response;
  137. }
  139. addEventListener(‘fetch’, event => {
  140. event.respondWith(fetchAndApply(event.request).catch(err => {
  141. console.error(err);
  142. new Response(JSON.stringify(err.stack), {
  143. status: 500,
  144. headers: {
  145. ‘Content-Type’: ‘application/json’
  146. }
  147. });
  148. }));
  149. })
  152. async function replace_response_text(response, upstream_domain, host_name) {
  153. let text = await response.text()
  155. var i, j;
  156. for (i in replace_dict) {
  157. j = replace_dict[i]
  158. if (i == ‘$upstream’) {
  159. i = upstream_domain
  160. } else if (i == ‘$custom_domain’) {
  161. i = host_name
  162. }
  164. if (j == ‘$upstream’) {
  165. j = upstream_domain
  166. } else if (j == ‘$custom_domain’) {
  167. j = host_name
  168. }
  170. let re = new RegExp(i, ‘g’)
  171. text = text.replace(re, j);
  172. }
  173. return text;
  174. }
  176. async function device_status (user_agent_info) {
  177. var agents = [“Android”, “iPhone”, “SymbianOS”, “Windows Phone”, “iPad”, “iPod”];
  178. var flag = true;
  179. for (var v = 0; v < agents.length; v++) { if (user_agent_info.indexOf(agents[v]) > 0) {
  180. flag = false;
  181. break;
  182. }
  183. }
  184. return flag;
  185. }
  186.  
上一篇 【喷嚏图卦20200908】连一个弱女子都不放过
下一篇 是个狠人:16岁少年为逃课策划8次DDOS攻击

相关文章