Iptables是防火墙软件了而shadowsocks是一个基于python的轻量级socks代理软件了,下面我们来看看shadowsocks使用Iptables随机多端口方法.
 
　　Openwrt下配置iptables将shadowsocks连接随机DNAT到特定端口,代码如下:
 
　　iptables -t nat -A OUTPUT -p tcp –dport 5688 -m state –state NEW -m statistic –mode nth –every 4 –packet 0 -j DNAT –to-destination serverip:5688
　　iptables -t nat -A OUTPUT -p tcp –dport 5688 -m state –state NEW -m statistic –mode nth –every 4 –packet 1 -j DNAT –to-destination serverip:5689
　　iptables -t nat -A OUTPUT -p tcp –dport 5688 -m state –state NEW -m statistic –mode nth –every 4 –packet 2 -j DNAT –to-destination serverip:5690 //phpfensi.com
　　iptables -t nat -A OUTPUT -p tcp –dport 5688 -m state –state NEW -m statistic –mode nth –every 4 –packet 3 -j DNAT –to-destination serverip:5691

         #如果是分散的端口:
 
　　iptables -t nat -A PREROUTING -p tcp -m multiport –dports 3000,10000 -j DNAT –to-destination serverip:5688

    　服务器端将客户端连接的端口DNAT到shadowsocks监听的端口,代码如下:
 
　　iptables -t nat -A PREROUTING -p tcp –dport 5689:5691 -j DNAT –to-destination serverip:5688。