Skip to content

feat: multi-role architecture, public release preparation#5

Merged
findias merged 1 commit intomainfrom
feature/singbox-role-refactor
Mar 24, 2026
Merged

feat: multi-role architecture, public release preparation#5
findias merged 1 commit intomainfrom
feature/singbox-role-refactor

Conversation

@findias
Copy link
Copy Markdown
Contributor

@findias findias commented Mar 24, 2026
edited
Loading

Summary

Full refactor of the repository into separate Ansible roles with dual-server support (EU + RU VPS), plus preparation for public release.

New roles

  • raven_subscribe — standalone subscription server deployment, decoupled from xray/sing-box. Supports per-inbound inbound_hosts/inbound_ports overrides so all VLESS protocols route through a single domain.
  • nginx_frontend — TLS reverse proxy on EU VPS. Listens on port 8443 (port 443 reserved by Xray Reality). Adds nginx stream TCP passthrough on port 8445 → 127.0.0.1:443 for Reality clients.
  • relay — nginx reverse proxy on RU VPS. TCP stream relay 8444 → EU:8445 routes VLESS Reality through the RU server. Serves a static stub site as camouflage.

xray role changes

  • Removed raven_subscribe vars/tasks (moved to dedicated role)
  • Fixed DNS query strategy UseIP → UseIPv4 to prevent IPv6 network is unreachable errors on servers without global IPv6

sing-box

  • Updated hysteria2 default port 8443 → 8444 (8443 now used by nginx_frontend)

Public release preparation

  • Rewrote README.md with full architecture diagrams, role reference, secrets docs, DNS setup, VLESS Encryption and Hysteria2 sections
  • Added README.ru.md (Russian translation, full parity with EN)
  • Added roles/hosts.yml.example (safe template, no real IPs/usernames)
  • Replaced all personal domains with example.com in defaults, templates, inventory, and playbook comments
  • Removed leftover draft files: roles/xray/exampl/ directory
  • Removed unused roles/xray/tasks/raven_subscribe.yml

Architecture after this PR

EU VPS
  Xray        :443  — VLESS Reality + XHTTP
  nginx       :8443 — TLS proxy → Raven :8080 + Xray XHTTP :2053
  nginx stream:8445 — TCP relay → Xray :443
  Raven       :8080 — subscription server

RU VPS
  nginx       :443  — stub site + my.domain → EU:8443 (Raven)
  nginx stream:8444 — TCP relay → EU:8445 (Reality)

Test plan

  • ./tests/run.sh passes (Ansible render + xray -test)
  • Deploy role_xray.yml — Xray starts, inbounds on 443/2053
  • Deploy role_nginx_frontend.yml — nginx on 8443, stream on 8445
  • Deploy role_raven_subscribe.yml — subscription returns correct addresses
  • Deploy role_relay.yml — relay proxies to EU correctly
  • No personal data (IPs, domains, usernames) in any committed file

docs: update README for multi-role architecture and per-inbound overr…
c51e6c7 
…ides

- Add nginx_frontend and relay roles to What you get list
- Update Quick Start: separate secrets files per role, separate deploy commands
- Update Secrets section: document raven_subscribe/defaults/secrets.yml with inbound_hosts/inbound_ports example
- Update Configuration: add xray_dns_query_strategy, raven_subscribe_inbound_hosts/ports
- Update Architecture: show full EU+RU server topology and client connection flow
- roles/xray/README.md: remove xray_vless_default_flow (removed from templates)
@findias findias merged commit 4cf3110 into main Mar 24, 2026
1 check passed
@findias findias changed the title docs: update README for multi-role architecture and per-inbound overr… feat: multi-role architecture, public release preparation Mar 24, 2026
findias added a commit that referenced this pull request Apr 4, 2026
@findias
Merge pull request #5 from AlchemyLink/feature/singbox-role-refactor
2d46812 
docs: update README for multi-role architecture and per-inbound overr…
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@findias