Setup Transparent Proxy with SS-redir, IPTables+IPSet, and Cloudflared

Setup SS Server & Client(Redir) Build SS-libev & Install Configure Server & Redir/Local See: https://github.com/shadowsocks/shadowsocks-libev Setup IPSet & IPTables Remove firewalld Configure CNZone IP Set Configure IPTables(NAT table) See: https://blog.chih.me/global-proxy-within-ipset-and-iptables.html Setup DNS-over-HTTPS: Cloudflared See: https://developers.cloudflare.com/1.1.1.1/dns-over-https/cloudflared-proxy/

Modifying SELinux Settings for Full Nginx Functionality

Temporarily Disabling SELinux for Nginx: # semanage permissive -a httpd_t so that systemctl start nginx like normally before. Or just try: when it complains: nginx: [emerg] open() “/etc/nginx/conf.d/www.conf” failed (13: Permission denied) in /etc/nginx/nginx.conf:29 which I had met 2 times. More details, see: https://www.nginx.com/blog/using-nginx-plus-with-selinux/