Configuration Overview¶
Tip
Before using the configuration file, it is recommended to understand some basic concepts and architecture, which will be very helpful for understanding the configuration file.
You can use -O in command line mode to output the current configuration at any time.
Default Configuration File
If neither -C nor -L parameters are specified, GOST will look for gost.yml or gost.json file in the following locations: current working directory, /etc/gost/, $HOME/gost/, and use it as the configuration file if it exists.
There are two ways to run GOST: run directly in the command line, and run through a configuration file. The command-line mode is sufficient for most use cases, such as simply starting a proxy or forwarding service. If you need more elaborate configuration, you can use the configuration file. The configuration file supports YAML and JSON formats.
For detailed configuration specification, please refer to:
There is a conversion relationship between the command line mode and the configuration file, for example:
The corresponding configuration file:
services:
- name: service-0
addr: "localhost:8080"
handler:
type: http
chain: chain-0
auth:
username: gost
password: gost
metadata:
foo: bar
listener:
type: tcp
metadata:
foo: bar
chains:
- name: chain-0
hops:
- name: hop-0
nodes:
- name: node-0
addr: 192.168.1.1:8080
connector:
type: socks5
auth:
username: gost
password: gost
metadata:
bar: baz
dialer:
type: tls
metadata:
bar: baz
{
"services": [
{
"name": "service-0",
"addr": "localhost:8080",
"handler": {
"type": "http",
"chain": "chain-0",
"auth": {
"username": "gost",
"password": "gost"
},
"metadata": {
"foo": "bar"
}
},
"listener": {
"type": "tcp",
"metadata": {
"foo": "bar"
}
}
}
],
"chains": [
{
"name": "chain-0",
"hops": [
{
"name": "hop-0",
"nodes": [
{
"name": "node-0",
"addr": "192.168.1.1:8080",
"connector": {
"type": "socks5",
"auth": {
"username": "gost",
"password": "gost"
},
"metadata": {
"bar": "baz"
}
},
"dialer": {
"type": "tls",
"metadata": {
"bar": "baz"
}
}
}
]
}
]
}
]
}
-
All
-Lparameters are converted to a list ofservicesin order, each service will automatically generate a namenameattribute.- The scheme will be parsed as
handlerandlistener, for examplehttpwill be converted to http handler and tcp listener. - The
localhost:8080corresponds to the fieldaddrof the service. - The authentication
gost:gostis converted tohandler.auth. - The option
foo=baris converted tohandler.metadata和listener.metadata. - If a forwarding chain exists, it is referenced by
handler.chain(via thenamefield).
- The scheme will be parsed as
-
If there are one or more
-Fparameters, a forwarding chain is generated in thechainslist, a-Fcorresponds to an item in thehopslist of the forwarding chain, and the-Fparameters are converted in order to the nodes in the corresponding hop.- The scheme will be parsed as
connectoranddialer, for examplesocks5+tlswill be converted to socks5 connector and tls dialer. - The
192.168.1.1:8080corresponds to the node fieldaddr. - The authentication
gost:gostis converted toconnector.auth. - The option
foo=baris converted toconnector.metadataanddialer.metadata
- The scheme will be parsed as
System Service¶
GOST supports running as a system service
Windows¶
Create a Windows service through the sc command:
Linux¶
Create /etc/systemd/system/gost.service file:
[Unit]
Description=GO Simple Tunnel
After=network.target
Wants=network.target
[Service]
Type=simple
ExecStart=/usr/local/bin/gost -L=:8080
Restart=always
[Install]
WantedBy=multi-user.target
Enable service:
Start service: