3.1 KiB
3.1 KiB
Oracle Cloud Console - Open Proxy Ports
Step-by-Step Instructions
Step 1: Find Your VCN
From the screenshot, you have multiple VCNs. We need to find which one your server2 instance uses.
Option A: Check from server2
ssh server2 'ip addr show ens3 | grep "inet "'
This will show the IP (e.g., 10.0.0.100), which matches VCN CIDR 10.0.0.0/16.
Option B: Check instance details
- Go to Compute → Instances
- Find your server2 instance
- Click on it
- Check the VCN or Subnet it's attached to
Step 2: Open the VCN
- Click on the VCN name (e.g., "vcn-20250609-0221") that matches your instance
- This opens the VCN details page
Step 3: Navigate to Security Lists
- In the VCN details page, look for "Security Lists" in the left sidebar or Resources section
- Click on "Security Lists"
- You'll see a list of security lists (usually "Default Security List for vcn-...")
Step 4: Edit the Security List
- Click on the Default Security List (or the one attached to your subnet)
- Click "Edit All Rules" or "Add Ingress Rules"
Step 5: Add Ingress Rules
Add these 4 rules (one for each port):
Rule 1: HTTP Proxy (7890)
- Source Type: CIDR
- Source CIDR:
0.0.0.0/0(or your IP for better security) - IP Protocol: TCP
- Destination Port Range:
7890 - Description:
Clash HTTP Proxy
Rule 2: SOCKS5 Proxy (7891)
- Source Type: CIDR
- Source CIDR:
0.0.0.0/0 - IP Protocol: TCP
- Destination Port Range:
7891 - Description:
Clash SOCKS5 Proxy
Rule 3: Mixed Proxy (7892)
- Source Type: CIDR
- Source CIDR:
0.0.0.0/0 - IP Protocol: TCP
- Destination Port Range:
7892 - Description:
Clash Mixed Proxy
Rule 4: Web UI (9090)
- Source Type: CIDR
- Source CIDR:
0.0.0.0/0 - IP Protocol: TCP
- Destination Port Range:
9090 - Description:
Clash Web UI
Step 6: Save
- Click "Save Changes" or "Add Ingress Rules"
- Wait 30-60 seconds for rules to propagate
Step 7: Test
After adding rules, test from your iPhone:
- Open Shadowrocket
- Add server:
158.101.140.85:7890 - Username:
proxy_user - Password:
Cs7yBx1Rh9oK - Test connection
Security Note
Using 0.0.0.0/0 allows access from anywhere. For better security:
- Use your home IP:
YOUR_IP/32 - Or use a VPN IP range
- The proxy has authentication, so it's somewhat protected
Quick Navigation Path
- Networking → Virtual Cloud Networks
- Click your VCN (the one with 10.0.0.0/16)
- Security Lists (left sidebar or Resources)
- Click Default Security List
- Add Ingress Rules
- Add 4 rules (ports 7890, 7891, 7892, 9090)
- Save
Troubleshooting
Can't find Security Lists?
- Make sure you're in the VCN details page
- Look in the left sidebar under "Resources"
- Or check the "Resources" tab in the main content area
Rules not working?
- Wait 1-2 minutes for propagation
- Check that you added rules to the correct Security List
- Verify the Security List is attached to your subnet
- Check instance's subnet assignment