Get your identity hidden online, your IP Address will be masked with our server IP. Also your connection will be encrypted.
Bypass your school, government or your office internet cencorship. Unblock any site and enjoy Internet Freedom.
If you connect to our VPN or SSH server, then your public ip address will be hidden behind our VPN server IP address.
Our VPS server has unlimited inbound outbound bandwidth for your bigger internet connection needs.
This is a free server for Trojan VPN, where this VPN has a good mechanism for bypassing GFW identification
Create a free trojan VPN account with TCP protocol and this is a safe and easy to use TCP TLS connection for you
Trojan-Go is a complete Trojan proxy implemented in the Go language, compatible with the Trojan protocol
No DDOS No Fraud No Hacking No Spam
Help you understand and features of Trojan VPN
Specific implementation of each tunnel protocol
Trojan-Go abstracts all protocols (including routing functions, etc.) into a tunnel (tunnel.Tunnel interface), and each tunnel can open both a server (tunnel.Server interface) and a client (tunnel.Client). Each server can delete and receive streams (tunnel.Conn) and packets (tunnel.PacketConn) from the underlying tunnel. Clients can tunnel to the underlying layer, creating streams and packets.
Each tunnel doesn't care what tunnel it is under, but every tunnel knows about the other tunnels above it.
All tunnels require an underlayer to provide flow or packet transport support, or both. All tunnels must provide streaming support to the top layer tunnel, but not necessarily packet transport.
Tunnels may have only servers, or only clients, or both. The second tunnel can be used as a transport tunnel between the client and the Trojan-Go server.
Trojan-Go uses smux for multiplexing. At the same time, the simplesocks protocol is implemented for proxy transmission.
When multiplexing is enabled, the client first initiates a TLS connection, using the normal trojan protocol format, but fills in 0x7f (protocol.Mux) in the Protocol commands section to identify this connection as a multiplexed connection (similar to http upgrade), and then the connection is managed by the smux client.
Once the server receives the request header, it is handed over to the smux server to parse all connection traffic. On each separate smux connection, use the simplesocks protocol (a trojan protocol with the authentication part removed) to indicate the destination of the proxy.
The SimpleSocks protocol is a simple proxy protocol with no authentication mechanism, basically a Trojan protocol with sha224 removed.
The purpose of using this protocol is to reduce overhead when multiplexing.
Multiplexed connections will only use this protocol if multiplexing is enabled. That is, SimpleSocks is always hosted by SMux.
SimpleSocks is even simpler than Socks5, below is the header structure.
Because HTTPS is transparent to the CDN when using the CDN for transit, the CDN can censor the content of Websocket transmissions.
The Trojan protocol itself is transmitted in clear text, so to ensure security, Shadowsocks AEAD encryption layer can be added to obscure traffic characteristics and ensure security.
If you are using a CDN provided by a carrier in China, be sure to enable AEAD encryption.
Once AEAD encryption is enabled, the traffic carried by Websocket will be encrypted by Shadowsocks AEAD.
Here are some advantages of using SSH Tunnel or VPN Tunnel.
By using a public network that controls data, SSH / VPN technology uses a work system by encrypting all data that passes through it.
With the encryption technology, data confidentiality can be more controlled.
Although there are parties who can tap data that passes over the internet in addition to the SSH / VPN line itself, but not necessarily able to read the data, because the data has been scrambled.
By implementing this encryption system, no one can access and read the data network contents easily.
When passing through the internet network, the data actually runs very far past various countries.
During the trip, various disturbances could occur in its contents, lost, damaged, manipulated by people who could not be moved.
In SSH / VPN technology is needed that can maintain the integrity of the data starting from the data sent until the data reaches the destination.
SSH / VPN technology has the ability to authenticate sending data sources to be received. SSH / VPN will check all incoming data and retrieve information from the data source.
Then, the address of the data source will be successfully completed, the authentication process was successful.
Thus, SSH / VPN guarantees all data sent and received from the source received. No data is falsified or sent by other parties.