PHP 使用 curl 模拟 ip 和来源进行访问

对于限制了 ip 和来源的网站，使用正常的访问方式是无法访问的。本文将介绍一种方法，使用 php 的 curl 类实现模拟 ip 和来源，访问那些限制了 ip 和来源的网站。

server.php

<?php

$client_ip = getip();
$referer = getreferer();

$allow_ip = '192.168.1.100';
$allow_referer = 'https://blog.oioweb.cn';

if($client_ip==$allow_ip && strpos($referer, $allow_referer)===0){
    echo 'allow access';
}else{
    echo 'deny access';
}


// 获取访问者 ip
function getip(){
    if(!empty($_SERVER['HTTP_CLIENT_IP'])){
        $cip = $_SERVER['HTTP_CLIENT_IP'];
    }elseif(!empty($_SERVER['HTTP_X_FORWARDED_FOR'])){
        $cip = $_SERVER['HTTP_X_FORWARDED_FOR'];
    }elseif(!empty($_SERVER['REMOTE_ADDR'])){
        $cip = $_SERVER['REMOTE_ADDR'];
    }else{
        $cip = '';
    }
    return $cip;
}

// 获取访问者来源
function getreferer(){
    if(isset($_SERVER['HTTP_REFERER'])){
        return $_SERVER['HTTP_REFERER'];
    }
    return '';
}

?>

使用 curl 正常访问

<?php
function doCurl($url, $data=array(), $header=array(), $timeout=30){

    $ch = curl_init();
    curl_setopt($ch, CURLOPT_URL, $url);
    curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
    curl_setopt($ch, CURLOPT_POST, true);
    curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($data));
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); 
    curl_setopt($ch, CURLOPT_TIMEOUT, $timeout);

    $response = curl_exec($ch);

    if($error=curl_error($ch)){
        die($error);
    }

    curl_close($ch);

    return $response;

}

// 调用
$url = 'https://blog.oioweb.cn/data.php';
$response = doCurl($url);
echo $response;
?>

返回 deny access

使用 curl 模拟 ip 和来源进行访问

1. 模拟来源

curl_setopt($ch, CURLOPT_REFERER, '来源');

2. 模拟 ip

curl_setopt($ch, CURLOPT_HTTPHEADER, array('CLIENT-IP: 模拟 ip','X-FORWARDED-FOR: 模拟 ip'));

完整代码如下：

<?php
function doCurl($url, $data=array(), $header=array(), $referer='', $timeout=30){

    $ch = curl_init();
    curl_setopt($ch, CURLOPT_URL, $url);
    curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
    curl_setopt($ch, CURLOPT_POST, true);
    curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($data));
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); 
    curl_setopt($ch, CURLOPT_TIMEOUT, $timeout);

    // 模拟来源
    curl_setopt($ch, CURLOPT_REFERER, $referer);

    $response = curl_exec($ch);

    if($error=curl_error($ch)){
        die($error);
    }

    curl_close($ch);

    return $response;

}
// 调用
$url = 'http://xxx.com/server.php';
$data = array();
// 设置 IP
$header = array(
    'CLIENT-IP: 192.168.1.100',
    'X-FORWARDED-FOR: 192.168.1.100'
);
// 设置来源
$referer = 'http://xxxx.cn/';
$response = doCurl($url, $data, $header, $referer, 5);
echo $response;
?>

返回 allow access