Hiddify Deployment Guide

1. Choose an ECS / VPS Server

You may select a cloud server from Alibaba Cloud, AWS, Google Cloud, Oracle Cloud, Tencent Cloud, Vultr, DigitalOcean, or another reliable provider. For personal deployment, the recommended minimum configuration is 2 CPU cores and 2 GB RAM.

CPU Minimum 2 cores.
RAM Minimum 2 GB.
OS Ubuntu 22.04 LTS is recommended.
Network Select a region with stable international connectivity.

For most personal use cases, 2C2G is sufficient for Hiddify Manager and common proxy protocols. If you plan to serve many users, consider upgrading bandwidth and memory.

2. Alibaba Cloud Special Recommendation

For Alibaba Cloud ECS users, it is recommended not to attach a public IP directly when creating the ECS instance. Keep only the private IP during initial creation, then create an Elastic IP in the same region and bind it to the ECS instance.

Create the ECS instance and keep only the private IP address.
Open the Elastic IP section in Alibaba Cloud Console.
Create an Elastic IP in the same region as the ECS instance.
Associate the Elastic IP with the specified ECS instance.

IP Type	Typical Bandwidth Limit	Suggestion
Fixed Public IP	Usually up to 100 Mbps	Convenient, but less flexible for later migration.
Elastic Public IP (EIP)	Can provide up to 200 Mbps for a single IP	Recommended to select 200 Mbps when higher bandwidth is needed.

This approach is based on practical Alibaba Cloud ECS experience. It makes future ECS replacement, IP retention, and long-term migration easier. Other cloud providers usually provide similar static IP or elastic IP mechanisms.

Bandwidth recommendation: a fixed public IP is commonly limited to 100 Mbps, while an Elastic Public IP can provide a single-IP bandwidth limit of up to 200 Mbps. Therefore, users who need better throughput are advised to choose EIP and configure 200 Mbps bandwidth.

3. Open Security Group and UFW Ports

Before installation, make sure the required ports are opened both in the cloud provider security group and inside the server operating system firewall.

Port	Usage	Notes
22	SSH login	Required for server terminal access.
80	HTTP / certificate verification	Useful for web access and certificate issuance.
443	HTTPS / proxy service	Usually the most important port for production use.

UFW Example

sudo ufw allow 22
sudo ufw allow 80
sudo ufw allow 443
sudo ufw enable
sudo ufw status

A common mistake is opening the cloud security group but forgetting the Ubuntu UFW firewall. Both layers must allow the required traffic.

4. SSH Login and Install Hiddify

After the ECS/VPS is created, log in to the server terminal through SSH. Windows users may use Windows Terminal, PowerShell, MobaXterm, or Xshell. macOS and Linux users can use the built-in Terminal.

SSH Login

ssh root@YOUR_SERVER_IP

Official Installation Command

bash <(curl https://i.hiddify.com/release)

Official Hiddify installation guide: https://hiddify.com/manager/installation-and-setup/guide/

5. Initial Panel Configuration

After installation is complete, Hiddify will print the panel address in the terminal. Open that address in a browser and complete the initial configuration.

Open the panel URL printed by the terminal.
Set or change the administrator password.
Check whether the corresponding ports are open in both ECS security group and UFW firewall.
Create one or more users in the Hiddify dashboard.
Generate QR codes or share links for client import.

If the panel address cannot be opened, first check the cloud security group, then check UFW, and finally confirm whether the service is running correctly on the server.

6. Install Client and Start Using

After creating users in the Hiddify panel, users may connect through QR code scanning or subscription link import.

Platform	Method	Notes
Android	https://cloud.szr.hk/downloads/hiddify/v4.0.4/	Download and install the APK package.
iOS	Search “Hiddify” in App Store.	A non-China-region Apple ID is required.

After installation, scan the QR code or import the share link generated by the Hiddify panel, then enable the proxy connection.

7. Recommended Protocol Selection

When creating configurations, the following protocols are recommended because they usually provide better compatibility and connectivity.

Protocol	Recommendation	Notes
VLESS	Highly recommended	Usually has strong compatibility and stable connectivity.
Trojan	Recommended	Stable and widely supported.
TCP	Recommended	Useful in many network environments.
H2	Recommended	Suitable for selected network routes and environments.
WebSocket	Recommended	Common and easy to use with domain-based deployments.
VMess	Not recommended	Connectivity may be acceptable, but it may be detected by official or network-side inspection mechanisms.

8. Optional: Use Your Own Domain

It is strongly recommended to register and use your own domain for long-term deployment. Alibaba Cloud users may register a domain through Alibaba Cloud Domain Registration, then point the DNS A record to the fixed public IP or Elastic IP associated with the ECS instance.

Register a domain from Alibaba Cloud or another domain registrar.
Create an A record in DNS settings.
Point the A record to the ECS fixed public IP or Elastic IP.
Use the domain in Hiddify panel configuration.

Using a domain improves HTTPS compatibility, long-term maintainability, migration flexibility, and the overall professionalism of the deployment.

Quick Summary

Choose a reliable ECS/VPS provider such as Alibaba Cloud or AWS.
Use at least 2C2G and Ubuntu 22.04 LTS.
For Alibaba Cloud, consider using Elastic IP instead of directly attaching a public IP at creation time.
Open ports 22, 80, and 443 in both security group and UFW.
Install Hiddify with one official command.
Create users in the panel and connect through QR code or share link.
Prefer VLESS, Trojan, TCP, H2, and WebSocket; avoid VMess where possible.
Bind your own domain for a more stable long-term setup.