Acris
commented
6 months ago Hi, please try to remove the v2ray-plugin from your client configurations because you haven't enabled it on your server side.
Closed MernovG closed 4 months ago
Acris
commented
6 months ago Hi, please try to remove the v2ray-plugin from your client configurations because you haven't enabled it on your server side.
MernovG
commented
6 months ago Hi, removed the following strings from shadowsocks/config.json: admin@RT-AC68U-A500:/tmp/mnt/16GBFLASH/entware/share/ss-merlin/etc# cat shadowsocks/config.json
{
"server": "xxx.xx.xxx.xx",
"server_port": 8388,
"local_address": "0.0.0.0",
"local_port": 1080,
"password": "xxxxxxxx",
"timeout": 600,
"method": "aes-256-cfb:",
"mode": "tcp_and_udp"
}Look like it doesn't use v2ray, but still no connection to my server after the scripts:
admin@RT-AC68U-A500:/tmp/mnt/16GBFLASH/entware/share/ss-merlin/etc# ss-merlin start
Start shadowsocks-asuswrt-merlin...
Initializing dnsmasq...
Creating post-mount task...
Applying iptables rules...
Applying localips ipset rule...
LAN IPs are 192.168.1.0/24
Apply iptables rule done.
Starting all services...
All service started.
Updating dnsmasq configuration file...
Done.
Creating cron jobs...
Started.Did you try using another Shadowsocks client? Can it connect to your server?
MernovG
commented
6 months ago Yea, I tried windows client, and I started to receive the errors on a server side:
root@xxxxx:~# docker logs -f shadowsocks
2024-05-20 12:34:06 INFO: enable TCP no-delay
2024-05-20 12:34:06 INFO: UDP relay enabled
2024-05-20 12:34:06 INFO: enable TCP no-delay
2024-05-20 12:34:06 INFO: initializing ciphers... chacha20-ietf-poly1305
2024-05-20 12:34:06 INFO: using nameserver: 1.1.1.1,1.0.0.1,2606:4700:4700::1111,2606:4700:4700::1001
2024-05-20 12:34:06 INFO: tcp server listening at 0.0.0.0:8388
2024-05-20 12:34:06 INFO: tcp port reuse enabled
2024-05-20 12:34:06 INFO: tcp server listening at [::0]:8388
2024-05-20 12:34:06 INFO: tcp port reuse enabled
2024-05-20 12:34:06 INFO: udp server listening at 0.0.0.0:8388
2024-05-20 12:34:06 INFO: udp port reuse enabled
2024-05-20 12:34:06 INFO: udp server listening at [::0]:8388
2024-05-20 12:34:06 INFO: udp port reuse enabled
2024-05-20 12:34:34 ERROR: failed to handshake with xx.xxx.xxx.xxx: authentication error
2024-05-20 12:34:35 ERROR: failed to handshake with xx.xxx.xxx.xxx: authentication error
2024-05-20 12:34:36 ERROR: failed to handshake with xx.xxx.xxx.xxx: authentication error
2024-05-20 12:34:40 ERROR: failed to handshake with xx.xxx.xxx.xxx: authentication error
2024-05-20 12:34:40 ERROR: failed to handshake with xx.xxx.xxx.xxx: authentication error
2024-05-20 12:34:40 ERROR: failed to handshake with xx.xxx.xxx.xxx: authentication errorAt least something... But no idea what is wrong with. I setup a correct password, and cypher. And still nothing from the asuswrt-merlin router.
One more thing:
I started the server like:
docker run -d --restart=always -p 8388:8388 -p 8388:8388/udp -v /etc/shadowsocks/shadowsocks.json:/etc/shadowsocks.json --name shadowsocks acrisliu/shadowsocks-libev
But the config file I use has the different cypher:
{ "server":"0.0.0.0", "server_port":8388, "local_address": "127.0.0.1", "local_port":1080, "password":"xxxxx", "timeout":300, "method":"aes-256-gcm", "fast_open": true, "workers": 1, "reuse_port": true }
I've checked the actual file inside the container, it has the proper values:
root@entexorg:~# docker exec -it shadowsocks /bin/sh
~ $ cat /etc/shadowsocks.json
{
"server":"0.0.0.0",
"server_port":8388,
"local_address": "127.0.0.1",
"local_port":1080,
"password":"xxxxx",
"timeout":300,
"method":"aes-256-gcm",
"fast_open": true,
"workers": 1,
"reuse_port": true
}
~ $ ps uax
PID USER TIME COMMAND
1 nobody 0:00 ss-server -s 0.0.0.0 -s ::0 -p 8388 -k ChangeMe!!! -m chacha20-ietf-poly1305 -t 86400 -d 1.1.1.1,1.0.0.1,2606:4700:4700::1111,2606:4700:4700::1001 --reuse-port --
7 nobody 0:00 /bin/sh
15 nobody 0:00 ps uax
~ $Seems like I was able to setup server and client for my windows box. Connection with the following: docker run -d --restart=always -p 8388:8388 -p 8388:8388/udp -v /etc/shadowsocks/shadowsocks.json:/etc/shadowsocks.json --name shadowsocks shadowsocks/shadowsocks-libev
And I actually was able to connect to server. But asuswrt-merlin doesn't even try to. No messages in log
Acris
commented
6 months ago Try to configure shadowsocks with environment variables instead of mounting a JSON file. It seems the configuration is overridden by the environment variables.
e.g.:
docker run -d \
-e METHOD=aes-256-gcm \
-e PASSWORD=YourPassword \
--name=shadowsocks-libev \
-p 8388:8388/tcp \
-p 8388:8388/udp \
--restart=always \
acrisliu/shadowsocks-libevIn this case, I can't connect from Windows host:
[root@entexorg:~# docker exec -it shadowsocks /bin/sh
~ $ ps uxa
PID USER TIME COMMAND
1 nobody 0:00 ss-server -s 0.0.0.0 -s ::0 -p 8388 -k YourPassword -m aes-256-gcm -t 86400 -d 1.1.1.1,1.0.0.1,2606:4700:4700::1111,2606:4700:4700::1001 --reuse-port --no-delay -
8 nobody 0:00 /bin/sh
15 nobody 0:00 ps uxa
~ $
root@entexorg:~# docker exec -it shadowsocks /bin/sh
~ $
root@entexorg:~# docker logs -f shadowsocks
2024-05-20 14:56:58 INFO: enable TCP no-delay
2024-05-20 14:56:58 INFO: UDP relay enabled
2024-05-20 14:56:58 INFO: enable TCP no-delay
2024-05-20 14:56:58 INFO: initializing ciphers... aes-256-gcm
2024-05-20 14:56:58 INFO: using nameserver: 1.1.1.1,1.0.0.1,2606:4700:4700::1111,2606:4700:4700::1001
2024-05-20 14:56:58 INFO: tcp server listening at 0.0.0.0:8388
2024-05-20 14:56:58 INFO: tcp port reuse enabled
2024-05-20 14:56:58 INFO: tcp server listening at [::0]:8388
2024-05-20 14:56:58 INFO: tcp port reuse enabled
2024-05-20 14:56:58 INFO: udp server listening at 0.0.0.0:8388
2024-05-20 14:56:58 INFO: udp port reuse enabled
2024-05-20 14:56:58 INFO: udp server listening at [::0]:8388
2024-05-20 14:56:58 INFO: udp port reuse enabled
2024-05-20 14:58:13 ERROR: failed to handshake with 109.237.100.126: authentication error
2024-05-20 14:58:24 ERROR: failed to handshake with 109.237.100.126: authentication error
2024-05-20 14:58:24 ERROR: failed to handshake with 109.237.100.126: authentication error
2024-05-20 14:58:27 ERROR: failed to handshake with 109.237.100.126: authentication error
2024-05-20 14:58:27 ERROR: failed to handshake with 109.237.100.126: authentication errorAt least, I see the attempts to connect to. asuswrt-merlin (client) doesn't even try to
Acris
commented
6 months ago Hi, try to set the route mode to global and disable UDP:
# Route mode
## 0: GFW list.
## 1: Bypass mainland China.
## 2: Global mode.
mode=2
# UDP support
## 0: Disable UDP.
## 1: Enable UDP, require server side support.
udp=0Then restart ss-merlin, visit some websites, and check if there are any logs printed on the server side.
If there is still no output in your server logs, try stopping ss-merlin and running the command below, then paste the output here:
ss-redir -c /opt/share/ss-merlin/etc/shadowsocks/config.json -vOk, seems like I finally able to connect to my server. But can you advice, how can I actually route traffic, only to example.com and 123.123.123.123 ip via the VPN channel ? All other traffic should go via default channel?
Also, I have too much such messages in docker -f shadowsocks:
...
2024-05-20 21:22:55 ERROR: remote recv: Connection reset by peer
2024-05-20 21:24:16 ERROR: getpeername: Socket not connected
2024-05-20 21:25:24 ERROR: getpeername: Socket not connected
2024-05-20 21:25:25 ERROR: remote recv: Connection reset by peer
2024-05-20 21:27:57 ERROR: remote recv: Connection reset by peer
2024-05-20 21:32:58 ERROR: remote recv: Connection reset by peer
2024-05-20 21:36:18 ERROR: remote recv: Connection reset by peer
2024-05-20 21:37:56 ERROR: remote recv: Connection reset by peer
2024-05-20 21:38:08 ERROR: remote recv: Connection reset by peer
2024-05-20 21:40:24 ERROR: remote recv: Connection reset by peer
2024-05-20 21:49:13 ERROR: remote recv: Connection reset by peer
2024-05-20 21:49:34 ERROR: remote recv: Connection reset by peer
2024-05-20 21:49:34 ERROR: remote recv: Connection reset by peer
2024-05-20 21:49:57 ERROR: remote recv: Connection reset by peer
2024-05-20 21:50:27 ERROR: remote recv: Connection reset by peer
2024-05-20 21:51:11 ERROR: server recv: Connection reset by peer
2024-05-20 22:00:59 ERROR: remote recv: Connection reset by peer
2024-05-20 22:01:13 ERROR: remote recv: Connection reset by peer
2024-05-20 22:06:52 ERROR: remote recv: Connection reset by peer
2024-05-20 22:08:57 ERROR: getpeername: Socket not connected
2024-05-20 22:12:56 ERROR: remote recv: Connection reset by peer
2024-05-20 22:15:21 ERROR: remote recv: Connection reset by peer
2024-05-20 22:16:35 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:09 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:12 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:14 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:16 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:20 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:31 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:31 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:36 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:37 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:39 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:39 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:41 ERROR: remote recv: Connection reset by peer
2024-05-20 22:17:43 ERROR: remote recv: Connection reset by peer
2024-05-20 22:18:24 ERROR: remote recv: Connection reset by peer
2024-05-20 22:19:08 ERROR: remote recv: Connection reset by peer
2024-05-20 22:19:37 ERROR: remote recv: Connection reset by peer
2024-05-20 22:20:16 ERROR: remote recv: Connection reset by peer
2024-05-20 22:20:18 ERROR: getpeername: Socket not connected
...And I have a strange router behavior. When I issue ss-merlin start, it does the script. But after some time it reboots the router, possibly after some time I have no connection to WAN. Also, is it possible to configure v2ray obfuscation without SSL certificate ? Because, I have no domain assigned to Thanks
Acris
commented
6 months ago how can I actually route traffic, only to example.com and 123.123.123.123 ip via the VPN channel ? All other traffic should go via default channel?
It is not possible to let all other traffic should go via default channel, you can only force some domain/IP to pass proxy by set mode to 0 and add your domain and IP to user_domain_name_gfwlist.txt/user_ip_gfwlist.txt
Refer to custom rules for more details: https://github.com/Acris/shadowsocks-asuswrt-merlin?tab=readme-ov-file#custom-user-rules
And I have a strange router behavior. When I issue ss-merlin start, it does the script. But after some time it reboots the router, possibly after some time I have no connection to WAN.
Check your router's RAM usage and try restarting ss-merlin.
Also, is it possible to configure v2ray obfuscation without SSL certificate ? Because, I have no domain assigned to
I think it is not possible. You can get a free subdomain on https://freedns.afraid.org/
MernovG
commented
6 months ago Seems like you were right, and after I start ss-merlin, I start to have problems with Out of Memory issues, time to time: ASUSWRT-Merlin RT-AC68U 386.13_0 Sun Apr 7 16:05:14 UTC 2024 admin@RT-AC68U-A500:/tmp/home/root# dmesg nit: txworkq set to 0x1 wl0: wlc_ap_attach dynamic_ed_thresh_enable = 0 eth1: Broadcom BCM4360 802.11 Wireless Controller 6.37.14.126 (r561982) wl1: wlc_ap_attach dynamic_ed_thresh_enable = 0 eth2: Broadcom BCM4360 802.11 Wireless Controller 6.37.14.126 (r561982) JFFS2 notice: (46) check_nodedata: wrong data CRC in data node at 0x002e2778: read 0x6725cf51, calculated 0xcce45a4c. Start of Reboot message (8180) ... ___ 8 1 0 0 infosvr [ 260] ▒U▒ 260 369 29 1 0 0 sysstate [ 261] 0 261 2086 99 1 0 0 watchdog [ 262] 0 262 2085 91 0 0 0 check_watchdog [ 264] 0 264 2086 98 0 0 0 amas_lanctrl [ 270] 0 270 738 424 1 0 0 rstats [ 288] 0 288 351 37 0 0 0 lld2d [ 291] 0 291 2782 1239 0 0 0 networkmap [ 294] 0 294 1756 91 1 0 0 mastiff [ 295] 0 295 2086 93 0 0 0 bwdpi_check [ 296] 0 296 2086 94 1 0 0 hour_monitor [ 297] 0 297 2086 103 0 0 0 pctime [ 332] 0 332 2105 118 1 0 0 roamast [ 334] 0 334 2135 168 1 0 0 conn_diag [ 340] 0 340 2135 168 0 0 0 conn_diag [ 341] 0 341 2135 168 0 0 0 conn_diag [ 342] 0 342 2135 168 1 0 0 conn_diag [ 348] 0 348 371 38 1 0 0 lldpd [ 352] 65534 352 365 33 1 0 0 lldpd [ 354] 0 354 1580 109 0 0 0 cfg_server [ 377] 0 377 2088 105 1 0 0 amas_lib [ 386] 0 386 284 19 1 0 0 dropbear [ 456] 0 456 1756 91 1 0 0 mastiff [ 457] 0 457 1756 91 0 0 0 mastiff [ 460] 0 460 1756 91 1 0 0 mastiff [ 461] 0 461 1756 91 1 0 0 mastiff [ 543] 0 543 1580 109 0 0 0 cfg_server [ 544] 0 544 1580 109 1 0 0 cfg_server [ 545] 0 545 1580 109 1 0 0 cfg_server [ 566] 0 566 2086 95 0 0 0 usbled [ 657] 0 657 367 24 0 0 0 ntp [ 660] 0 660 2105 118 1 0 0 roamast [ 661] 0 661 2105 118 0 0 0 roamast [ 684] 0 684 2105 118 1 0 0 roamast [ 685] 0 685 2105 118 1 0 0 roamast [ 692] 0 692 2086 95 0 0 0 disk_monitor [ 696] 0 696 2622 321 1 0 0 aaews [ 802] 0 802 2622 321 0 0 0 aaews [ 804] 0 804 2622 321 0 0 0 aaews [ 815] 0 815 2622 321 0 0 0 aaews [ 817] 0 817 2622 321 1 0 0 aaews [ 819] 0 819 2622 321 0 0 0 aaews [ 820] 0 820 2622 321 1 0 0 aaews [ 834] 0 834 1296 104 1 0 0 awsiot [ 835] 0 835 1296 104 1 0 0 awsiot [ 888] 0 888 2622 321 0 0 0 aaews [ 946] 0 946 1161 200 0 0 0 ss-redir [ 1085] 0 1085 3120 722 0 0 0 unbound [ 1578] 65534 1578 385 36 1 0 0 avahi-daemon [ 1600] 0 1600 235 20 1 0 0 miniupnpd [ 1607] 0 1607 2626 168 0 0 0 minidlna [ 1613] 0 1613 2626 168 1 0 0 minidlna [ 1614] 0 1614 2626 168 0 0 0 minidlna [ 1649] 0 10 0 bwdpi_wred_aliv [ 1671] 0 1671 2239 715 1 0 0 wred [ 1672] 0 1672 2239 715 1 0 0 wred [ 1673] 0 1673 2239 715 1 0 0 wred [ 1675] 0 1675 869 64 0 0 0 dcd [ 1676] 0 1676 869 64 1 0 0 dcd [ 1677] 0 1677 869 64 1 0 0 dcd [ 1679] 0 1679 869 64 1 0 0 dcd [ 1680] 0 1680 869 64 0 0 0 dcd [ 1681] 0 1681 869 64 1 0 0 dcd [ 1685] 0 1685 166 15 0 0 0 tcd [ 1727] 0 1727 2239 715 0 0 0 wred [ 1728] 0 1728 2239 715 0 0 0 wred [ 1729] 0 1729 2239 715 0 0 0 wred [ 1730] 0 1730 2239 715 0 0 0 wred [ 1731] 0 1▒ 2239 715 0 0 0 wred [ 1732] 0 1732 2239 715 0 0 0 wred [ 1733] 0 1733 2239 715 1 0 0 wred [ 1734] 0 1734 2239 715 0 0 0 wred [ 2111] 0 2111 2088 105 1 0 0 amas_lib [ 2120] 0 2120 366 23 0 0 0 udhcpc [ 2122] 65534 2122 3738 3449 1 0 0 dnsmasq [ 2123] 0 2123 3662 3373 0 0 0 dnsmasq [ 2139] 0 2139 1162 44 1 0 0 nmbd [ 2140] 0 2140 1201 60 1 0 0 smbd [ 2141] 0 2141 1082 25 0 0 0 nmbd [ 2143] 0 2143 169 15 1 0 0 wsdd2 [ 3397] 0 3397 290 27 1 0 0 dropbear [ 3398] 0 3398 367 24 0 0 0 sh [ 3709] 65534 3709 3754 3465 0 0 0 dnsmasq [ 3717] 65534 3717 3754 3465 0 0 0 dnsmasq [ 3720] 65534 3720 3738 3448 1 0 0 dnsmasq [ 3721] 65534 3721 3754 3465 1 0 0 dnsmasq [ 3723] 65534 3723 3738 3448 1 0 0 dnsmasq [ 3724] 65534 3724 3738 3448 1 0 0 dnsmasq [ 3725] 65 0 0 dnsmasq [ 3726] 65534 3726 3738 3448 1 0 0 dnsmasq [ 3727] 65534 3727 3738 3448 1 0 0 dnsmasq Kernel panic - not syncing: Out of memory: system-wide panic_on_oom is enabled
[
_ End of Reboot message (8180) ... ___ et0: et_mvlan_netdev_event: event 16 for vlan1 mvlan_en 0 et0: et_mvlan_netdev_event: event 5 for vlan1 mvlan_en 0 et0: et_mvlan_netdev_event: event 16 for vlan2 mvlan_en 0 et0: et_mvlan_netdev_event: event 5 for vlan2 mvlan_en 0 et0: et_mvlan_netdev_event: event 13 for vlan1 mvlan_en 0 et0: et_mvlan_netdev_event: event 1 for vlan1 mvlan_en 0 device vlan1 entered promiscuous mode device eth0 entered promiscuous mode device eth1 entered promiscuous mode device eth2 entered promiscuous mode br0: topology change detected, propagating br0: port 3(eth2) entering forwarding state br0: port 3(eth2) entering forwarding state br0: topology change detected, propagating br0: port 2(eth1) entering forwarding state br0: port 2(eth1) entering forwarding state br0: topology change detected, propagating br0: port 1(vlan1) entering forwarding state br0: port 1(vlan1) entering forwarding state
gro enabled with interval 2 usbcore: registered new interface driver usbfs usbcore: registered new interface driver hub usbcore: registered new device driver usb xhci_hcd 0000:00:0c.0: xHCI Host Controller xhci_hcd 0000:00:0c.0: new USB bus registered, assigned bus number 1 xhci_hcd 0000:00:0c.0: irq 112, io mem 0x18023000 xhci_hcd 0000:00:0c.0: Failed to enable MSI-X xhci_hcd 0000:00:0c.0: failed to allocate MSI entry usb usb1: No SuperSpeed endpoint companion for config 1 interface 0 altsetting 0 ep 129: using minimum values xHCI xhci_add_endpoint called for root hub xHCI xhci_check_bandwidth called for root hub hub 1-0:1.0: USB hub found hub 1-0:1.0: 1 port detected [xhci-hub] usb2mode:[0] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver ehci_hcd 0000:00:0b.1: EHCI Host Controller ehci_hcd 0000:00:0b.1: new USB bus registered, assigned bus number 2 ehci_hcd 0000:00:0b.1: irq 111, io mem 0x18021000 ehci_hcd 0000:00:0b.1: USB 0.0 started, EHCI 1.00 hub 2-0:1.0: USB hub found hub 2-0:1.0: 2 ports detected ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver ohci_hcd 0000:00:0b.0: OHCI Host Controller ohci_hcd 0000:00:0b.0: new USB bus registered, assigned bus number 3 ohci_hcd 0000:00:0b.0: irq 111, io mem 0x18022000 hub 3-0:1.0: USB hub found hub 3-0:1.0: 2 ports detected hub 2-0:1.0: unable to enumerate USB device on port 1 usbcore: registered new interface driver cdc_acm cdc_acm: v0.26:USB Abstract Control Model driver for USB modems and ISDN adapters usbcore: registered new interface driver asix usbcore: registered new interface driver cdc_ether usbcore: registered new interface driver rndis_host cdc_ncm: 14-Mar-2012 usbcore: registered new interface driver cdc_ncm usbcore: registered new interface driver cdc_wdm usbcore: registered new interface driver qmi_wwan usb 1-1: new SuperSpeed USB device using xhci_hcd and address 2 cdc_mbim: loaded usbcore: registered new interface driver cdc_mbim xhci_hcd 0000:00:0c.0: WARN: short transfer on control ep xhci_hcd 0000:00:0c.0: WARN: short transfer on control ep xhci_hcd 0000:00:0c.0: WARN: short transfer on control ep xhci_hcd 0000:00:0c.0: WARN: short transfer on control ep xhci_hcd 0000:00:0c.0: disable burst on ep 1 xhci_hcd 0000:00:0c.0: WARN no SS endpoint bMaxBurst xhci_hcd 0000:00:0c.0: disable burst on ep 2 xhci_hcd 0000:00:0c.0: WARN no SS endpoint bMaxBurst SCSI subsystem initialized csw_retry 100 Initializing USB Mass Storage driver... scsi0 : usb-storage 1-1:1.0 usbcore: registered new interface driver usb-storage USB Mass Storage support registered. Tuxera FAT 12/16/32 driver version 3015.1.29.5_1 [Flags: R/W MODULE]. Built against headers 2.6.36.4brcmarm #1 SMP PREEMPT Mon Jul 9 15:09:39 CST 2018 arm Running on kernel 2.6.36.4brcmarm #1 SMP PREEMPT Sun Apr 7 12:06:36 EDT 2024 armv7l Tuxera NTFS driver 3018.6.5.3 [Flags: R/W MODULE]. Built against headers 2.6.36.4brcmarm #1 SMP PREEMPT Mon Jul 9 15:09:39 CST 2018 arm Running on kernel 2.6.36.4brcmarm #1 SMP PREEMPT Sun Apr 7 12:06:36 EDT 2024 armv7l Tuxera HFS+ driver 3017.6.20 Built against headers 2.6.36.4brcmarm #1 SMP PREEMPT Mon Jul 9 15:09:39 CST 2018 arm Running on kernel 2.6.36.4brcmarm #1 SMP PREEMPT Sun Apr 7 12:06:36 EDT 2024 armv7l scsi 0:0:0:0: Direct-Access Kingston DataTraveler 3.0 PMAP PQ: 0 ANSI: 6 sd 0:0:0:0: Attached scsi generic sg0 type 0 sd 0:0:0:0: [sda] 30310400 512-byte logical blocks: (15.5 GB/14.4 GiB) sd 0:0:0:0: [sda] Write Protect is off sd 0:0:0:0: [sda] Mode Sense: 23 00 00 00 sd 0:0:0:0: [sda] Assuming drive cache: write through sd 0:0:0:0: [sda] Assuming drive cache: write through sda: sda1 sd 0:0:0:0: [sda] Assuming drive cache: write through sd 0:0:0:0: [sda] Attached SCSI removable disk nf_conntrack_rtsp v0.6.21 loading nf_nat_rtsp v0.6.21 loading Init chrdev /dev/idp with major 190 tdts: tcp_conn_max = 8000
tdts: tcp_conn_timeout = 300 sec
EXT4-fs (sda1): recovery complete EXT4-fs (sda1): mounted filesystem with ordered data mode. Opts: user_xattr ip_set: protocol 6 NF_TPROXY: Transparent proxy support initialized, version 4.1.0 NF_TPROXY: Copyright (c) 2006-2007 BalaBit IT Ltd. warning: process `unbound' used the deprecated sysctl system call with 1.40.6.
gro disabled
gro enabled with interval 2 SHN Release Version: 2.0.2 7812743e UDB Core Version: 0.2.20 Init chrdev /dev/idpfw with major 191 IDPfw: IDPfw is ready sizeof forward pkt param = 192 ERR[qos_start:3363] qos_ops is not registered! ioctl_iqos_op_switch(1) fail!
gro disabled
gro enabled with interval 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 asd/189: potentially unexpected fatal signal 11.
Pid: 189, comm: asd CPU: 1 Tainted: P (2.6.36.4brcmarm #1) PC is at 0x404d07a8 LR is at 0x404cb050 pc : [<404d07a8>] lr : [<404cb050>] psr: a0000010 sp : bed329a0 ip : 404ffda0 fp : 00000000 r10: 0000001c r9 : bed32b28 r8 : 00000020 r7 : 00000000 r6 : 0000016d r5 : 0000000b r4 : bed32a20 r3 : 0000016d r2 : 00000000 r1 : ffffffff r0 : 0000016d Flags: NzCv IRQs on FIQs on Mode USER_32 ISA ARM Segment user Control: 10c53c7d Table: 9ee6c04a DAC: 00000015 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2 [tdts_shell_ioctl_stat:256] Recv ioctl req with op 2
But if I take a look at the memory consumption, it doesn't look unusual.
This is before I start ss-merlin:
And this is after:
I've changed to:
admin@RT-AC68U-A500:/tmp/mnt/16GBFLASH/entware/share/ss-merlin/etc# cat ss-merlin.conf
# Route mode
## 0: GFW list.
## 1: Bypass mainland China.
## 2: Global mode.
mode=0
# UDP support
## 0: Disable UDP.
## 1: Enable UDP, require server side support.
udp=1
# LAN IPs
## Configure which LAN IP will pass transparent proxy.
## Default is 0.0.0.0/0, means all LAN devices will affected.
## You can assign a LAN IP like 192.169.1.125 means only this device can pass transparent proxy.
lan_ips=0.0.0.0/0
# China DNS IP
## Default is 119.29.29.29
china_dns_ip=8.8.8.8admin@RT-AC68U-A500:/tmp/mnt/16GBFLASH/entware/share/ss-merlin/etc# cat ../rules/user_domain_name_gfwlist.txt
2ip.ioBut after a while my router restarts spontaneously. Despite:
Please help me out. I ran docker run -d --restart=always -p 8388:8388 -p 8388:8388/udp -v /etc/shadowsocks/shadowsocks.json:/etc/shadowsocks.json --name shadowsocks shadowsocks/shadowsocks-libev server. With the following shadowsocks.json config:
Server is up and running:
I've configured shadowsocks as it mentioned in the manual here, and have the following config:
And shadowsocks/config.json:
But when I do ss-merlin start it says:
But nothing happens in a logs of shadowsocks docker-container. I checked the port reachability - it's ok. Also, I'm unable to reach any WAN resource after the ss-merlin starts. No DNS resolve. What did I do wrong ?