Closed hawshemi closed 5 months ago
www.ctrip.com
ShadowTLSv3 要求目标网站的TLS证书是1.3版本,我看了你用的 www.ctrip.com 它的SSL证书是1.2版本。
你可以查看sing-box文档中关于ShadowTLS部分当入站服务端时,各参数的详细要求。或看 ShadowTLS 的博客文章介绍,了解更多知识。
我猜测可能是这个原因,你可以换其它网址试一试。
另外如果你在中国大陆地区,选择的 目标网址,我也建议你不要选择你在中国大陆地区ping网址得到的是CN IP的网站。这一个原则 。
Are you sure? www.ctrip.com supports TLS 1.3 . Also, I tested with www.speedtest.net and it didn't work either.
(I'm not in China)
{
"password": "XXXX",
"server": "X.X.X.X",
"server_port": 443,
"tls": {
"enabled": true,
"insecure": false,
"server_name": "www.ctrip.com",
"utls": {
"enabled": true,
"fingerprint": "chrome"
}
},
"version": 3,
"type": "shadowtls",
"domain_strategy": "",
"tag": "proxy"
},
https://github.com/chika0801/sing-box-examples/blob/main/ShadowTLS/config_client.json#L10-L34
Your client's outbound configuration, there is no SS section, you check?
The problem was my VPS IP was completely blocked by ISPs.
Hello. I have this sing-box / ShadowTLSv3 server/client.
Previously the server was a Reality server with SNI: www.ctrip.com and it was working fine (no blockage).
Recently I rebuilt the server installed sing-box and setup shadowtlsv3. but when I connect to the server, on the server log it says:
Client:
Server:
NekoBox: