shadowsocks / shadowsocks-libev

Bug-fix-only libev port of shadowsocks. Future development moved to shadowsocks-rust
https://github.com/shadowsocks/shadowsocks-rust
GNU General Public License v3.0
15.82k stars 5.69k forks source link

Encounter connection reset while using chacha20-ietf cipher #1000

Closed testcaoy7 closed 7 years ago

testcaoy7 commented 7 years ago

Please answer these questions before submitting your issue. Thanks!

What version of shadowsocks-libev are you using?

shadowsocks-libev 2.5.6 with OpenSSL 1.0.2g

What operating system are you using?

Ubuntu 16.10

What did you do?

Browsing Internet via shadowsocks-libev

What did you expect to see?

Maintain anonymity while browsing the Internet

What did you see instead?

Suddenly, my connection was reset. I cannot visit the Internet. My VPS was not banned. I had to change cipher from chacha20-ietf to aes-128-ctr.

What is your config in detail (with all sensitive info masked)?

ss-server -s 0.0.0.0 -p 80 -k PSK -m chacha20-ietf -t 20 -u -A -d 64.6.64.6 --fast-open

madeye commented 7 years ago

I don't think it's related to ciphers. Make sure you have increased the file limit of the server.

testcaoy7 commented 7 years ago

@madeye Maybe it is the port. Running shadowsocks protocol on 80 is a little distinctive from regular HTTP data.

I found this in the log: 2016-12-19 06:58:01 ERROR: failed to handshake with 68.132.15.103 2016-12-19 06:58:30 ERROR: failed to handshake with 68.132.15.103 2016-12-19 08:28:35 ERROR: failed to handshake with 120.25.103.140 2016-12-19 08:29:28 ERROR: failed to handshake with 120.25.103.140

None of above is my ip address. Was my server under attack ?

madeye commented 7 years ago

They are not attacks. If you're using common ports like 80 or 443, log of spiders are expected.

testcaoy7 commented 7 years ago

I think it is the port. Sadly, my VPS only allow traffic on 22, 80 and 443.

madeye commented 7 years ago

Again, ports are not related to your reset. And the logs are normal and expected.

testcaoy7 commented 7 years ago

May be it it a rare phenominon. I shall be watching. By the way, my ISP is China Telecom. @madeye Thank you for your assistance and patience.