自建 ws+tls vmess 服务无法连接

[fragilelambda]

在其它客户端上可以正常使用 vps，openclash 配置后失败 OpenClash 调试日志

生成时间: 2022-03-21 20:25:47 插件版本: v0.40.7-beta

#===================== 系统信息 =====================#
主机型号: XIAOMI AX6
固件版本: OpenWrt 19.07-SNAPSHOT r0+11968-bfbcb2c716
LuCI版本: git-20.085.19816-df13074-1
内核版本: 5.4.89
处理器架构: aarch64_cortex-a53_neon-vfpv4

#此项在使用Tun模式时应为ACCEPT
防火墙转发: ACCEPT

#此项有值时建议到网络-接口-lan的设置中禁用IPV6的DHCP
IPV6-DHCP: server

#此项结果应仅有配置文件的DNS监听地址
Dnsmasq转发设置: 127.0.0.1#7874

#===================== 依赖检查 =====================#
dnsmasq-full: 已安装
coreutils: 已安装
coreutils-nohup: 已安装
bash: 已安装
curl: 已安装
jsonfilter: 已安装
ca-certificates: 已安装
ipset: 已安装
ip-full: 未安装
iptables-mod-tproxy: 已安装
kmod-tun(TUN模式): 已安装
luci-compat(Luci-19.07): 未安装

#===================== 内核检查 =====================#
运行状态: 运行中
已选择的架构: linux-armv8

#下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限
Tun内核版本: 2022.03.19
Tun内核文件: 存在
Tun内核运行权限: 正常

Game内核版本: 
Game内核文件: 不存在
Game内核运行权限: 否

Dev内核版本: v1.10.0
Dev内核文件: 存在
Dev内核运行权限: 正常

#===================== 插件设置 =====================#
当前配置文件: /etc/openclash/config/config.yaml
运行模式: fake-ip
默认代理模式: rule
UDP流量转发: 启用
DNS劫持: 启用
自定义DNS: 启用
IPV6-DNS解析: 停用
禁用Dnsmasq缓存: 停用
自定义规则: 停用
仅允许内网: 停用
仅代理命中规则流量: 启用
绕过中国大陆IP: 停用

#启动异常时建议关闭此项后重试
保留配置: 停用

#启动异常时建议关闭此项后重试
第三方规则: ConnersHua
第三方规则策略组设置:
GlobalTV: GlobalTV
AsianTV: AsianTV
Proxy: Proxy
Apple: 
Netflix: 
Spotify: 
Steam: 
AdBlock: AdBlock
Netease Music: 
Speedtest: 
Telegram: 
Microsoft: 
PayPal: 
Domestic: Domestic
Others: Others

读取的配置文件策略组:
Auto - UrlTest
Proxy
Domestic
Others
AsianTV
GlobalTV
DIRECT
REJECT

#===================== 配置文件 =====================#
redir-port: 7892
port: 7890
socks-port: 7891
ipv6: false
mode: rule
log-level: silent
external-controller: 0.0.0.0:9090
allow-lan: true
bind-address: "*"
external-ui: "/usr/share/openclash/dashboard"
dns:
  enable: true
  ipv6: false
  enhanced-mode: fake-ip
  fake-ip-range: 198.18.0.1/16
  listen: 127.0.0.1:7874
  fake-ip-filter:
##Custom fake-ip-filter##
  - '*.lan'
  - 'time.windows.com'
  - 'time.nist.gov'
  - 'time.apple.com'
  - 'time.asia.apple.com'
  - '*.ntp.org.cn'
  - '*.openwrt.pool.ntp.org'
  - 'time1.cloud.tencent.com'
  - 'time.ustc.edu.cn'
  - 'pool.ntp.org'
  - 'ntp.ubuntu.com'
  - 'ntp.aliyun.com'
  - 'ntp1.aliyun.com'
  - 'ntp2.aliyun.com'
  - 'ntp3.aliyun.com'
  - 'ntp4.aliyun.com'
  - 'ntp5.aliyun.com'
  - 'ntp6.aliyun.com'
  - 'ntp7.aliyun.com'
  - 'time1.aliyun.com'
  - 'time2.aliyun.com'
  - 'time3.aliyun.com'
  - 'time4.aliyun.com'
  - 'time5.aliyun.com'
  - 'time6.aliyun.com'
  - 'time7.aliyun.com'
  - '*.time.edu.cn'
  - 'time1.apple.com'
  - 'time2.apple.com'
  - 'time3.apple.com'
  - 'time4.apple.com'
  - 'time5.apple.com'
  - 'time6.apple.com'
  - 'time7.apple.com'
  - 'time1.google.com'
  - 'time2.google.com'
  - 'time3.google.com'
  - 'time4.google.com'
  - 'music.163.com'
  - '*.music.163.com'
  - '*.126.net'
  - 'musicapi.taihe.com'
  - 'music.taihe.com'
  - 'songsearch.kugou.com'
  - 'trackercdn.kugou.com'
  - '*.kuwo.cn'
  - 'api-jooxtt.sanook.com'
  - 'api.joox.com'
  - 'joox.com'
  - 'y.qq.com'
  - '*.y.qq.com'
  - 'streamoc.music.tc.qq.com'
  - 'mobileoc.music.tc.qq.com'
  - 'isure.stream.qqmusic.qq.com'
  - 'dl.stream.qqmusic.qq.com'
  - 'aqqmusic.tc.qq.com'
  - 'amobile.music.tc.qq.com'
  - '*.xiami.com'
  - '*.music.migu.cn'
  - 'music.migu.cn'
  - '*.msftconnecttest.com'
  - '*.msftncsi.com'
  - 'localhost.ptlogin2.qq.com'
  - '*.*.*.srv.nintendo.net'
  - '*.*.stun.playstation.net'
  - 'xbox.*.*.microsoft.com'
  - '*.*.xboxlive.com'
  - 'proxy.golang.org'
##Custom fake-ip-filter END##
  nameserver:
##Custom DNS##
  - 114.114.114.114
  - 119.29.29.29

#===================== 防火墙设置 =====================#

#NAT chain

Chain PREROUTING (policy ACCEPT)
num  target     prot opt source               destination         
1    REDIRECT   tcp  --  0.0.0.0/0            8.8.4.4              redir ports 7892
2    REDIRECT   tcp  --  0.0.0.0/0            8.8.8.8              redir ports 7892
3    REDIRECT   udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:53 redir ports 53
4    REDIRECT   tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:53 redir ports 53
5    prerouting_rule  all  --  0.0.0.0/0            0.0.0.0/0            /* !fw3: Custom prerouting rule chain */
6    zone_lan_prerouting  all  --  0.0.0.0/0            0.0.0.0/0            /* !fw3 */
7    zone_wan_prerouting  all  --  0.0.0.0/0            0.0.0.0/0            /* !fw3 */
8    openclash  tcp  --  0.0.0.0/0            0.0.0.0/0           
Chain OUTPUT (policy ACCEPT)
num  target     prot opt source               destination         
1    openclash_output  tcp  --  0.0.0.0/0            0.0.0.0/0           

#Mangle chain

Chain PREROUTING (policy ACCEPT)
num  target     prot opt source               destination         
1    openclash  udp  --  0.0.0.0/0            0.0.0.0/0           
Chain OUTPUT (policy ACCEPT)
num  target     prot opt source               destination         

#===================== 路由表状态 =====================#
#route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         192.168.1.1     0.0.0.0         UG    0      0        0 eth1
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
192.168.3.0     0.0.0.0         255.255.255.0   U     0      0        0 br-lan
#ip route list
default via 192.168.1.1 dev eth1 proto static src 192.168.1.4 
192.168.1.0/24 dev eth1 proto kernel scope link src 192.168.1.4 
192.168.3.0/24 dev br-lan proto kernel scope link src 192.168.3.1 
#ip rule show
0:  from all lookup local 
32765:  from all fwmark 0x162 lookup 354 
32766:  from all lookup main 
32767:  from all lookup default 

#===================== 端口占用状态 =====================#
tcp        0      0 :::7890                 :::*                    LISTEN      13193/clash
tcp        0      0 :::7891                 :::*                    LISTEN      13193/clash
tcp        0      0 :::7892                 :::*                    LISTEN      13193/clash
tcp        0      0 :::9090                 :::*                    LISTEN      13193/clash
udp        0      0 127.0.0.1:7874          0.0.0.0:*                           13193/clash
udp        0      0 :::7891                 :::*                                13193/clash
udp        0      0 :::7892                 :::*                                13193/clash

#===================== 测试本机DNS查询 =====================#
Server:     127.0.0.1
Address:    127.0.0.1#53

Name:      www.baidu.com
Address 1: 198.18.0.5
*** Can't find www.baidu.com: No answer

#===================== resolv.conf.auto =====================#
# Interface wan
nameserver 192.168.1.1
search Home

#===================== 测试本机网络连接 =====================#
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Connection: keep-alive
Content-Length: 277
Content-Type: text/html
Date: Mon, 21 Mar 2022 12:25:50 GMT
Etag: "575e1f59-115"
Last-Modified: Mon, 13 Jun 2016 02:50:01 GMT
Pragma: no-cache
Server: bfe/1.0.8.18

#===================== 测试本机网络下载 =====================#
HTTP/1.1 200 Connection established

#===================== 最近运行日志 =====================#
time="2022-03-21T12:25:41Z" level=warning msg="[TCP] dial GlobalTV (match RuleSet/Streaming) to www.youtube.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:41Z" level=warning msg="[TCP] dial GlobalTV (match RuleSet/Streaming) to www.youtube.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:41Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars2.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to github.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars2.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial GlobalTV (match RuleSet/Streaming) to www.youtube.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to github.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars3.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:42Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to github.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial GlobalTV (match RuleSet/Streaming) to www.youtube.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars2.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars2.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.74:2004 error: dial tcp4 124.237.211.74:2004: i/o timeout"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.140:2122 error: dial tcp4 124.237.211.140:2122: i/o timeout"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.210:2004 error: dial tcp4 124.237.211.210:2004: i/o timeout"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.147:2122 error: dial tcp4 124.237.211.147:2122: i/o timeout"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.11:2122 error: dial tcp4 124.237.211.11:2122: i/o timeout"
time="2022-03-21T12:25:43Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 116.20.229.153:12345 error: dial tcp4 116.20.229.153:12345: connect: connection refused"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars3.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.208:2122 error: dial tcp4 124.237.211.208:2122: i/o timeout"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars0.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:44Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to content-autofill.googleapis.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars3.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 221.223.103.165:12911 error: dial tcp4 221.223.103.165:12911: i/o timeout"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.9:2004 error: dial tcp4 124.237.211.9:2004: i/o timeout"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.204:2004 error: dial tcp4 124.237.211.204:2004: i/o timeout"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 61.143.34.222:15000 error: dial tcp4 61.143.34.222:15000: i/o timeout"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.198:2122 error: dial tcp4 124.237.211.198:2122: i/o timeout"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:45Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:46Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:46Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:46Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars0.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:46Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to content-autofill.googleapis.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:47Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to avatars1.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:48Z" level=info msg="[TCP] 192.168.3.126:65218 --> 183.84.3.45:8837 match RuleSet(ChinaIP) using Domestic[DIRECT]"
time="2022-03-21T12:25:48Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to content-autofill.googleapis.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:49Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to content-autofill.googleapis.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"
time="2022-03-21T12:25:49Z" level=warning msg="[TCP] dial Domestic (match RuleSet/ChinaIP) to 124.237.211.16:2004 error: dial tcp4 124.237.211.16:2004: i/o timeout"
time="2022-03-21T12:25:50Z" level=info msg="[TCP] 192.168.1.4:40416 --> www.baidu.com:80 match RuleSet(China) using Domestic[DIRECT]"
time="2022-03-21T12:25:51Z" level=warning msg="[TCP] dial Proxy (match RuleSet/Global) to raw.githubusercontent.com:443 error: dial fragile.fragilelambda.one:443 error: 200 OK"

[vernesong]

新内核vmess配置格式有变化，自行修改

[fragilelambda]

新内核vmess配置格式有变化，自行修改

抱歉，我对 clash 不太熟悉，这里是指自行修改服务器端还是修改 openclash，我可以参考哪里的代码或者文档吗？感谢！

[vernesong]

https://github.com/Dreamacro/clash/wiki/configuration

[hcym]

变化多端，电脑的也不能用ws

[github-actions[bot]]

This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 5 days