无法进行外网代理

[lihuaye]

Verify Steps

• [X] Tracker 我已经在 Issue Tracker 中找过我要提出的问题
• [X] Latest 我已经使用最新 Dev 版本测试过，问题依旧存在
• [X] Core 这是 OpenClash 存在的问题，并非我所使用的 Clash 或 Meta 等内核的特定问题
• [X] Meaningful 我提交的不是无意义的 催促更新或修复 请求

OpenClash Version

v0.45.65-beta

Bug on Environment

Lean

Bug on Platform

Linux-armv8

To Reproduce

大概是这样，R4S刷完骷髅头固件后，使用oc，设置好配置完可以正常使用，隔天就没办法访问外网了，控制面板上节点延迟正常

Describe the Bug

无法进行代理

OpenClash Log

OpenClash 调试日志

生成时间: 2022-10-23 08:58:13 插件版本: v0.45.65-beta 隐私提示: 上传此日志前请注意检查、屏蔽公网IP、节点、密码等相关敏感信息

#===================== 系统信息 =====================#

主机型号: FriendlyElec NanoPi R4S
固件版本: OpenWrt SNAPSHOT r4499-8adb16b46
LuCI版本: git-22.291.47342-248a226-1
内核版本: 5.4.190
处理器架构: aarch64_generic

#此项有值时,如不使用IPv6,建议到网络-接口-lan的设置中禁用IPV6的DHCP
IPV6-DHCP: 

#此项结果应仅有配置文件的DNS监听地址
Dnsmasq转发设置: 127.0.0.1#7874

#===================== 依赖检查 =====================#

dnsmasq-full: 已安装
coreutils: 已安装
coreutils-nohup: 未安装
bash: 已安装
curl: 未安装
ca-certificates: 已安装
ipset: 已安装
ip-full: 已安装
libcap: 已安装
libcap-bin: 已安装
ruby: 已安装
ruby-yaml: 已安装
ruby-psych: 已安装
ruby-pstore: 已安装
kmod-tun(TUN模式): 已安装
luci-compat(Luci >= 19.07): 已安装
kmod-inet-diag(PROCESS-NAME): 已安装
unzip: 已安装
iptables-mod-tproxy: 已安装
kmod-ipt-tproxy: 已安装
iptables-mod-extra: 已安装
kmod-ipt-extra: 已安装
kmod-ipt-nat: 已安装

#===================== 内核检查 =====================#

运行状态: 运行中
进程pid: 2439
运行权限: 2439: cap_dac_override,cap_net_bind_service,cap_net_admin,cap_net_raw,cap_sys_ptrace,cap_sys_resource=eip
运行用户: nobody
已选择的架构: linux-armv8

#下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限
Tun内核版本: 2022.08.26-3-ge16bdd2
Tun内核文件: 存在
Tun内核运行权限: 正常

Dev内核版本: v1.11.8-3-g4f291fa
Dev内核文件: 存在
Dev内核运行权限: 正常

Meta内核版本: alpha-g9b89ff9
Meta内核文件: 存在
Meta内核运行权限: 正常

#===================== 插件设置 =====================#

当前配置文件: /etc/openclash/config/config.yaml
启动配置文件: /etc/openclash/config.yaml
运行模式: redir-host
默认代理模式: rule
UDP流量转发(tproxy): 停用
DNS劫持: 启用
自定义DNS: 停用
IPV6代理: 停用
IPV6-DNS解析: 停用
禁用Dnsmasq缓存: 停用
自定义规则: 停用
仅允许内网: 启用
仅代理命中规则流量: 停用
仅允许常用端口流量: 停用
绕过中国大陆IP: 停用
DNS远程解析: 启用
路由本机代理: 启用

#启动异常时建议关闭此项后重试
混合节点: 停用
保留配置: 停用

#启动异常时建议关闭此项后重试
第三方规则: 停用

#===================== 配置文件 =====================#

port: 7890
socks-port: 7891
allow-lan: true
mode: rule
log-level: silent
external-controller: 0.0.0.0:9090
proxy-groups:
- name: "\U0001F680 节点选择"
  type: select
  proxies:
  - "♻️ 自动选择"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F680 手动切换"
  type: select
  proxies:
  - "\U0001F1ED\U0001F1F0 香港01"
  - "\U0001F1ED\U0001F1F0 香港02"
  - "\U0001F1ED\U0001F1F0 香港03"
  - "\U0001F1ED\U0001F1F0 香港04"
  - "\U0001F1ED\U0001F1F0 香港05"
  - "\U0001F1ED\U0001F1F0 香港06"
  - "\U0001F1ED\U0001F1F0 香港07"
  - "\U0001F1ED\U0001F1F0 香港08"
  - "\U0001F1ED\U0001F1F0 香港09"
  - "\U0001F1ED\U0001F1F0 香港10"
  - "\U0001F1ED\U0001F1F0 香港11"
  - "\U0001F1ED\U0001F1F0 香港12"
  - "\U0001F1ED\U0001F1F0 香港13"
  - "\U0001F1ED\U0001F1F0 香港14"
  - "\U0001F1ED\U0001F1F0 香港15"
  - "\U0001F1ED\U0001F1F0 香港16"
  - "\U0001F1ED\U0001F1F0 香港17"
  - "\U0001F1ED\U0001F1F0 香港18"
  - "\U0001F1ED\U0001F1F0 香港19"
  - "\U0001F1ED\U0001F1F0 香港20"
  - "\U0001F1ED\U0001F1F0 香港21"
  - "\U0001F1ED\U0001F1F0 香港22"
  - "\U0001F1ED\U0001F1F0 香港23"
  - "\U0001F1ED\U0001F1F0 香港24"
  - "\U0001F1ED\U0001F1F0 香港25"
  - "\U0001F1ED\U0001F1F0 香港26"
  - "\U0001F1F5\U0001F1ED 菲律宾01"
  - "\U0001F1F5\U0001F1ED 菲律宾02"
  - "\U0001F1F5\U0001F1ED 菲律宾03"
  - "\U0001F1F8\U0001F1EC 新加坡01"
  - "\U0001F1F8\U0001F1EC 新加坡02"
  - "\U0001F1F8\U0001F1EC 新加坡03"
  - "\U0001F1F8\U0001F1EC 新加坡04"
  - "\U0001F1F8\U0001F1EC 新加坡05"
  - "\U0001F1F8\U0001F1EC 新加坡06"
  - "\U0001F1F8\U0001F1EC 新加坡07"
  - "\U0001F1F8\U0001F1EC 新加坡08"
  - "\U0001F1F8\U0001F1EC 新加坡09"
  - "\U0001F1F8\U0001F1EC 新加坡10"
  - "\U0001F1F8\U0001F1EC 新加坡11"
  - "\U0001F1F8\U0001F1EC 新加坡12"
  - "\U0001F1F8\U0001F1EC 新加坡13"
  - "\U0001F1F8\U0001F1EC 新加坡14"
  - "\U0001F1F8\U0001F1EC 新加坡15"
  - "\U0001F1F8\U0001F1EC 新加坡16"
  - "\U0001F1F8\U0001F1EC 新加坡17"
  - "\U0001F1F8\U0001F1EC 新加坡18"
  - "\U0001F1E8\U0001F1F3 台湾省01"
  - "\U0001F1E8\U0001F1F3 台湾省02"
  - "\U0001F1E8\U0001F1F3 台湾省03"
  - "\U0001F1E8\U0001F1F3 台湾省04"
  - "\U0001F1E8\U0001F1F3 台湾省05"
  - "\U0001F1E8\U0001F1F3 台湾省06"
  - "\U0001F1EF\U0001F1F5 日本01"
  - "\U0001F1EF\U0001F1F5 日本02"
  - "\U0001F1EF\U0001F1F5 日本03"
  - "\U0001F1EF\U0001F1F5 日本04"
  - "\U0001F1EF\U0001F1F5 日本05"
  - "\U0001F1EF\U0001F1F5 日本06"
  - "\U0001F1EF\U0001F1F5 日本07"
  - "\U0001F1EF\U0001F1F5 日本08"
  - "\U0001F1EF\U0001F1F5 日本09"
  - "\U0001F1EF\U0001F1F5 日本10"
  - "\U0001F1EF\U0001F1F5 日本11"
  - "\U0001F1EF\U0001F1F5 日本12"
  - "\U0001F1EF\U0001F1F5 日本13"
  - "\U0001F1FA\U0001F1F2 美国01"
  - "\U0001F1FA\U0001F1F2 美国02"
  - "\U0001F1FA\U0001F1F2 美国03"
  - "\U0001F1FA\U0001F1F2 美国04"
  - "\U0001F1FA\U0001F1F2 美国05"
  - "\U0001F1FA\U0001F1F2 美国06"
  - "\U0001F1FA\U0001F1F2 美国07"
  - "\U0001F1FA\U0001F1F2 美国08"
  - "\U0001F1FA\U0001F1F2 美国09"
  - "\U0001F1FA\U0001F1F2 美国10"
  - "\U0001F1FA\U0001F1F2 美国11"
  - "\U0001F1FA\U0001F1F2 美国12"
  - "\U0001F1FA\U0001F1F2 美国13"
  - "\U0001F1FA\U0001F1F2 美国14"
  - "\U0001F1FA\U0001F1F2 美国15"
  - "\U0001F1FA\U0001F1F2 美国16"
  - "\U0001F1FA\U0001F1F2 美国17"
  - "\U0001F1FA\U0001F1F2 美国18"
  - "\U0001F1FA\U0001F1F2 美国19"
  - "\U0001F1FA\U0001F1F2 美国20"
  - "\U0001F1FA\U0001F1F2 美国21"
  - "\U0001F1FA\U0001F1F2 美国22"
  - "\U0001F1EC\U0001F1E7 英国"
  - "\U0001F1F0\U0001F1F7 韩国"
  - 澳洲
  - "\U0001F1F3\U0001F1F1 荷兰"
  - "\U0001F1E9\U0001F1EA 德国"
  - "\U0001F1EE\U0001F1F3 印度"
  - "\U0001F1E7\U0001F1F7 巴西"
  - "\U0001F1EB\U0001F1F7 法国"
  - "\U0001F1F9\U0001F1ED 泰国"
  - "\U0001F1F9\U0001F1F7 土耳其"
  - "\U0001F1E6\U0001F1F7 阿根廷"
  - "\U0001F1E8\U0001F1E6 加拿大"
  - "\U0001F1F7\U0001F1FA 俄罗斯"
  - "\U0001F1EE\U0001F1F1 以色列"
  - "\U0001F1F2\U0001F1FE 马来西亚"
  - 巴基斯坦
  - 哥伦比亚
  - "「官 网」iplc.vip"
- name: "♻️ 自动选择"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1ED\U0001F1F0 香港01"
  - "\U0001F1ED\U0001F1F0 香港02"
  - "\U0001F1ED\U0001F1F0 香港03"
  - "\U0001F1ED\U0001F1F0 香港04"
  - "\U0001F1ED\U0001F1F0 香港05"
  - "\U0001F1ED\U0001F1F0 香港06"
  - "\U0001F1ED\U0001F1F0 香港07"
  - "\U0001F1ED\U0001F1F0 香港08"
  - "\U0001F1ED\U0001F1F0 香港09"
  - "\U0001F1ED\U0001F1F0 香港10"
  - "\U0001F1ED\U0001F1F0 香港11"
  - "\U0001F1ED\U0001F1F0 香港12"
  - "\U0001F1ED\U0001F1F0 香港13"
  - "\U0001F1ED\U0001F1F0 香港14"
  - "\U0001F1ED\U0001F1F0 香港15"
  - "\U0001F1ED\U0001F1F0 香港16"
  - "\U0001F1ED\U0001F1F0 香港17"
  - "\U0001F1ED\U0001F1F0 香港18"
  - "\U0001F1ED\U0001F1F0 香港19"
  - "\U0001F1ED\U0001F1F0 香港20"
  - "\U0001F1ED\U0001F1F0 香港21"
  - "\U0001F1ED\U0001F1F0 香港22"
  - "\U0001F1ED\U0001F1F0 香港23"
  - "\U0001F1ED\U0001F1F0 香港24"
  - "\U0001F1ED\U0001F1F0 香港25"
  - "\U0001F1ED\U0001F1F0 香港26"
  - "\U0001F1F5\U0001F1ED 菲律宾01"
  - "\U0001F1F5\U0001F1ED 菲律宾02"
  - "\U0001F1F5\U0001F1ED 菲律宾03"
  - "\U0001F1F8\U0001F1EC 新加坡01"
  - "\U0001F1F8\U0001F1EC 新加坡02"
  - "\U0001F1F8\U0001F1EC 新加坡03"
  - "\U0001F1F8\U0001F1EC 新加坡04"
  - "\U0001F1F8\U0001F1EC 新加坡05"
  - "\U0001F1F8\U0001F1EC 新加坡06"
  - "\U0001F1F8\U0001F1EC 新加坡07"
  - "\U0001F1F8\U0001F1EC 新加坡08"
  - "\U0001F1F8\U0001F1EC 新加坡09"
  - "\U0001F1F8\U0001F1EC 新加坡10"
  - "\U0001F1F8\U0001F1EC 新加坡11"
  - "\U0001F1F8\U0001F1EC 新加坡12"
  - "\U0001F1F8\U0001F1EC 新加坡13"
  - "\U0001F1F8\U0001F1EC 新加坡14"
  - "\U0001F1F8\U0001F1EC 新加坡15"
  - "\U0001F1F8\U0001F1EC 新加坡16"
  - "\U0001F1F8\U0001F1EC 新加坡17"
  - "\U0001F1F8\U0001F1EC 新加坡18"
  - "\U0001F1E8\U0001F1F3 台湾省01"
  - "\U0001F1E8\U0001F1F3 台湾省02"
  - "\U0001F1E8\U0001F1F3 台湾省03"
  - "\U0001F1E8\U0001F1F3 台湾省04"
  - "\U0001F1E8\U0001F1F3 台湾省05"
  - "\U0001F1E8\U0001F1F3 台湾省06"
  - "\U0001F1EF\U0001F1F5 日本01"
  - "\U0001F1EF\U0001F1F5 日本02"
  - "\U0001F1EF\U0001F1F5 日本03"
  - "\U0001F1EF\U0001F1F5 日本04"
  - "\U0001F1EF\U0001F1F5 日本05"
  - "\U0001F1EF\U0001F1F5 日本06"
  - "\U0001F1EF\U0001F1F5 日本07"
  - "\U0001F1EF\U0001F1F5 日本08"
  - "\U0001F1EF\U0001F1F5 日本09"
  - "\U0001F1EF\U0001F1F5 日本10"
  - "\U0001F1EF\U0001F1F5 日本11"
  - "\U0001F1EF\U0001F1F5 日本12"
  - "\U0001F1EF\U0001F1F5 日本13"
  - "\U0001F1FA\U0001F1F2 美国01"
  - "\U0001F1FA\U0001F1F2 美国02"
  - "\U0001F1FA\U0001F1F2 美国03"
  - "\U0001F1FA\U0001F1F2 美国04"
  - "\U0001F1FA\U0001F1F2 美国05"
  - "\U0001F1FA\U0001F1F2 美国06"
  - "\U0001F1FA\U0001F1F2 美国07"
  - "\U0001F1FA\U0001F1F2 美国08"
  - "\U0001F1FA\U0001F1F2 美国09"
  - "\U0001F1FA\U0001F1F2 美国10"
  - "\U0001F1FA\U0001F1F2 美国11"
  - "\U0001F1FA\U0001F1F2 美国12"
  - "\U0001F1FA\U0001F1F2 美国13"
  - "\U0001F1FA\U0001F1F2 美国14"
  - "\U0001F1FA\U0001F1F2 美国15"
  - "\U0001F1FA\U0001F1F2 美国16"
  - "\U0001F1FA\U0001F1F2 美国17"
  - "\U0001F1FA\U0001F1F2 美国18"
  - "\U0001F1FA\U0001F1F2 美国19"
  - "\U0001F1FA\U0001F1F2 美国20"
  - "\U0001F1FA\U0001F1F2 美国21"
  - "\U0001F1FA\U0001F1F2 美国22"
  - "\U0001F1EC\U0001F1E7 英国"
  - "\U0001F1F0\U0001F1F7 韩国"
  - 澳洲
  - "\U0001F1F3\U0001F1F1 荷兰"
  - "\U0001F1E9\U0001F1EA 德国"
  - "\U0001F1EE\U0001F1F3 印度"
  - "\U0001F1E7\U0001F1F7 巴西"
  - "\U0001F1EB\U0001F1F7 法国"
  - "\U0001F1F9\U0001F1ED 泰国"
  - "\U0001F1F9\U0001F1F7 土耳其"
  - "\U0001F1E6\U0001F1F7 阿根廷"
  - "\U0001F1E8\U0001F1E6 加拿大"
  - "\U0001F1F7\U0001F1FA 俄罗斯"
  - "\U0001F1EE\U0001F1F1 以色列"
  - "\U0001F1F2\U0001F1FE 马来西亚"
  - 巴基斯坦
  - 哥伦比亚
  - "「官 网」iplc.vip"
- name: "\U0001F4F2 电报消息"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4F9 油管视频"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F3A5 奈飞视频"
  type: select
  proxies:
  - "\U0001F3A5 奈飞节点"
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4FA 巴哈姆特"
  type: select
  proxies:
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F680 节点选择"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4FA 哔哩哔哩"
  type: select
  proxies:
  - "\U0001F3AF 全球直连"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
- name: "\U0001F30D 国外媒体"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F30F 国内媒体"
  type: select
  proxies:
  - DIRECT
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F680 手动切换"
- name: "\U0001F4E2 谷歌FCM"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: Ⓜ️ 微软云盘
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: Ⓜ️ 微软服务
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F34E 苹果服务"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F3AE 游戏平台"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F3B6 网易音乐"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
- name: "\U0001F3AF 全球直连"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
- name: "\U0001F6D1 广告拦截"
  type: select
  proxies:
  - REJECT
  - DIRECT
- name: "\U0001F343 应用净化"
  type: select
  proxies:
  - REJECT
  - DIRECT
- name: "\U0001F41F 漏网之鱼"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - DIRECT
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F1ED\U0001F1F0 香港节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1ED\U0001F1F0 香港01"
  - "\U0001F1ED\U0001F1F0 香港02"
  - "\U0001F1ED\U0001F1F0 香港03"
  - "\U0001F1ED\U0001F1F0 香港04"
  - "\U0001F1ED\U0001F1F0 香港05"
  - "\U0001F1ED\U0001F1F0 香港06"
  - "\U0001F1ED\U0001F1F0 香港07"
  - "\U0001F1ED\U0001F1F0 香港08"
  - "\U0001F1ED\U0001F1F0 香港09"
  - "\U0001F1ED\U0001F1F0 香港10"
  - "\U0001F1ED\U0001F1F0 香港11"
  - "\U0001F1ED\U0001F1F0 香港12"
  - "\U0001F1ED\U0001F1F0 香港13"
  - "\U0001F1ED\U0001F1F0 香港14"
  - "\U0001F1ED\U0001F1F0 香港15"
  - "\U0001F1ED\U0001F1F0 香港16"
  - "\U0001F1ED\U0001F1F0 香港17"
  - "\U0001F1ED\U0001F1F0 香港18"
  - "\U0001F1ED\U0001F1F0 香港19"
  - "\U0001F1ED\U0001F1F0 香港20"
  - "\U0001F1ED\U0001F1F0 香港21"
  - "\U0001F1ED\U0001F1F0 香港22"
  - "\U0001F1ED\U0001F1F0 香港23"
  - "\U0001F1ED\U0001F1F0 香港24"
  - "\U0001F1ED\U0001F1F0 香港25"
  - "\U0001F1ED\U0001F1F0 香港26"
- name: "\U0001F1EF\U0001F1F5 日本节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1EF\U0001F1F5 日本01"
  - "\U0001F1EF\U0001F1F5 日本02"
  - "\U0001F1EF\U0001F1F5 日本03"
  - "\U0001F1EF\U0001F1F5 日本04"
  - "\U0001F1EF\U0001F1F5 日本05"
  - "\U0001F1EF\U0001F1F5 日本06"
  - "\U0001F1EF\U0001F1F5 日本07"
  - "\U0001F1EF\U0001F1F5 日本08"
  - "\U0001F1EF\U0001F1F5 日本09"
  - "\U0001F1EF\U0001F1F5 日本10"
  - "\U0001F1EF\U0001F1F5 日本11"
  - "\U0001F1EF\U0001F1F5 日本12"
  - "\U0001F1EF\U0001F1F5 日本13"
- name: "\U0001F1FA\U0001F1F2 美国节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 150
  proxies:
  - "\U0001F1FA\U0001F1F2 美国01"
  - "\U0001F1FA\U0001F1F2 美国02"
  - "\U0001F1FA\U0001F1F2 美国03"
  - "\U0001F1FA\U0001F1F2 美国04"
  - "\U0001F1FA\U0001F1F2 美国05"
  - "\U0001F1FA\U0001F1F2 美国06"
  - "\U0001F1FA\U0001F1F2 美国07"
  - "\U0001F1FA\U0001F1F2 美国08"
  - "\U0001F1FA\U0001F1F2 美国09"
  - "\U0001F1FA\U0001F1F2 美国10"
  - "\U0001F1FA\U0001F1F2 美国11"
  - "\U0001F1FA\U0001F1F2 美国12"
  - "\U0001F1FA\U0001F1F2 美国13"
  - "\U0001F1FA\U0001F1F2 美国14"
  - "\U0001F1FA\U0001F1F2 美国15"
  - "\U0001F1FA\U0001F1F2 美国16"
  - "\U0001F1FA\U0001F1F2 美国17"
  - "\U0001F1FA\U0001F1F2 美国18"
  - "\U0001F1FA\U0001F1F2 美国19"
  - "\U0001F1FA\U0001F1F2 美国20"
  - "\U0001F1FA\U0001F1F2 美国21"
  - "\U0001F1FA\U0001F1F2 美国22"
- name: "\U0001F1E8\U0001F1F3 台湾节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1E8\U0001F1F3 台湾省01"
  - "\U0001F1E8\U0001F1F3 台湾省02"
  - "\U0001F1E8\U0001F1F3 台湾省03"
  - "\U0001F1E8\U0001F1F3 台湾省04"
  - "\U0001F1E8\U0001F1F3 台湾省05"
  - "\U0001F1E8\U0001F1F3 台湾省06"
- name: "\U0001F1F8\U0001F1EC 狮城节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1F8\U0001F1EC 新加坡01"
  - "\U0001F1F8\U0001F1EC 新加坡02"
  - "\U0001F1F8\U0001F1EC 新加坡03"
  - "\U0001F1F8\U0001F1EC 新加坡04"
  - "\U0001F1F8\U0001F1EC 新加坡05"
  - "\U0001F1F8\U0001F1EC 新加坡06"
  - "\U0001F1F8\U0001F1EC 新加坡07"
  - "\U0001F1F8\U0001F1EC 新加坡08"
  - "\U0001F1F8\U0001F1EC 新加坡09"
  - "\U0001F1F8\U0001F1EC 新加坡10"
  - "\U0001F1F8\U0001F1EC 新加坡11"
  - "\U0001F1F8\U0001F1EC 新加坡12"
  - "\U0001F1F8\U0001F1EC 新加坡13"
  - "\U0001F1F8\U0001F1EC 新加坡14"
  - "\U0001F1F8\U0001F1EC 新加坡15"
  - "\U0001F1F8\U0001F1EC 新加坡16"
  - "\U0001F1F8\U0001F1EC 新加坡17"
  - "\U0001F1F8\U0001F1EC 新加坡18"
- name: "\U0001F1F0\U0001F1F7 韩国节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1F0\U0001F1F7 韩国"
- name: "\U0001F3A5 奈飞节点"
  type: select
  proxies:
  - DIRECT
rules:
- DST-PORT,7895,REJECT
- DST-PORT,7892,REJECT
- IP-CIDR,198.18.0.1/16,REJECT,no-resolve
- "GEOIP,CN,\U0001F3AF 全球直连"
- "MATCH,\U0001F41F 漏网之鱼"
redir-port: 7892
tproxy-port: 7895
mixed-port: 7893
bind-address: "*"
external-ui: "/usr/share/openclash/ui"
ipv6: false
dns:
  enable: true
  ipv6: false
  enhanced-mode: fake-ip
  fake-ip-range: 198.18.0.1/16
  listen: 0.0.0.0:7874
  nameserver:
  - 202.96.128.86
  - 202.96.134.33
  - 114.114.114.114
  - 8.8.8.8
  - 8.8.4.4
  - 119.29.29.29
  - https://doh.pub/dns-query
  - https://dns.alidns.com/dns-query
  default-nameserver:
  - 202.96.128.86
  - 202.96.134.33
  - 114.114.114.114
  - 8.8.8.8
  - 8.8.4.4
  - 119.29.29.29
  fake-ip-filter:
  - "+.*"
profile:
  store-selected: true
  store-fake-ip: true
authentication:
- Clash:PEUU1dSX

#===================== IPTABLES 防火墙设置 =====================#

#IPv4 NAT chain

# Generated by iptables-save v1.8.7 on Sun Oct 23 08:58:15 2022
*nat
:PREROUTING ACCEPT [397:60098]
:INPUT ACCEPT [561:38793]
:OUTPUT ACCEPT [1234:79407]
:POSTROUTING ACCEPT [133:8792]
:MINIUPNPD - [0:0]
:MINIUPNPD-POSTROUTING - [0:0]
:openclash - [0:0]
:openclash_output - [0:0]
:postrouting_lan_rule - [0:0]
:postrouting_rule - [0:0]
:postrouting_wan_rule - [0:0]
:prerouting_lan_rule - [0:0]
:prerouting_rule - [0:0]
:prerouting_wan_rule - [0:0]
:zone_lan_postrouting - [0:0]
:zone_lan_prerouting - [0:0]
:zone_wan_postrouting - [0:0]
:zone_wan_prerouting - [0:0]
-A PREROUTING -d 8.8.4.4/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -d 8.8.8.8/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -p tcp -m tcp --dport 53 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 53
-A PREROUTING -p udp -m udp --dport 53 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 53
-A PREROUTING -m comment --comment "!fw3: Custom prerouting rule chain" -j prerouting_rule
-A PREROUTING -i br-lan -m comment --comment "!fw3" -j zone_lan_prerouting
-A PREROUTING -i pppoe-wan -m comment --comment "!fw3" -j zone_wan_prerouting
-A PREROUTING -i eth0 -m comment --comment "!fw3" -j zone_wan_prerouting
-A PREROUTING -p udp -m udp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -p tcp -m tcp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -p tcp -j openclash
-A OUTPUT -j openclash_output
-A POSTROUTING -m comment --comment "!fw3: Custom postrouting rule chain" -j postrouting_rule
-A POSTROUTING -o br-lan -m comment --comment "!fw3" -j zone_lan_postrouting
-A POSTROUTING -o pppoe-wan -m comment --comment "!fw3" -j zone_wan_postrouting
-A POSTROUTING -o eth0 -m comment --comment "!fw3" -j zone_wan_postrouting
-A openclash -p tcp -m tcp --sport 1688 -j RETURN
-A openclash -m set --match-set localnetwork dst -j RETURN
-A openclash -p tcp -j REDIRECT --to-ports 7892
-A openclash_output -p tcp -m tcp --sport 1688 -j RETURN
-A openclash_output -s 192.168.11.217/32 -p tcp -m tcp --dport 8096 -j RETURN
-A openclash_output -s 192.168.11.217/32 -p tcp -m tcp --sport 8096 -j RETURN
-A openclash_output -s 192.168.11.217/32 -p tcp -m tcp --dport 25500 -j RETURN
-A openclash_output -s 192.168.11.217/32 -p tcp -m tcp --sport 25500 -j RETURN
-A openclash_output -s 192.168.11.217/32 -p tcp -m tcp --dport 5000 -j RETURN
-A openclash_output -s 192.168.11.217/32 -p tcp -m tcp --sport 5000 -j RETURN
-A openclash_output -s 192.168.11.1/32 -p tcp -m tcp --dport 83 -j RETURN
-A openclash_output -s 192.168.11.1/32 -p tcp -m tcp --sport 80 -j RETURN
-A openclash_output -m set --match-set localnetwork dst -j RETURN
-A openclash_output -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A zone_lan_postrouting -m comment --comment "!fw3: Custom lan postrouting rule chain" -j postrouting_lan_rule
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.1/32 -p tcp -m tcp --dport 80 -m comment --comment "!fw3: r4s (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.1/32 -p udp -m udp --dport 80 -m comment --comment "!fw3: r4s (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.217/32 -p tcp -m tcp --dport 5000 -m comment --comment "!fw3: nas (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.217/32 -p udp -m udp --dport 5000 -m comment --comment "!fw3: nas (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.217/32 -p tcp -m tcp --dport 25500 -m comment --comment "!fw3: nas-sub (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.217/32 -p udp -m udp --dport 25500 -m comment --comment "!fw3: nas-sub (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.217/32 -p tcp -m tcp --dport 8096 -m comment --comment "!fw3: jellyfin (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_postrouting -s 192.168.11.0/24 -d 192.168.11.217/32 -p udp -m udp --dport 8096 -m comment --comment "!fw3: jellyfin (reflection)" -j SNAT --to-source 192.168.11.1
-A zone_lan_prerouting -m comment --comment "!fw3: Custom lan prerouting rule chain" -j prerouting_lan_rule
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p tcp -m tcp --dport 83 -m comment --comment "!fw3: r4s (reflection)" -j DNAT --to-destination 192.168.11.1:80
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p udp -m udp --dport 83 -m comment --comment "!fw3: r4s (reflection)" -j DNAT --to-destination 192.168.11.1:80
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p tcp -m tcp --dport 5000 -m comment --comment "!fw3: nas (reflection)" -j DNAT --to-destination 192.168.11.217:5000
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p udp -m udp --dport 5000 -m comment --comment "!fw3: nas (reflection)" -j DNAT --to-destination 192.168.11.217:5000
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p tcp -m tcp --dport 25500 -m comment --comment "!fw3: nas-sub (reflection)" -j DNAT --to-destination 192.168.11.217:25500
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p udp -m udp --dport 25500 -m comment --comment "!fw3: nas-sub (reflection)" -j DNAT --to-destination 192.168.11.217:25500
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p tcp -m tcp --dport 8096 -m comment --comment "!fw3: jellyfin (reflection)" -j DNAT --to-destination 192.168.11.217:8096
-A zone_lan_prerouting -s 192.168.11.0/24 -d *WAN IP*/32 -p udp -m udp --dport 8096 -m comment --comment "!fw3: jellyfin (reflection)" -j DNAT --to-destination 192.168.11.217:8096
-A zone_wan_postrouting -j MINIUPNPD-POSTROUTING
-A zone_wan_postrouting -m comment --comment "!fw3: Custom wan postrouting rule chain" -j postrouting_wan_rule
-A zone_wan_postrouting -m comment --comment "!fw3" -j MASQUERADE
-A zone_wan_prerouting -j MINIUPNPD
-A zone_wan_prerouting -m comment --comment "!fw3: Custom wan prerouting rule chain" -j prerouting_wan_rule
-A zone_wan_prerouting -p tcp -m tcp --dport 83 -m comment --comment "!fw3: r4s" -j DNAT --to-destination 192.168.11.1:80
-A zone_wan_prerouting -p udp -m udp --dport 83 -m comment --comment "!fw3: r4s" -j DNAT --to-destination 192.168.11.1:80
-A zone_wan_prerouting -p tcp -m tcp --dport 5000 -m comment --comment "!fw3: nas" -j DNAT --to-destination 192.168.11.217:5000
-A zone_wan_prerouting -p udp -m udp --dport 5000 -m comment --comment "!fw3: nas" -j DNAT --to-destination 192.168.11.217:5000
-A zone_wan_prerouting -p tcp -m tcp --dport 25500 -m comment --comment "!fw3: nas-sub" -j DNAT --to-destination 192.168.11.217:25500
-A zone_wan_prerouting -p udp -m udp --dport 25500 -m comment --comment "!fw3: nas-sub" -j DNAT --to-destination 192.168.11.217:25500
-A zone_wan_prerouting -p tcp -m tcp --dport 8096 -m comment --comment "!fw3: jellyfin" -j DNAT --to-destination 192.168.11.217:8096
-A zone_wan_prerouting -p udp -m udp --dport 8096 -m comment --comment "!fw3: jellyfin" -j DNAT --to-destination 192.168.11.217:8096
COMMIT
# Completed on Sun Oct 23 08:58:15 2022

#IPv4 Mangle chain

# Generated by iptables-save v1.8.7 on Sun Oct 23 08:58:15 2022
*mangle
:PREROUTING ACCEPT [14776231:12360050507]
:INPUT ACCEPT [1255859:935217163]
:FORWARD ACCEPT [13514383:11423972507]
:OUTPUT ACCEPT [818543:941820136]
:POSTROUTING ACCEPT [14314651:12366549561]
-A FORWARD -o pppoe-wan -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -i pppoe-wan -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -o eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -i eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
COMMIT
# Completed on Sun Oct 23 08:58:15 2022

#IPv4 Filter chain

# Generated by iptables-save v1.8.7 on Sun Oct 23 08:58:15 2022
*filter
:INPUT ACCEPT [15:600]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:MINIUPNPD - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:openclash_wan_input - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_ACCEPT - [0:0]
-A INPUT -p udp -m udp --dport 443 -m comment --comment "OpenClash QUIC REJECT" -m set ! --match-set china_ip_route dst -j REJECT --reject-with icmp-port-unreachable
-A INPUT -i eth0 -m set ! --match-set localnetwork src -j openclash_wan_input
-A INPUT -i pppoe-wan -m set ! --match-set localnetwork src -j openclash_wan_input
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -i pppoe-wan -m comment --comment "!fw3" -j zone_wan_input
-A INPUT -i eth0 -m comment --comment "!fw3" -j zone_wan_input
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -i pppoe-wan -m comment --comment "!fw3" -j zone_wan_forward
-A FORWARD -i eth0 -m comment --comment "!fw3" -j zone_wan_forward
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A OUTPUT -o pppoe-wan -m comment --comment "!fw3" -j zone_wan_output
-A OUTPUT -o eth0 -m comment --comment "!fw3" -j zone_wan_output
-A openclash_wan_input -p udp -m multiport --dports 7892,7895,9090,7890,7891,7893,7874 -j REJECT --reject-with icmp-port-unreachable
-A openclash_wan_input -p tcp -m multiport --dports 7892,7895,9090,7890,7891,7893,7874 -j REJECT --reject-with icmp-port-unreachable
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp-port-unreachable
-A syn_flood -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_ACCEPT -o pppoe-wan -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_wan_dest_ACCEPT -o pppoe-wan -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_ACCEPT -o eth0 -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_wan_dest_ACCEPT -o eth0 -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_forward -j MINIUPNPD
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -p udp -m udp --dport 68 -m comment --comment "!fw3: Allow-DHCP-Renew" -j ACCEPT
-A zone_wan_input -p icmp -m icmp --icmp-type 8 -m comment --comment "!fw3: Allow-Ping" -j ACCEPT
-A zone_wan_input -p igmp -m comment --comment "!fw3: Allow-IGMP" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 8118 -m comment --comment "!fw3: adblock" -j DROP
-A zone_wan_input -p tcp -m tcp --dport 1688 -m comment --comment "!fw3: kms" -j ACCEPT
-A zone_wan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_ACCEPT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
-A zone_wan_src_ACCEPT -i pppoe-wan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_src_ACCEPT -i eth0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
COMMIT
# Completed on Sun Oct 23 08:58:15 2022

#IPv6 NAT chain

# Generated by ip6tables-save v1.8.7 on Sun Oct 23 08:58:15 2022
*nat
:PREROUTING ACCEPT [5480:901182]
:INPUT ACCEPT [379:28964]
:OUTPUT ACCEPT [770:111189]
:POSTROUTING ACCEPT [770:111189]
-A PREROUTING -p udp -m udp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -p tcp -m tcp --dport 53 -j REDIRECT --to-ports 53
COMMIT
# Completed on Sun Oct 23 08:58:15 2022

#IPv6 Mangle chain

# Generated by ip6tables-save v1.8.7 on Sun Oct 23 08:58:15 2022
*mangle
:PREROUTING ACCEPT [8616:1143273]
:INPUT ACCEPT [2073:156363]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [978:140048]
:POSTROUTING ACCEPT [978:140048]
-A FORWARD -o pppoe-wan -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -i pppoe-wan -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -o eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -i eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
COMMIT
# Completed on Sun Oct 23 08:58:15 2022

#IPv6 Filter chain

# Generated by ip6tables-save v1.8.7 on Sun Oct 23 08:58:15 2022
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:MINIUPNPD - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_ACCEPT - [0:0]
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -i pppoe-wan -m comment --comment "!fw3" -j zone_wan_input
-A INPUT -i eth0 -m comment --comment "!fw3" -j zone_wan_input
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -i pppoe-wan -m comment --comment "!fw3" -j zone_wan_forward
-A FORWARD -i eth0 -m comment --comment "!fw3" -j zone_wan_forward
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A OUTPUT -o pppoe-wan -m comment --comment "!fw3" -j zone_wan_output
-A OUTPUT -o eth0 -m comment --comment "!fw3" -j zone_wan_output
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp6-port-unreachable
-A syn_flood -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_ACCEPT -o pppoe-wan -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_wan_dest_ACCEPT -o pppoe-wan -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_ACCEPT -o eth0 -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_wan_dest_ACCEPT -o eth0 -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_forward -j MINIUPNPD
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 128 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 129 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 2 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 3 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 4/0 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 4/1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -s fc00::/6 -d fc00::/6 -p udp -m udp --dport 546 -m comment --comment "!fw3: Allow-DHCPv6" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 130/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 131/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 132/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 143/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 128 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 129 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 2 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 3 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 4/0 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 4/1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 133 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 135 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 134 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 136 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 8118 -m comment --comment "!fw3: adblock" -j DROP
-A zone_wan_input -p tcp -m tcp --dport 1688 -m comment --comment "!fw3: kms" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_ACCEPT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
-A zone_wan_src_ACCEPT -i pppoe-wan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_src_ACCEPT -i eth0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
COMMIT
# Completed on Sun Oct 23 08:58:15 2022

#===================== IPSET状态 =====================#

Name: china
Name: china_ip_route
Name: china_ip_route_pass
Name: localnetwork

#===================== 路由表状态 =====================#

#route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         14.212.16.1     0.0.0.0         UG    0      0        0 pppoe-wan
14.212.16.1     0.0.0.0         255.255.255.255 UH    0      0        0 pppoe-wan
192.168.11.0    0.0.0.0         255.255.255.0   U     0      0        0 br-lan
#ip route list
default via 14.212.16.1 dev pppoe-wan proto static 
14.212.16.1 dev pppoe-wan proto kernel scope link src *WAN IP* 
192.168.11.0/24 dev br-lan proto kernel scope link src 192.168.11.1 
#ip rule show
0:  from all lookup local
32766:  from all lookup main
32767:  from all lookup default

#===================== 端口占用状态 =====================#

tcp        0      0 :::9090                 :::*                    LISTEN      2439/clash
tcp        0      0 :::7890                 :::*                    LISTEN      2439/clash
tcp        0      0 :::7891                 :::*                    LISTEN      2439/clash
tcp        0      0 :::7892                 :::*                    LISTEN      2439/clash
tcp        0      0 :::7893                 :::*                    LISTEN      2439/clash
tcp        0      0 :::7895                 :::*                    LISTEN      2439/clash
udp        0      0 :::7874                 :::*                                2439/clash
udp        0      0 :::7891                 :::*                                2439/clash
udp        0      0 :::7892                 :::*                                2439/clash
udp        0      0 :::7893                 :::*                                2439/clash
udp        0      0 :::7895                 :::*                                2439/clash

#===================== 测试本机DNS查询 =====================#

Server:     127.0.0.1
Address:    127.0.0.1:53

Non-authoritative answer:
www.baidu.com   canonical name = www.a.shifen.com
Name:   www.a.shifen.com
Address: 14.215.177.38
Name:   www.a.shifen.com
Address: 14.215.177.39

www.baidu.com   canonical name = www.a.shifen.com

#===================== resolv.conf.d =====================#

# Interface wan
nameserver 202.96.128.86
nameserver 202.96.134.33

#===================== 测试本机网络连接 =====================#

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Connection: keep-alive
Content-Length: 277
Content-Type: text/html
Date: Sun, 23 Oct 2022 00:58:17 GMT
Etag: "575e1f72-115"
Last-Modified: Mon, 13 Jun 2016 02:50:26 GMT
Pragma: no-cache
Server: bfe/1.0.8.18

#===================== 测试本机网络下载 =====================#

#===================== 最近运行日志 =====================#

time="2022-10-23T08:57:54+08:00" level=info msg="[TCP] 192.168.11.178:57573 --> 113.105.166.156:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:57:55+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56929 --> beacons4.gvt2.com:443 error: dial tcp4 216.239.32.116:443: i/o timeout"
time="2022-10-23T08:57:56+08:00" level=info msg="[TCP] 192.168.11.167:56458 --> 113.96.202.101:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:00+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56934 --> beacons4.gvt2.com:443 error: dial tcp4 216.239.32.116:443: i/o timeout"
time="2022-10-23T08:58:02+08:00" level=info msg="[TCP] 192.168.11.165:50752 --> 183.3.224.146:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:02+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.124:42910 --> 64.233.187.188:5228 error: dial tcp4 64.233.187.188:5228: i/o timeout"
time="2022-10-23T08:58:02+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56935 --> www.google.com:443 error: dial tcp4 154.85.102.32:443: i/o timeout"
time="2022-10-23T08:58:03+08:00" level=info msg="[TCP] 192.168.11.124:41870 --> alt4-mtalk.google.com:443 match Match() using 🐟 漏网之鱼[DIRECT]"
time="2022-10-23T08:58:04+08:00" level=info msg="[TCP] 192.168.11.130:65509 --> data.bilivideo.com:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:04+08:00" level=info msg="[TCP] 192.168.11.181:56938 --> www.baidu.com:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:05+08:00" level=info msg="[TCP] 192.168.11.181:56939 --> array510.prod.do.dsp.mp.microsoft.com:443 match Match() using 🐟 漏网之鱼[DIRECT]"
time="2022-10-23T08:58:05+08:00" level=info msg="[TCP] 192.168.11.178:54533 --> wxapp.tc.qq.com:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:05+08:00" level=info msg="[TCP] 192.168.11.178:54532 --> wxapp.tc.qq.com:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:05+08:00" level=info msg="[TCP] 192.168.11.235:36582 --> 220.181.106.152:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:05+08:00" level=info msg="[TCP] 192.168.11.235:48940 --> 113.96.202.101:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:05+08:00" level=info msg="[TCP] 192.168.11.235:39486 --> 183.47.121.237:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:06+08:00" level=info msg="[TCP] 192.168.11.178:57574 --> 183.60.131.224:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:07+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56937 --> www.google.com:443 error: dial tcp4 154.85.102.32:443: i/o timeout"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57576 --> 183.60.131.40:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57575 --> 183.60.131.210:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57577 --> 183.60.131.218:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57578 --> 183.60.131.210:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57579 --> 183.60.131.219:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57580 --> 183.60.131.219:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57581 --> 183.3.224.144:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57582 --> 183.60.131.225:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57583 --> 183.60.131.210:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57584 --> 183.60.131.100:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:08+08:00" level=info msg="[TCP] 192.168.11.178:57585 --> 113.105.154.42:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.181:56940 --> 110.88.157.232:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.181:56949 --> www.baidu.com:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.181:56950 --> www.baidu.com:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.181:56941 --> 104.17.107.55:443 match Match() using 🐟 漏网之鱼[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.181:56942 --> 3.220.57.224:443 match Match() using 🐟 漏网之鱼[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.181:56948 --> 3.220.57.224:443 match Match() using 🐟 漏网之鱼[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.235:45140 --> cgicol.amap.com:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.235:45142 --> cgicol.amap.com:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:09+08:00" level=info msg="[TCP] 192.168.11.124:42662 --> 59.82.113.248:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:10+08:00" level=info msg="[TCP] 192.168.11.181:56955 --> 3.220.57.224:443 match Match() using 🐟 漏网之鱼[DIRECT]"
time="2022-10-23T08:58:12+08:00" level=info msg="[TCP] 192.168.11.178:57586 --> 183.60.131.40:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:13+08:00" level=info msg="[TCP] 192.168.11.178:57587 --> 183.3.224.144:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:14+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56943 --> api-ipv4.ip.sb:443 error: dial tcp4 104.26.13.31:443: i/o timeout"
time="2022-10-23T08:58:14+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56951 --> www.youtube.com:443 error: dial tcp4 162.125.32.15:443: i/o timeout"
time="2022-10-23T08:58:14+08:00" level=warning msg="[TCP] dial 🐟 漏网之鱼 (match Match/) 192.168.11.181:56954 --> www.youtube.com:443 error: dial tcp4 162.125.32.15:443: i/o timeout"
time="2022-10-23T08:58:14+08:00" level=info msg="[TCP] 192.168.11.181:56959 --> www.baidu.com:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:17+08:00" level=info msg="[TCP] 192.168.11.178:57588 --> 183.3.224.144:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:17+08:00" level=info msg="[TCP] 192.168.11.244:45294 --> appupgrade.vivo.com.cn:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:17+08:00" level=info msg="[TCP] 192.168.11.244:40810 --> stappupgrade.vivo.com.cn:443 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:17+08:00" level=info msg="[TCP] *WAN IP*:54378 --> www.baidu.com:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"
time="2022-10-23T08:58:17+08:00" level=info msg="[TCP] 192.168.11.178:57589 --> 183.3.224.144:80 match GeoIP(CN) using 🎯 全球直连[DIRECT]"

#===================== 活动连接信息 =====================#

1. SourceIP:【192.168.11.218】 - Host:【bd-proxy.pull.yximgs.com】 - DestinationIP:【175.6.53.41】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
2. SourceIP:【192.168.11.178】 - Host:【wxapp.tc.qq.com】 - DestinationIP:【119.147.106.92】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
3. SourceIP:【192.168.11.181】 - Host:【array510.prod.do.dsp.mp.microsoft.com】 - DestinationIP:【52.184.212.181】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
4. SourceIP:【192.168.11.181】 - Host:【github.githubassets.com】 - DestinationIP:【185.199.110.154】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
5. SourceIP:【192.168.11.181】 - Host:【zhanzhang.toutiao.com】 - DestinationIP:【183.60.205.222】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
6. SourceIP:【192.168.11.130】 - Host:【tx-gz-live-p2p-backup1.chat.bilibili.com】 - DestinationIP:【106.55.9.137】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
7. SourceIP:【192.168.11.235】 - Host:【Empty】 - DestinationIP:【220.181.106.152】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
8. SourceIP:【192.168.11.235】 - Host:【cgicol.amap.com】 - DestinationIP:【106.11.23.52】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
9. SourceIP:【192.168.11.167】 - Host:【Empty】 - DestinationIP:【183.47.97.253】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
10. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【20.205.243.166】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
11. SourceIP:【192.168.11.218】 - Host:【bd-origin.pull.yximgs.com】 - DestinationIP:【111.177.3.42】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
12. SourceIP:【192.168.11.130】 - Host:【Empty】 - DestinationIP:【59.36.232.3】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
13. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【104.17.107.55】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
14. SourceIP:【192.168.11.181】 - Host:【api.github.com】 - DestinationIP:【20.205.243.168】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
15. SourceIP:【192.168.11.130】 - Host:【Empty】 - DestinationIP:【47.101.175.206】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
16. SourceIP:【192.168.11.165】 - Host:【Empty】 - DestinationIP:【183.3.224.146】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
17. SourceIP:【192.168.11.235】 - Host:【Empty】 - DestinationIP:【49.4.47.2】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
18. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【113.96.109.116】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
19. SourceIP:【192.168.11.218】 - Host:【ks-origin.pull.yximgs.com】 - DestinationIP:【125.89.173.135】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
20. SourceIP:【192.168.11.235】 - Host:【cgicol.amap.com】 - DestinationIP:【106.11.23.52】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
21. SourceIP:【192.168.11.130】 - Host:【Empty】 - DestinationIP:【101.91.136.40】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
22. SourceIP:【192.168.11.244】 - Host:【stappupgrade.vivo.com.cn】 - DestinationIP:【220.181.128.221】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
23. SourceIP:【192.168.11.218】 - Host:【ws-adaptive.pull.yximgs.com】 - DestinationIP:【222.79.78.110】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
24. SourceIP:【192.168.11.178】 - Host:【Empty】 - DestinationIP:【113.105.166.156】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
25. SourceIP:【192.168.11.218】 - Host:【ws-livemate.pull.yximgs.com】 - DestinationIP:【120.39.207.2】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
26. SourceIP:【192.168.11.130】 - Host:【dataflow.biliapi.com】 - DestinationIP:【59.36.228.220】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
27. SourceIP:【192.168.11.218】 - Host:【bd-rwk.pull.etoote.com】 - DestinationIP:【120.233.79.17】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
28. SourceIP:【192.168.11.218】 - Host:【httpdns.bcelive.com】 - DestinationIP:【180.101.212.96】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
29. SourceIP:【192.168.11.181】 - Host:【safebrowsing.googleapis.com】 - DestinationIP:【220.181.174.97】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
30. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【3.220.57.224】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
31. SourceIP:【192.168.11.218】 - Host:【Empty】 - DestinationIP:【222.79.77.24】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
32. SourceIP:【192.168.11.218】 - Host:【ks-origin.pull.yximgs.com】 - DestinationIP:【125.89.173.134】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
33. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【110.88.157.232】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
34. SourceIP:【192.168.11.181】 - Host:【www.baidu.com】 - DestinationIP:【14.215.177.38】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
35. SourceIP:【192.168.11.130】 - Host:【d1--cn-gotcha204-2.bilivideo.com】 - DestinationIP:【121.12.115.109】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
36. SourceIP:【192.168.11.178】 - Host:【Empty】 - DestinationIP:【150.138.233.181】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
37. SourceIP:【192.168.11.181】 - Host:【collector.github.com】 - DestinationIP:【140.82.112.22】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
38. SourceIP:【192.168.11.178】 - Host:【wxapp.tc.qq.com】 - DestinationIP:【119.147.106.236】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
39. SourceIP:【192.168.11.130】 - Host:【Empty】 - DestinationIP:【59.36.232.4】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
40. SourceIP:【192.168.11.181】 - Host:【www.baidu.com】 - DestinationIP:【14.215.177.39】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
41. SourceIP:【192.168.11.124】 - Host:【alt4-mtalk.google.com】 - DestinationIP:【142.250.152.188】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
42. SourceIP:【192.168.11.130】 - Host:【Empty】 - DestinationIP:【59.36.228.17】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
43. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【3.220.57.224】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
44. SourceIP:【192.168.11.181】 - Host:【beacons5.gvt3.com】 - DestinationIP:【220.181.174.226】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
45. SourceIP:【192.168.11.218】 - Host:【bd-proxy.pull.yximgs.com】 - DestinationIP:【175.6.53.41】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
46. SourceIP:【192.168.11.130】 - Host:【dataflow.biliapi.com】 - DestinationIP:【59.36.228.249】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
47. SourceIP:【192.168.11.218】 - Host:【ks-proxy.pull.yximgs.com】 - DestinationIP:【125.89.169.70】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
48. SourceIP:【192.168.11.218】 - Host:【bd.pull.yximgs.com】 - DestinationIP:【111.177.6.41】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
49. SourceIP:【192.168.11.130】 - Host:【Empty】 - DestinationIP:【120.92.168.154】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
50. SourceIP:【192.168.11.181】 - Host:【collect-v6.51.la】 - DestinationIP:【121.37.232.28】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
51. SourceIP:【192.168.11.181】 - Host:【Empty】 - DestinationIP:【3.220.57.224】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
52. SourceIP:【192.168.11.181】 - Host:【api.caiyunapp.com】 - DestinationIP:【139.129.76.36】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
53. SourceIP:【192.168.11.124】 - Host:【Empty】 - DestinationIP:【203.119.213.140】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
54. SourceIP:【192.168.11.247】 - Host:【configserver.hicloud.com】 - DestinationIP:【49.4.33.128】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
55. SourceIP:【192.168.11.218】 - Host:【bd-pclivemate.pull.yximgs.com】 - DestinationIP:【183.131.62.41】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
56. SourceIP:【192.168.11.167】 - Host:【mime.baidu.com】 - DestinationIP:【121.228.183.34】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
57. SourceIP:【192.168.11.181】 - Host:【github.githubassets.com】 - DestinationIP:【185.199.108.154】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【DIRECT】
58. SourceIP:【192.168.11.244】 - Host:【appupgrade.vivo.com.cn】 - DestinationIP:【39.97.23.89】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】

OpenClash Config

No response

Expected Behavior

能正常进行代理

Screenshots

No response

[vernesong]

规则没了？怎么都是直连

[lihuaye]

规则没了？怎么都是直连

应该是转换模板有问题，不用转换。现在可以正常代理了。