vernesong
commented
1 year ago 换节点
Closed FanofZY closed 1 year ago
vernesong
commented
1 year ago 换节点
FanofZY
commented
1 year ago 换节点
更换过节点,也更换过供应商,都不能解决这个问题。
vernesong
commented
1 year ago 你把qos关了
FanofZY
commented
1 year ago 你把qos关了
感谢你的帮助,qos是否指的此项功能?印象中未开启。
尝试删除所有qos相关配置,重启OpenClash后问题依旧,这是新的调试日志:
OpenClash 调试日志
生成时间: 2023-03-22 22:25:28 插件版本: v0.45.103-beta 隐私提示: 上传此日志前请注意检查、屏蔽公网IP、节点、密码等相关敏感信息
#===================== 系统信息 =====================#
主机型号: CncTion N6000-4L - Intel(R) Pentium(R) Silver N6000 @ 1.10GHz : 4 Core 4 Thread
固件版本: OpenWrt SNAPSHOT r5788-f345d0c9a
LuCI版本: git-23.061.31098-da92698-1
内核版本: 6.1.15
处理器架构: x86_64
#此项有值时,如不使用IPv6,建议到网络-接口-lan的设置中禁用IPV6的DHCP
IPV6-DHCP:
DNS劫持: Dnsmasq 转发
#DNS劫持为Dnsmasq时,此项结果应仅有配置文件的DNS监听地址
Dnsmasq转发设置: 127.0.0.1#7874
#===================== 依赖检查 =====================#
dnsmasq-full: 已安装
coreutils: 已安装
coreutils-nohup: 已安装
bash: 已安装
curl: 已安装
ca-certificates: 已安装
ipset: 已安装
ip-full: 已安装
libcap: 已安装
libcap-bin: 已安装
ruby: 已安装
ruby-yaml: 已安装
ruby-psych: 已安装
ruby-pstore: 已安装
kmod-tun(TUN模式): 已安装
luci-compat(Luci >= 19.07): 已安装
kmod-inet-diag(PROCESS-NAME): 未安装
unzip: 已安装
iptables-mod-tproxy: 已安装
kmod-ipt-tproxy: 已安装
iptables-mod-extra: 已安装
kmod-ipt-extra: 已安装
kmod-ipt-nat: 已安装
#===================== 内核检查 =====================#
运行状态: 运行中
内核:
进程pid: 18416
运行权限: 18416: cap_dac_override,cap_net_bind_service,cap_net_admin,cap_net_raw,cap_sys_ptrace,cap_sys_resource=eip
运行用户: nobody
已选择的架构:
#下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限
Tun内核版本: 2023.03.04
Tun内核文件: 存在
Tun内核运行权限: 正常
Dev内核版本: v1.13.0-6-g71f8f06
Dev内核文件: 存在
Dev内核运行权限: 正常
Meta内核版本: alpha-g3b037ac
Meta内核文件: 存在
Meta内核运行权限: 正常
#===================== 插件设置 =====================#
当前配置文件: /etc/openclash/config/config.yaml
启动配置文件: /etc/openclash/config.yaml
运行模式: fake-ip
默认代理模式: rule
UDP流量转发(tproxy): 停用
自定义DNS: 启用
IPV6代理: 停用
IPV6-DNS解析: 停用
禁用Dnsmasq缓存: 启用
自定义规则: 停用
仅允许内网: 启用
仅代理命中规则流量: 停用
仅允许常用端口流量: 停用
绕过中国大陆IP: 停用
路由本机代理: 启用
#启动异常时建议关闭此项后重试
混合节点: 停用
保留配置: 停用
#启动异常时建议关闭此项后重试
第三方规则: 停用
#===================== 配置文件 =====================#
mixed-port: 7893
allow-lan: true
bind-address: "*"
mode: rule
log-level: debug
external-controller: 0.0.0.0:9090
dns:
enable: true
ipv6: false
default-nameserver:
- 223.5.5.5
- 119.29.29.29
enhanced-mode: fake-ip
fake-ip-range: 198.18.0.1/16
use-hosts: true
nameserver:
- 114.114.114.114
- 119.29.29.29
- 223.5.5.5
fallback:
- tls://8.8.8.8:853
fallback-filter:
geoip: true
geoip-code: CN
ipcidr:
- 0.0.0.0/8
- 10.0.0.0/8
- 100.64.0.0/10
- 127.0.0.0/8
- 169.254.0.0/16
- 172.16.0.0/12
- 192.0.0.0/24
- 192.0.2.0/24
- 192.88.99.0/24
- 192.168.0.0/16
- 198.18.0.0/15
- 198.51.100.0/24
- 203.0.113.0/24
- 224.0.0.0/4
- 240.0.0.0/4
- 255.255.255.255/32
domain:
- "+.google.com"
- "+.facebook.com"
- "+.youtube.com"
- "+.githubusercontent.com"
- "+.googlevideo.com"
- "+.msftconnecttest.com"
- "+.msftncsi.com"
listen: 0.0.0.0:7874
proxy-groups:
- name: v2box
type: select
proxies:
- 自动选择
- 故障转移
- "【1倍率】美国B | 广港 | 解锁"
- "【1倍率】美国D | 皖日"
- "【1倍率】香港A | 广港 | 原生"
- "【测试节点 1倍率】 美国C| 琼港"
- "【避难节点 0.1倍率】香港C | 广港"
- "【1倍率】新加坡A | 广港"
- "【1.5倍率】新加坡B | 广港"
- name: 自动选择
type: url-test
proxies:
- "【1倍率】美国B | 广港 | 解锁"
- "【1倍率】美国D | 皖日"
- "【1倍率】香港A | 广港 | 原生"
- "【测试节点 1倍率】 美国C| 琼港"
- "【避难节点 0.1倍率】香港C | 广港"
- "【1倍率】新加坡A | 广港"
- "【1.5倍率】新加坡B | 广港"
url: http://www.gstatic.com/generate_204
interval: 86400
- name: 故障转移
type: fallback
proxies:
- "【1倍率】美国B | 广港 | 解锁"
- "【1倍率】美国D | 皖日"
- "【1倍率】香港A | 广港 | 原生"
- "【测试节点 1倍率】 美国C| 琼港"
- "【避难节点 0.1倍率】香港C | 广港"
- "【1倍率】新加坡A | 广港"
- "【1.5倍率】新加坡B | 广港"
url: http://www.gstatic.com/generate_204
interval: 7200
rules:
- DST-PORT,7895,REJECT
- DST-PORT,7892,REJECT
- IP-CIDR,198.18.0.1/16,REJECT,no-resolve
- DOMAIN,v2b.v2box.eu,DIRECT
- DOMAIN-SUFFIX,services.googleapis.cn,v2box
- DOMAIN-SUFFIX,xn--ngstr-lra8j.com,v2box
- DOMAIN,safebrowsing.urlsec.qq.com,DIRECT
- DOMAIN,safebrowsing.googleapis.com,DIRECT
- DOMAIN,developer.apple.com,v2box
- DOMAIN-SUFFIX,digicert.com,v2box
- DOMAIN,ocsp.apple.com,v2box
- DOMAIN,ocsp.comodoca.com,v2box
- DOMAIN,ocsp.usertrust.com,v2box
- DOMAIN,ocsp.sectigo.com,v2box
- DOMAIN,ocsp.verisign.net,v2box
- DOMAIN-SUFFIX,apple-dns.net,v2box
- DOMAIN,testflight.apple.com,v2box
- DOMAIN,sandbox.itunes.apple.com,v2box
- DOMAIN,itunes.apple.com,v2box
- DOMAIN-SUFFIX,apps.apple.com,v2box
- DOMAIN-SUFFIX,blobstore.apple.com,v2box
- DOMAIN,cvws.icloud-content.com,v2box
- DOMAIN-SUFFIX,mzstatic.com,DIRECT
- DOMAIN-SUFFIX,itunes.apple.com,DIRECT
- DOMAIN-SUFFIX,icloud.com,DIRECT
- DOMAIN-SUFFIX,icloud-content.com,DIRECT
- DOMAIN-SUFFIX,me.com,DIRECT
- DOMAIN-SUFFIX,aaplimg.com,DIRECT
- DOMAIN-SUFFIX,cdn20.com,DIRECT
- DOMAIN-SUFFIX,cdn-apple.com,DIRECT
- DOMAIN-SUFFIX,akadns.net,DIRECT
- DOMAIN-SUFFIX,akamaiedge.net,DIRECT
- DOMAIN-SUFFIX,edgekey.net,DIRECT
- DOMAIN-SUFFIX,mwcloudcdn.com,DIRECT
- DOMAIN-SUFFIX,mwcname.com,DIRECT
- DOMAIN-SUFFIX,apple.com,DIRECT
- DOMAIN-SUFFIX,apple-cloudkit.com,DIRECT
- DOMAIN-SUFFIX,apple-mapkit.com,DIRECT
- DOMAIN-SUFFIX,126.com,DIRECT
- DOMAIN-SUFFIX,126.net,DIRECT
- DOMAIN-SUFFIX,127.net,DIRECT
- DOMAIN-SUFFIX,163.com,DIRECT
- DOMAIN-SUFFIX,360buyimg.com,DIRECT
- DOMAIN-SUFFIX,36kr.com,DIRECT
- DOMAIN-SUFFIX,acfun.tv,DIRECT
- DOMAIN-SUFFIX,air-matters.com,DIRECT
- DOMAIN-SUFFIX,aixifan.com,DIRECT
- DOMAIN-KEYWORD,alicdn,DIRECT
- DOMAIN-KEYWORD,alipay,DIRECT
- DOMAIN-KEYWORD,taobao,DIRECT
- DOMAIN-SUFFIX,amap.com,DIRECT
- DOMAIN-SUFFIX,autonavi.com,DIRECT
- DOMAIN-KEYWORD,baidu,DIRECT
- DOMAIN-SUFFIX,bdimg.com,DIRECT
- DOMAIN-SUFFIX,bdstatic.com,DIRECT
- DOMAIN-SUFFIX,bilibili.com,DIRECT
- DOMAIN-SUFFIX,bilivideo.com,DIRECT
- DOMAIN-SUFFIX,caiyunapp.com,DIRECT
- DOMAIN-SUFFIX,clouddn.com,DIRECT
- DOMAIN-SUFFIX,cnbeta.com,DIRECT
- DOMAIN-SUFFIX,cnbetacdn.com,DIRECT
- DOMAIN-SUFFIX,cootekservice.com,DIRECT
- DOMAIN-SUFFIX,csdn.net,DIRECT
- DOMAIN-SUFFIX,ctrip.com,DIRECT
- DOMAIN-SUFFIX,dgtle.com,DIRECT
- DOMAIN-SUFFIX,dianping.com,DIRECT
- DOMAIN-SUFFIX,douban.com,DIRECT
- DOMAIN-SUFFIX,doubanio.com,DIRECT
- DOMAIN-SUFFIX,duokan.com,DIRECT
- DOMAIN-SUFFIX,easou.com,DIRECT
- DOMAIN-SUFFIX,ele.me,DIRECT
- DOMAIN-SUFFIX,feng.com,DIRECT
- DOMAIN-SUFFIX,fir.im,DIRECT
- DOMAIN-SUFFIX,frdic.com,DIRECT
- DOMAIN-SUFFIX,g-cores.com,DIRECT
- DOMAIN-SUFFIX,godic.net,DIRECT
- DOMAIN-SUFFIX,gtimg.com,DIRECT
- DOMAIN,cdn.hockeyapp.net,DIRECT
- DOMAIN-SUFFIX,hongxiu.com,DIRECT
- DOMAIN-SUFFIX,hxcdn.net,DIRECT
- DOMAIN-SUFFIX,iciba.com,DIRECT
- DOMAIN-SUFFIX,ifeng.com,DIRECT
- DOMAIN-SUFFIX,ifengimg.com,DIRECT
- DOMAIN-SUFFIX,ipip.net,DIRECT
- DOMAIN-SUFFIX,iqiyi.com,DIRECT
- DOMAIN-SUFFIX,jd.com,DIRECT
- DOMAIN-SUFFIX,jianshu.com,DIRECT
- DOMAIN-SUFFIX,knewone.com,DIRECT
- DOMAIN-SUFFIX,le.com,DIRECT
- DOMAIN-SUFFIX,lecloud.com,DIRECT
- DOMAIN-SUFFIX,lemicp.com,DIRECT
- DOMAIN-SUFFIX,licdn.com,DIRECT
- DOMAIN-SUFFIX,luoo.net,DIRECT
- DOMAIN-SUFFIX,meituan.com,DIRECT
- DOMAIN-SUFFIX,meituan.net,DIRECT
- DOMAIN-SUFFIX,mi.com,DIRECT
- DOMAIN-SUFFIX,miaopai.com,DIRECT
- DOMAIN-SUFFIX,microsoft.com,DIRECT
- DOMAIN-SUFFIX,microsoftonline.com,DIRECT
- DOMAIN-SUFFIX,miui.com,DIRECT
- DOMAIN-SUFFIX,miwifi.com,DIRECT
- DOMAIN-SUFFIX,mob.com,DIRECT
- DOMAIN-SUFFIX,netease.com,DIRECT
- DOMAIN-SUFFIX,office.com,DIRECT
- DOMAIN-SUFFIX,office365.com,DIRECT
- DOMAIN-KEYWORD,officecdn,DIRECT
- DOMAIN-SUFFIX,oschina.net,DIRECT
- DOMAIN-SUFFIX,ppsimg.com,DIRECT
- DOMAIN-SUFFIX,pstatp.com,DIRECT
- DOMAIN-SUFFIX,qcloud.com,DIRECT
- DOMAIN-SUFFIX,qdaily.com,DIRECT
- DOMAIN-SUFFIX,qdmm.com,DIRECT
- DOMAIN-SUFFIX,qhimg.com,DIRECT
- DOMAIN-SUFFIX,qhres.com,DIRECT
- DOMAIN-SUFFIX,qidian.com,DIRECT
- DOMAIN-SUFFIX,qihucdn.com,DIRECT
- DOMAIN-SUFFIX,qiniu.com,DIRECT
- DOMAIN-SUFFIX,qiniucdn.com,DIRECT
- DOMAIN-SUFFIX,qiyipic.com,DIRECT
- DOMAIN-SUFFIX,qq.com,DIRECT
- DOMAIN-SUFFIX,qqurl.com,DIRECT
- DOMAIN-SUFFIX,rarbg.to,DIRECT
- DOMAIN-SUFFIX,ruguoapp.com,DIRECT
- DOMAIN-SUFFIX,segmentfault.com,DIRECT
- DOMAIN-SUFFIX,sinaapp.com,DIRECT
- DOMAIN-SUFFIX,smzdm.com,DIRECT
- DOMAIN-SUFFIX,snapdrop.net,DIRECT
- DOMAIN-SUFFIX,sogou.com,DIRECT
- DOMAIN-SUFFIX,sogoucdn.com,DIRECT
- DOMAIN-SUFFIX,sohu.com,DIRECT
- DOMAIN-SUFFIX,soku.com,DIRECT
- DOMAIN-SUFFIX,speedtest.net,DIRECT
- DOMAIN-SUFFIX,sspai.com,DIRECT
- DOMAIN-SUFFIX,suning.com,DIRECT
- DOMAIN-SUFFIX,taobao.com,DIRECT
- DOMAIN-SUFFIX,tencent.com,DIRECT
- DOMAIN-SUFFIX,tenpay.com,DIRECT
- DOMAIN-SUFFIX,tianyancha.com,DIRECT
- DOMAIN-SUFFIX,tmall.com,DIRECT
- DOMAIN-SUFFIX,tudou.com,DIRECT
- DOMAIN-SUFFIX,umetrip.com,DIRECT
- DOMAIN-SUFFIX,upaiyun.com,DIRECT
- DOMAIN-SUFFIX,upyun.com,DIRECT
- DOMAIN-SUFFIX,veryzhun.com,DIRECT
- DOMAIN-SUFFIX,weather.com,DIRECT
- DOMAIN-SUFFIX,weibo.com,DIRECT
- DOMAIN-SUFFIX,xiami.com,DIRECT
- DOMAIN-SUFFIX,xiami.net,DIRECT
- DOMAIN-SUFFIX,xiaomicp.com,DIRECT
- DOMAIN-SUFFIX,ximalaya.com,DIRECT
- DOMAIN-SUFFIX,xmcdn.com,DIRECT
- DOMAIN-SUFFIX,xunlei.com,DIRECT
- DOMAIN-SUFFIX,yhd.com,DIRECT
- DOMAIN-SUFFIX,yihaodianimg.com,DIRECT
- DOMAIN-SUFFIX,yinxiang.com,DIRECT
- DOMAIN-SUFFIX,ykimg.com,DIRECT
- DOMAIN-SUFFIX,youdao.com,DIRECT
- DOMAIN-SUFFIX,youku.com,DIRECT
- DOMAIN-SUFFIX,zealer.com,DIRECT
- DOMAIN-SUFFIX,zhihu.com,DIRECT
- DOMAIN-SUFFIX,zhimg.com,DIRECT
- DOMAIN-SUFFIX,zimuzu.tv,DIRECT
- DOMAIN-SUFFIX,zoho.com,DIRECT
- DOMAIN-KEYWORD,amazon,v2box
- DOMAIN-KEYWORD,google,v2box
- DOMAIN-KEYWORD,gmail,v2box
- DOMAIN-KEYWORD,youtube,v2box
- DOMAIN-KEYWORD,facebook,v2box
- DOMAIN-SUFFIX,fb.me,v2box
- DOMAIN-SUFFIX,fbcdn.net,v2box
- DOMAIN-KEYWORD,twitter,v2box
- DOMAIN-KEYWORD,instagram,v2box
- DOMAIN-KEYWORD,dropbox,v2box
- DOMAIN-SUFFIX,twimg.com,v2box
- DOMAIN-KEYWORD,blogspot,v2box
- DOMAIN-SUFFIX,youtu.be,v2box
- DOMAIN-KEYWORD,whatsapp,v2box
- DOMAIN-KEYWORD,admarvel,REJECT
- DOMAIN-KEYWORD,admaster,REJECT
- DOMAIN-KEYWORD,adsage,REJECT
- DOMAIN-KEYWORD,adsmogo,REJECT
- DOMAIN-KEYWORD,adsrvmedia,REJECT
- DOMAIN-KEYWORD,adwords,REJECT
- DOMAIN-KEYWORD,adservice,REJECT
- DOMAIN-SUFFIX,appsflyer.com,REJECT
- DOMAIN-KEYWORD,domob,REJECT
- DOMAIN-SUFFIX,doubleclick.net,REJECT
- DOMAIN-KEYWORD,duomeng,REJECT
- DOMAIN-KEYWORD,dwtrack,REJECT
- DOMAIN-KEYWORD,guanggao,REJECT
- DOMAIN-KEYWORD,lianmeng,REJECT
- DOMAIN-SUFFIX,mmstat.com,REJECT
- DOMAIN-KEYWORD,mopub,REJECT
- DOMAIN-KEYWORD,omgmta,REJECT
- DOMAIN-KEYWORD,openx,REJECT
- DOMAIN-KEYWORD,partnerad,REJECT
- DOMAIN-KEYWORD,pingfore,REJECT
- DOMAIN-KEYWORD,supersonicads,REJECT
- DOMAIN-KEYWORD,uedas,REJECT
- DOMAIN-KEYWORD,umeng,REJECT
- DOMAIN-KEYWORD,usage,REJECT
- DOMAIN-SUFFIX,vungle.com,REJECT
- DOMAIN-KEYWORD,wlmonitor,REJECT
- DOMAIN-KEYWORD,zjtoolbar,REJECT
- DOMAIN-SUFFIX,9to5mac.com,v2box
- DOMAIN-SUFFIX,abpchina.org,v2box
- DOMAIN-SUFFIX,adblockplus.org,v2box
- DOMAIN-SUFFIX,adobe.com,v2box
- DOMAIN-SUFFIX,akamaized.net,v2box
- DOMAIN-SUFFIX,alfredapp.com,v2box
- DOMAIN-SUFFIX,amplitude.com,v2box
- DOMAIN-SUFFIX,ampproject.org,v2box
- DOMAIN-SUFFIX,android.com,v2box
- DOMAIN-SUFFIX,angularjs.org,v2box
- DOMAIN-SUFFIX,aolcdn.com,v2box
- DOMAIN-SUFFIX,apkpure.com,v2box
- DOMAIN-SUFFIX,appledaily.com,v2box
- DOMAIN-SUFFIX,appshopper.com,v2box
- DOMAIN-SUFFIX,appspot.com,v2box
- DOMAIN-SUFFIX,arcgis.com,v2box
- DOMAIN-SUFFIX,archive.org,v2box
- DOMAIN-SUFFIX,armorgames.com,v2box
- DOMAIN-SUFFIX,aspnetcdn.com,v2box
- DOMAIN-SUFFIX,att.com,v2box
- DOMAIN-SUFFIX,awsstatic.com,v2box
- DOMAIN-SUFFIX,azureedge.net,v2box
- DOMAIN-SUFFIX,azurewebsites.net,v2box
- DOMAIN-SUFFIX,bing.com,v2box
- DOMAIN-SUFFIX,bintray.com,v2box
- DOMAIN-SUFFIX,bit.com,v2box
- DOMAIN-SUFFIX,bit.ly,v2box
- DOMAIN-SUFFIX,bitbucket.org,v2box
- DOMAIN-SUFFIX,bjango.com,v2box
- DOMAIN-SUFFIX,bkrtx.com,v2box
- DOMAIN-SUFFIX,blog.com,v2box
- DOMAIN-SUFFIX,blogcdn.com,v2box
- DOMAIN-SUFFIX,blogger.com,v2box
- DOMAIN-SUFFIX,blogsmithmedia.com,v2box
- DOMAIN-SUFFIX,blogspot.com,v2box
- DOMAIN-SUFFIX,blogspot.hk,v2box
- DOMAIN-SUFFIX,bloomberg.com,v2box
- DOMAIN-SUFFIX,box.com,v2box
- DOMAIN-SUFFIX,box.net,v2box
- DOMAIN-SUFFIX,cachefly.net,v2box
- DOMAIN-SUFFIX,chromium.org,v2box
- DOMAIN-SUFFIX,cl.ly,v2box
- DOMAIN-SUFFIX,cloudflare.com,v2box
- DOMAIN-SUFFIX,cloudfront.net,v2box
- DOMAIN-SUFFIX,cloudmagic.com,v2box
- DOMAIN-SUFFIX,cmail19.com,v2box
- DOMAIN-SUFFIX,cnet.com,v2box
- DOMAIN-SUFFIX,cocoapods.org,v2box
- DOMAIN-SUFFIX,comodoca.com,v2box
- DOMAIN-SUFFIX,crashlytics.com,v2box
- DOMAIN-SUFFIX,culturedcode.com,v2box
- DOMAIN-SUFFIX,d.pr,v2box
- DOMAIN-SUFFIX,danilo.to,v2box
- DOMAIN-SUFFIX,dayone.me,v2box
- DOMAIN-SUFFIX,db.tt,v2box
- DOMAIN-SUFFIX,deskconnect.com,v2box
- DOMAIN-SUFFIX,disq.us,v2box
- DOMAIN-SUFFIX,disqus.com,v2box
- DOMAIN-SUFFIX,disquscdn.com,v2box
- DOMAIN-SUFFIX,dnsimple.com,v2box
- DOMAIN-SUFFIX,docker.com,v2box
- DOMAIN-SUFFIX,dribbble.com,v2box
- DOMAIN-SUFFIX,droplr.com,v2box
- DOMAIN-SUFFIX,duckduckgo.com,v2box
- DOMAIN-SUFFIX,dueapp.com,v2box
- DOMAIN-SUFFIX,dytt8.net,v2box
- DOMAIN-SUFFIX,edgecastcdn.net,v2box
- DOMAIN-SUFFIX,edgekey.net,v2box
- DOMAIN-SUFFIX,edgesuite.net,v2box
- DOMAIN-SUFFIX,engadget.com,v2box
- DOMAIN-SUFFIX,entrust.net,v2box
- DOMAIN-SUFFIX,eurekavpt.com,v2box
- DOMAIN-SUFFIX,evernote.com,v2box
- DOMAIN-SUFFIX,fabric.io,v2box
- DOMAIN-SUFFIX,fast.com,v2box
- DOMAIN-SUFFIX,fastly.net,v2box
- DOMAIN-SUFFIX,fc2.com,v2box
- DOMAIN-SUFFIX,feedburner.com,v2box
- DOMAIN-SUFFIX,feedly.com,v2box
- DOMAIN-SUFFIX,feedsportal.com,v2box
- DOMAIN-SUFFIX,fiftythree.com,v2box
- DOMAIN-SUFFIX,firebaseio.com,v2box
- DOMAIN-SUFFIX,flexibits.com,v2box
- DOMAIN-SUFFIX,flickr.com,v2box
- DOMAIN-SUFFIX,flipboard.com,v2box
- DOMAIN-SUFFIX,g.co,v2box
- DOMAIN-SUFFIX,gabia.net,v2box
- DOMAIN-SUFFIX,geni.us,v2box
- DOMAIN-SUFFIX,gfx.ms,v2box
- DOMAIN-SUFFIX,ggpht.com,v2box
- DOMAIN-SUFFIX,ghostnoteapp.com,v2box
- DOMAIN-SUFFIX,git.io,v2box
- DOMAIN-KEYWORD,github,v2box
- DOMAIN-SUFFIX,globalsign.com,v2box
- DOMAIN-SUFFIX,gmodules.com,v2box
- DOMAIN-SUFFIX,godaddy.com,v2box
- DOMAIN-SUFFIX,golang.org,v2box
- DOMAIN-SUFFIX,gongm.in,v2box
- DOMAIN-SUFFIX,goo.gl,v2box
- DOMAIN-SUFFIX,goodreaders.com,v2box
- DOMAIN-SUFFIX,goodreads.com,v2box
- DOMAIN-SUFFIX,gravatar.com,v2box
- DOMAIN-SUFFIX,gstatic.com,v2box
- DOMAIN-SUFFIX,gvt0.com,v2box
- DOMAIN-SUFFIX,hockeyapp.net,v2box
- DOMAIN-SUFFIX,hotmail.com,v2box
- DOMAIN-SUFFIX,icons8.com,v2box
- DOMAIN-SUFFIX,ifixit.com,v2box
- DOMAIN-SUFFIX,ift.tt,v2box
- DOMAIN-SUFFIX,ifttt.com,v2box
- DOMAIN-SUFFIX,iherb.com,v2box
- DOMAIN-SUFFIX,imageshack.us,v2box
- DOMAIN-SUFFIX,img.ly,v2box
- DOMAIN-SUFFIX,imgur.com,v2box
- DOMAIN-SUFFIX,imore.com,v2box
- DOMAIN-SUFFIX,instapaper.com,v2box
- DOMAIN-SUFFIX,ipn.li,v2box
- DOMAIN-SUFFIX,is.gd,v2box
- DOMAIN-SUFFIX,issuu.com,v2box
- DOMAIN-SUFFIX,itgonglun.com,v2box
- DOMAIN-SUFFIX,itun.es,v2box
- DOMAIN-SUFFIX,ixquick.com,v2box
- DOMAIN-SUFFIX,j.mp,v2box
- DOMAIN-SUFFIX,js.revsci.net,v2box
- DOMAIN-SUFFIX,jshint.com,v2box
- DOMAIN-SUFFIX,jtvnw.net,v2box
- DOMAIN-SUFFIX,justgetflux.com,v2box
- DOMAIN-SUFFIX,kat.cr,v2box
- DOMAIN-SUFFIX,klip.me,v2box
- DOMAIN-SUFFIX,libsyn.com,v2box
- DOMAIN-SUFFIX,linkedin.com,v2box
- DOMAIN-SUFFIX,line-apps.com,v2box
- DOMAIN-SUFFIX,linode.com,v2box
- DOMAIN-SUFFIX,lithium.com,v2box
- DOMAIN-SUFFIX,littlehj.com,v2box
- DOMAIN-SUFFIX,live.com,v2box
- DOMAIN-SUFFIX,live.net,v2box
- DOMAIN-SUFFIX,livefilestore.com,v2box
- DOMAIN-SUFFIX,llnwd.net,v2box
- DOMAIN-SUFFIX,macid.co,v2box
- DOMAIN-SUFFIX,macromedia.com,v2box
- DOMAIN-SUFFIX,macrumors.com,v2box
- DOMAIN-SUFFIX,mashable.com,v2box
- DOMAIN-SUFFIX,mathjax.org,v2box
- DOMAIN-SUFFIX,medium.com,v2box
- DOMAIN-SUFFIX,mega.co.nz,v2box
- DOMAIN-SUFFIX,mega.nz,v2box
- DOMAIN-SUFFIX,megaupload.com,v2box
- DOMAIN-SUFFIX,microsofttranslator.com,v2box
- DOMAIN-SUFFIX,mindnode.com,v2box
- DOMAIN-SUFFIX,mobile01.com,v2box
- DOMAIN-SUFFIX,modmyi.com,v2box
- DOMAIN-SUFFIX,msedge.net,v2box
- DOMAIN-SUFFIX,myfontastic.com,v2box
- DOMAIN-SUFFIX,name.com,v2box
- DOMAIN-SUFFIX,nextmedia.com,v2box
- DOMAIN-SUFFIX,nsstatic.net,v2box
- DOMAIN-SUFFIX,nssurge.com,v2box
- DOMAIN-SUFFIX,nyt.com,v2box
- DOMAIN-SUFFIX,nytimes.com,v2box
- DOMAIN-SUFFIX,omnigroup.com,v2box
- DOMAIN-SUFFIX,onedrive.com,v2box
- DOMAIN-SUFFIX,onenote.com,v2box
- DOMAIN-SUFFIX,ooyala.com,v2box
- DOMAIN-SUFFIX,openvpn.net,v2box
- DOMAIN-SUFFIX,openwrt.org,v2box
- DOMAIN-SUFFIX,orkut.com,v2box
- DOMAIN-SUFFIX,osxdaily.com,v2box
- DOMAIN-SUFFIX,outlook.com,v2box
- DOMAIN-SUFFIX,ow.ly,v2box
- DOMAIN-SUFFIX,paddleapi.com,v2box
- DOMAIN-SUFFIX,parallels.com,v2box
- DOMAIN-SUFFIX,parse.com,v2box
- DOMAIN-SUFFIX,pdfexpert.com,v2box
- DOMAIN-SUFFIX,periscope.tv,v2box
- DOMAIN-SUFFIX,pinboard.in,v2box
- DOMAIN-SUFFIX,pinterest.com,v2box
- DOMAIN-SUFFIX,pixelmator.com,v2box
- DOMAIN-SUFFIX,pixiv.net,v2box
- DOMAIN-SUFFIX,playpcesor.com,v2box
- DOMAIN-SUFFIX,playstation.com,v2box
- DOMAIN-SUFFIX,playstation.com.hk,v2box
- DOMAIN-SUFFIX,playstation.net,v2box
- DOMAIN-SUFFIX,playstationnetwork.com,v2box
- DOMAIN-SUFFIX,pushwoosh.com,v2box
- DOMAIN-SUFFIX,rime.im,v2box
- DOMAIN-SUFFIX,servebom.com,v2box
- DOMAIN-SUFFIX,sfx.ms,v2box
- DOMAIN-SUFFIX,shadowsocks.org,v2box
- DOMAIN-SUFFIX,sharethis.com,v2box
- DOMAIN-SUFFIX,shazam.com,v2box
- DOMAIN-SUFFIX,skype.com,v2box
- DOMAIN-SUFFIX,smartdnsv2box.com,v2box
- DOMAIN-SUFFIX,smartmailcloud.com,v2box
- DOMAIN-SUFFIX,sndcdn.com,v2box
- DOMAIN-SUFFIX,sony.com,v2box
- DOMAIN-SUFFIX,soundcloud.com,v2box
- DOMAIN-SUFFIX,sourceforge.net,v2box
- DOMAIN-SUFFIX,spotify.com,v2box
- DOMAIN-SUFFIX,squarespace.com,v2box
- DOMAIN-SUFFIX,sstatic.net,v2box
- DOMAIN-SUFFIX,st.luluku.pw,v2box
- DOMAIN-SUFFIX,stackoverflow.com,v2box
- DOMAIN-SUFFIX,startpage.com,v2box
- DOMAIN-SUFFIX,staticflickr.com,v2box
- DOMAIN-SUFFIX,steamcommunity.com,v2box
- DOMAIN-SUFFIX,symauth.com,v2box
- DOMAIN-SUFFIX,symcb.com,v2box
- DOMAIN-SUFFIX,symcd.com,v2box
- DOMAIN-SUFFIX,tapbots.com,v2box
- DOMAIN-SUFFIX,tapbots.net,v2box
- DOMAIN-SUFFIX,tdesktop.com,v2box
- DOMAIN-SUFFIX,techcrunch.com,v2box
- DOMAIN-SUFFIX,techsmith.com,v2box
- DOMAIN-SUFFIX,thepiratebay.org,v2box
- DOMAIN-SUFFIX,theverge.com,v2box
- DOMAIN-SUFFIX,time.com,v2box
- DOMAIN-SUFFIX,timeinc.net,v2box
- DOMAIN-SUFFIX,tiny.cc,v2box
- DOMAIN-SUFFIX,tinypic.com,v2box
- DOMAIN-SUFFIX,tmblr.co,v2box
- DOMAIN-SUFFIX,todoist.com,v2box
- DOMAIN-SUFFIX,trello.com,v2box
- DOMAIN-SUFFIX,trustasiassl.com,v2box
- DOMAIN-SUFFIX,tumblr.co,v2box
- DOMAIN-SUFFIX,tumblr.com,v2box
- DOMAIN-SUFFIX,tweetdeck.com,v2box
- DOMAIN-SUFFIX,tweetmarker.net,v2box
- DOMAIN-SUFFIX,twitch.tv,v2box
- DOMAIN-SUFFIX,txmblr.com,v2box
- DOMAIN-SUFFIX,typekit.net,v2box
- DOMAIN-SUFFIX,ubertags.com,v2box
- DOMAIN-SUFFIX,ublock.org,v2box
- DOMAIN-SUFFIX,ubnt.com,v2box
- DOMAIN-SUFFIX,ulyssesapp.com,v2box
- DOMAIN-SUFFIX,urchin.com,v2box
- DOMAIN-SUFFIX,usertrust.com,v2box
- DOMAIN-SUFFIX,v.gd,v2box
- DOMAIN-SUFFIX,v2ex.com,v2box
- DOMAIN-SUFFIX,vimeo.com,v2box
- DOMAIN-SUFFIX,vimeocdn.com,v2box
- DOMAIN-SUFFIX,vine.co,v2box
- DOMAIN-SUFFIX,vivaldi.com,v2box
- DOMAIN-SUFFIX,vox-cdn.com,v2box
- DOMAIN-SUFFIX,vsco.co,v2box
- DOMAIN-SUFFIX,vultr.com,v2box
- DOMAIN-SUFFIX,w.org,v2box
- DOMAIN-SUFFIX,w3schools.com,v2box
- DOMAIN-SUFFIX,webtype.com,v2box
- DOMAIN-SUFFIX,wikiwand.com,v2box
- DOMAIN-SUFFIX,wikileaks.org,v2box
- DOMAIN-SUFFIX,wikimedia.org,v2box
- DOMAIN-SUFFIX,wikipedia.com,v2box
- DOMAIN-SUFFIX,wikipedia.org,v2box
- DOMAIN-SUFFIX,windows.com,v2box
- DOMAIN-SUFFIX,windows.net,v2box
- DOMAIN-SUFFIX,wire.com,v2box
- DOMAIN-SUFFIX,wordpress.com,v2box
- DOMAIN-SUFFIX,workflowy.com,v2box
- DOMAIN-SUFFIX,wp.com,v2box
- DOMAIN-SUFFIX,wsj.com,v2box
- DOMAIN-SUFFIX,wsj.net,v2box
- DOMAIN-SUFFIX,xda-developers.com,v2box
- DOMAIN-SUFFIX,xeeno.com,v2box
- DOMAIN-SUFFIX,xiti.com,v2box
- DOMAIN-SUFFIX,yahoo.com,v2box
- DOMAIN-SUFFIX,yimg.com,v2box
- DOMAIN-SUFFIX,ying.com,v2box
- DOMAIN-SUFFIX,yoyo.org,v2box
- DOMAIN-SUFFIX,ytimg.com,v2box
- DOMAIN-SUFFIX,telegra.ph,v2box
- DOMAIN-SUFFIX,telegram.org,v2box
- IP-CIDR,91.108.4.0/22,v2box,no-resolve
- IP-CIDR,91.108.8.0/21,v2box,no-resolve
- IP-CIDR,91.108.16.0/22,v2box,no-resolve
- IP-CIDR,91.108.56.0/22,v2box,no-resolve
- IP-CIDR,149.154.160.0/20,v2box,no-resolve
- IP-CIDR6,2001:67c:4e8::/48,v2box,no-resolve
- IP-CIDR6,2001:b28:f23d::/48,v2box,no-resolve
- IP-CIDR6,2001:b28:f23f::/48,v2box,no-resolve
- IP-CIDR,120.232.181.162/32,v2box,no-resolve
- IP-CIDR,120.241.147.226/32,v2box,no-resolve
- IP-CIDR,120.253.253.226/32,v2box,no-resolve
- IP-CIDR,120.253.255.162/32,v2box,no-resolve
- IP-CIDR,120.253.255.34/32,v2box,no-resolve
- IP-CIDR,120.253.255.98/32,v2box,no-resolve
- IP-CIDR,180.163.150.162/32,v2box,no-resolve
- IP-CIDR,180.163.150.34/32,v2box,no-resolve
- IP-CIDR,180.163.151.162/32,v2box,no-resolve
- IP-CIDR,180.163.151.34/32,v2box,no-resolve
- IP-CIDR,203.208.39.0/24,v2box,no-resolve
- IP-CIDR,203.208.40.0/24,v2box,no-resolve
- IP-CIDR,203.208.41.0/24,v2box,no-resolve
- IP-CIDR,203.208.43.0/24,v2box,no-resolve
- IP-CIDR,203.208.50.0/24,v2box,no-resolve
- IP-CIDR,220.181.174.162/32,v2box,no-resolve
- IP-CIDR,220.181.174.226/32,v2box,no-resolve
- IP-CIDR,220.181.174.34/32,v2box,no-resolve
- DOMAIN,injections.adguard.org,DIRECT
- DOMAIN,local.adguard.org,DIRECT
- DOMAIN-SUFFIX,local,DIRECT
- IP-CIDR,127.0.0.0/8,DIRECT
- IP-CIDR,172.16.0.0/12,DIRECT
- IP-CIDR,192.168.0.0/16,DIRECT
- IP-CIDR,10.0.0.0/8,DIRECT
- IP-CIDR,17.0.0.0/8,DIRECT
- IP-CIDR,100.64.0.0/10,DIRECT
- IP-CIDR,224.0.0.0/4,DIRECT
- IP-CIDR6,fe80::/10,DIRECT
- DOMAIN-SUFFIX,cn,DIRECT
- DOMAIN-KEYWORD,-cn,DIRECT
- GEOIP,CN,DIRECT
- MATCH,v2box
redir-port: 7892
tproxy-port: 7895
port: 7890
socks-port: 7891
external-ui: "/usr/share/openclash/ui"
ipv6: false
profile:
store-selected: true
store-fake-ip: true
#===================== 自定义覆写设置 =====================#
#!/bin/sh
. /usr/share/openclash/ruby.sh
. /usr/share/openclash/log.sh
. /lib/functions.sh
# This script is called by /etc/init.d/openclash
# Add your custom overwrite scripts here, they will be take effict after the OpenClash own srcipts
LOG_OUT "Tip: Start Running Custom Overwrite Scripts..."
LOGTIME=$(echo $(date "+%Y-%m-%d %H:%M:%S"))
LOG_FILE="/tmp/openclash.log"
CONFIG_FILE="$1" #config path
#Simple Demo:
#General Demo
#1--config path
#2--key name
#3--value
#ruby_edit "$CONFIG_FILE" "['redir-port']" "7892"
#ruby_edit "$CONFIG_FILE" "['secret']" "123456"
#ruby_edit "$CONFIG_FILE" "['dns']['enable']" "true"
#Hash Demo
#1--config path
#2--key name
#3--hash type value
#ruby_edit "$CONFIG_FILE" "['experimental']" "{'sniff-tls-sni'=>true}"
#ruby_edit "$CONFIG_FILE" "['sniffer']" "{'sniffing'=>['tls','http']}"
#Array Demo:
#1--config path
#2--key name
#3--position(start from 0, end with -1)
#4--value
#ruby_arr_insert "$CONFIG_FILE" "['dns']['nameserver']" "0" "114.114.114.114"
#Array Add From Yaml File Demo:
#1--config path
#2--key name
#3--position(start from 0, end with -1)
#4--value file path
#5--value key name in #4 file
#ruby_arr_add_file "$CONFIG_FILE" "['dns']['fallback-filter']['ipcidr']" "0" "/etc/openclash/custom/openclash_custom_fallback_filter.yaml" "['fallback-filter']['ipcidr']"
#Ruby Script Demo:
#ruby -ryaml -rYAML -I "/usr/share/openclash" -E UTF-8 -e "
# begin
# Value = YAML.load_file('$CONFIG_FILE');
# rescue Exception => e
# puts '${LOGTIME} Error: Load File Failed,【' + e.message + '】';
# end;
#General
# begin
# Thread.new{
# Value['redir-port']=7892;
# Value['tproxy-port']=7895;
# Value['port']=7890;
# Value['socks-port']=7891;
# Value['mixed-port']=7893;
# }.join;
# rescue Exception => e
# puts '${LOGTIME} Error: Set General Failed,【' + e.message + '】';
# ensure
# File.open('$CONFIG_FILE','w') {|f| YAML.dump(Value, f)};
# end" 2>/dev/null >> $LOG_FILE
exit 0
#===================== 自定义防火墙设置 =====================#
#!/bin/sh
. /usr/share/openclash/log.sh
. /lib/functions.sh
# This script is called by /etc/init.d/openclash
# Add your custom firewall rules here, they will be added after the end of the OpenClash iptables rules
LOG_OUT "Tip: Start Add Custom Firewall Rules..."
exit 0
#===================== IPTABLES 防火墙设置 =====================#
#IPv4 NAT chain
# Generated by iptables-save v1.8.7 on Wed Mar 22 22:25:29 2023
*nat
:PREROUTING ACCEPT [239:107293]
:INPUT ACCEPT [506:28566]
:OUTPUT ACCEPT [1023:71194]
:POSTROUTING ACCEPT [319:25009]
:DOCKER - [0:0]
:MINIUPNPD - [0:0]
:MINIUPNPD-POSTROUTING - [0:0]
:openclash - [0:0]
:openclash_output - [0:0]
:postrouting_docker_rule - [0:0]
:postrouting_lan_rule - [0:0]
:postrouting_rule - [0:0]
:postrouting_wan_rule - [0:0]
:postrouting_zerotier_rule - [0:0]
:prerouting_docker_rule - [0:0]
:prerouting_lan_rule - [0:0]
:prerouting_rule - [0:0]
:prerouting_wan_rule - [0:0]
:prerouting_zerotier_rule - [0:0]
:zone_docker_postrouting - [0:0]
:zone_docker_prerouting - [0:0]
:zone_lan_postrouting - [0:0]
:zone_lan_prerouting - [0:0]
:zone_wan_postrouting - [0:0]
:zone_wan_prerouting - [0:0]
:zone_zerotier_postrouting - [0:0]
:zone_zerotier_prerouting - [0:0]
-A PREROUTING -d 8.8.4.4/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -d 8.8.8.8/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -p tcp -m tcp --dport 53 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 53
-A PREROUTING -p udp -m udp --dport 53 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 53
-A PREROUTING -p udp -m udp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -p tcp -m tcp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -m addrtype --dst-type LOCAL -j DOCKER
-A PREROUTING -m comment --comment "!fw3: Custom prerouting rule chain" -j prerouting_rule
-A PREROUTING -i br-lan -m comment --comment "!fw3" -j zone_lan_prerouting
-A PREROUTING -i eth0 -m comment --comment "!fw3" -j zone_wan_prerouting
-A PREROUTING -i docker0 -m comment --comment "!fw3" -j zone_docker_prerouting
-A PREROUTING -i WireGuard -m comment --comment "!fw3" -j zone_zerotier_prerouting
-A PREROUTING -i ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_prerouting
-A PREROUTING -p tcp -j openclash
-A OUTPUT ! -d 127.0.0.0/8 -m addrtype --dst-type LOCAL -j DOCKER
-A OUTPUT -j openclash_output
-A POSTROUTING -s 10.190.202.0/24 -j MASQUERADE
-A POSTROUTING -o ztibhvginq -j MASQUERADE
-A POSTROUTING -s 10.190.202.0/24 -j MASQUERADE
-A POSTROUTING -o ztibhvginq -j MASQUERADE
-A POSTROUTING -s 10.190.202.0/24 -j MASQUERADE
-A POSTROUTING -o ztibhvginq -j MASQUERADE
-A POSTROUTING -s 172.17.0.0/16 ! -o docker0 -j MASQUERADE
-A POSTROUTING -s 10.190.202.0/24 -j MASQUERADE
-A POSTROUTING -o ztibhvginq -j MASQUERADE
-A POSTROUTING -o ztbxwcuxxr -j MASQUERADE
-A POSTROUTING -m comment --comment "!fw3: Custom postrouting rule chain" -j postrouting_rule
-A POSTROUTING -o br-lan -m comment --comment "!fw3" -j zone_lan_postrouting
-A POSTROUTING -o eth0 -m comment --comment "!fw3" -j zone_wan_postrouting
-A POSTROUTING -o docker0 -m comment --comment "!fw3" -j zone_docker_postrouting
-A POSTROUTING -o WireGuard -m comment --comment "!fw3" -j zone_zerotier_postrouting
-A POSTROUTING -o ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_postrouting
-A DOCKER -i docker0 -j RETURN
-A MINIUPNPD -p udp -m udp --dport 50714 -j DNAT --to-destination 192.168.30.19:50714
-A MINIUPNPD -p tcp -m tcp --dport 22803 -j DNAT --to-destination 192.168.30.19:45488
-A MINIUPNPD -p udp -m udp --dport 22803 -j DNAT --to-destination 192.168.30.19:47250
-A MINIUPNPD -p tcp -m tcp --dport 46355 -j DNAT --to-destination 192.168.30.19:39910
-A MINIUPNPD -p tcp -m tcp --dport 47984 -j DNAT --to-destination 192.168.30.138:47984
-A MINIUPNPD -p tcp -m tcp --dport 47989 -j DNAT --to-destination 192.168.30.138:47989
-A MINIUPNPD -p tcp -m tcp --dport 48010 -j DNAT --to-destination 192.168.30.138:48010
-A MINIUPNPD -p udp -m udp --dport 47998 -j DNAT --to-destination 192.168.30.138:47998
-A MINIUPNPD -p udp -m udp --dport 47999 -j DNAT --to-destination 192.168.30.138:47999
-A MINIUPNPD -p udp -m udp --dport 48000 -j DNAT --to-destination 192.168.30.138:48000
-A MINIUPNPD -p udp -m udp --dport 48002 -j DNAT --to-destination 192.168.30.138:48002
-A MINIUPNPD -p udp -m udp --dport 48010 -j DNAT --to-destination 192.168.30.138:48010
-A MINIUPNPD -p udp -m udp --dport 47527 -j DNAT --to-destination 192.168.30.138:47527
-A MINIUPNPD -p udp -m udp --dport 48199 -j DNAT --to-destination 192.168.30.138:47999
-A MINIUPNPD -p udp -m udp --dport 48210 -j DNAT --to-destination 192.168.30.138:48010
-A MINIUPNPD -p udp -m udp --dport 48198 -j DNAT --to-destination 192.168.30.138:47998
-A MINIUPNPD -p udp -m udp --dport 48200 -j DNAT --to-destination 192.168.30.138:48000
-A MINIUPNPD -p udp -m udp --dport 48202 -j DNAT --to-destination 192.168.30.138:48002
-A MINIUPNPD-POSTROUTING -s 192.168.30.19/32 -p tcp -m tcp --sport 45488 -j MASQUERADE --to-ports 22803
-A MINIUPNPD-POSTROUTING -s 192.168.30.19/32 -p udp -m udp --sport 47250 -j MASQUERADE --to-ports 22803
-A MINIUPNPD-POSTROUTING -s 192.168.30.19/32 -p tcp -m tcp --sport 39910 -j MASQUERADE --to-ports 46355
-A MINIUPNPD-POSTROUTING -s 192.168.30.138/32 -p udp -m udp --sport 47999 -j MASQUERADE --to-ports 48199
-A MINIUPNPD-POSTROUTING -s 192.168.30.138/32 -p udp -m udp --sport 48010 -j MASQUERADE --to-ports 48210
-A MINIUPNPD-POSTROUTING -s 192.168.30.138/32 -p udp -m udp --sport 47998 -j MASQUERADE --to-ports 48198
-A MINIUPNPD-POSTROUTING -s 192.168.30.138/32 -p udp -m udp --sport 48000 -j MASQUERADE --to-ports 48200
-A MINIUPNPD-POSTROUTING -s 192.168.30.138/32 -p udp -m udp --sport 48002 -j MASQUERADE --to-ports 48202
-A openclash -p tcp -m tcp --sport 1688 -j RETURN
-A openclash -p tcp -m tcp --sport 1723 -j RETURN
-A openclash -p tcp -m tcp --sport 1194 -j RETURN
-A openclash -p tcp -m tcp --sport 8897 -j RETURN
-A openclash -m set --match-set localnetwork dst -j RETURN
-A openclash -d 198.18.0.0/16 -p tcp -j REDIRECT --to-ports 7892
-A openclash -p tcp -j REDIRECT --to-ports 7892
-A openclash_output -p tcp -m tcp --sport 1688 -j RETURN
-A openclash_output -p tcp -m tcp --sport 1723 -j RETURN
-A openclash_output -p tcp -m tcp --sport 1194 -j RETURN
-A openclash_output -p tcp -m tcp --sport 8897 -j RETURN
-A openclash_output -d 198.18.0.0/16 -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A openclash_output -m set --match-set localnetwork dst -j RETURN
-A openclash_output -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A zone_docker_postrouting -m comment --comment "!fw3: Custom docker postrouting rule chain" -j postrouting_docker_rule
-A zone_docker_prerouting -m comment --comment "!fw3: Custom docker prerouting rule chain" -j prerouting_docker_rule
-A zone_lan_postrouting -m comment --comment "!fw3: Custom lan postrouting rule chain" -j postrouting_lan_rule
-A zone_lan_prerouting -m comment --comment "!fw3: Custom lan prerouting rule chain" -j prerouting_lan_rule
-A zone_wan_postrouting -j MINIUPNPD-POSTROUTING
-A zone_wan_postrouting -m comment --comment "!fw3: Custom wan postrouting rule chain" -j postrouting_wan_rule
-A zone_wan_postrouting -m comment --comment "!fw3" -j MASQUERADE --mode fullcone
-A zone_wan_prerouting -j MINIUPNPD
-A zone_wan_prerouting -m comment --comment "!fw3: Custom wan prerouting rule chain" -j prerouting_wan_rule
-A zone_zerotier_postrouting -m comment --comment "!fw3: Custom zerotier postrouting rule chain" -j postrouting_zerotier_rule
-A zone_zerotier_prerouting -m comment --comment "!fw3: Custom zerotier prerouting rule chain" -j prerouting_zerotier_rule
COMMIT
# Completed on Wed Mar 22 22:25:29 2023
#IPv4 Mangle chain
# Generated by iptables-save v1.8.7 on Wed Mar 22 22:25:29 2023
*mangle
:PREROUTING ACCEPT [409464:72544954]
:INPUT ACCEPT [344971:59944104]
:FORWARD ACCEPT [74282:13884158]
:OUTPUT ACCEPT [445843:89597463]
:POSTROUTING ACCEPT [525199:104348072]
:RRDIPT_FORWARD - [0:0]
:RRDIPT_INPUT - [0:0]
:RRDIPT_OUTPUT - [0:0]
:openclash - [0:0]
:openclash_output - [0:0]
-A PREROUTING -p udp -j openclash
-A INPUT -j RRDIPT_INPUT
-A FORWARD -j RRDIPT_FORWARD
-A FORWARD -o eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -i eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A OUTPUT -j RRDIPT_OUTPUT
-A OUTPUT -p udp -j openclash_output
-A RRDIPT_FORWARD -s 192.168.30.226/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.30.226/32 -j RETURN
-A RRDIPT_FORWARD -s 192.168.30.243/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.30.243/32 -j RETURN
-A RRDIPT_FORWARD -s 192.168.30.169/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.30.169/32 -j RETURN
-A RRDIPT_FORWARD -s 10.132.127.254/32 -j RETURN
-A RRDIPT_FORWARD -d 10.132.127.254/32 -j RETURN
-A RRDIPT_FORWARD -s 192.168.30.19/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.30.19/32 -j RETURN
-A RRDIPT_INPUT -i eth0 -j RETURN
-A RRDIPT_OUTPUT -o eth0 -j RETURN
-A openclash -p udp -m udp --sport 1194 -j RETURN
-A openclash -p udp -m udp --sport 4500 -j RETURN
-A openclash -p udp -m udp --sport 500 -j RETURN
-A openclash -p udp -m udp --sport 500 -j RETURN
-A openclash -p udp -m udp --sport 68 -j RETURN
-A openclash -d 198.18.0.0/16 -p udp -j TPROXY --on-port 7895 --on-ip 0.0.0.0 --tproxy-mark 0x162/0xffffffff
-A openclash_output -p udp -m udp --sport 1194 -j RETURN
-A openclash_output -p udp -m udp --sport 4500 -j RETURN
-A openclash_output -p udp -m udp --sport 500 -j RETURN
-A openclash_output -p udp -m udp --sport 500 -j RETURN
-A openclash_output -p udp -m udp --sport 68 -j RETURN
-A openclash_output -d 198.18.0.0/16 -p udp -m owner ! --uid-owner 65534 -j MARK --set-xmark 0x162/0xffffffff
COMMIT
# Completed on Wed Mar 22 22:25:29 2023
#IPv4 Filter chain
# Generated by iptables-save v1.8.7 on Wed Mar 22 22:25:29 2023
*filter
:INPUT ACCEPT [16:2912]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [12:1968]
:DOCKER - [0:0]
:DOCKER-ISOLATION-STAGE-1 - [0:0]
:DOCKER-ISOLATION-STAGE-2 - [0:0]
:DOCKER-MAN - [0:0]
:DOCKER-USER - [0:0]
:MINIUPNPD - [0:0]
:SOCAT - [0:0]
:forwarding_docker_rule - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:forwarding_zerotier_rule - [0:0]
:input_docker_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:input_zerotier_rule - [0:0]
:openclash_wan_input - [0:0]
:output_docker_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:output_zerotier_rule - [0:0]
:reject - [0:0]
:zone_docker_dest_ACCEPT - [0:0]
:zone_docker_forward - [0:0]
:zone_docker_input - [0:0]
:zone_docker_output - [0:0]
:zone_docker_src_ACCEPT - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_dest_REJECT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_REJECT - [0:0]
:zone_zerotier_dest_ACCEPT - [0:0]
:zone_zerotier_forward - [0:0]
:zone_zerotier_input - [0:0]
:zone_zerotier_output - [0:0]
:zone_zerotier_src_ACCEPT - [0:0]
-A INPUT -p udp -m udp --dport 443 -m comment --comment "OpenClash QUIC REJECT" -m set ! --match-set china_ip_route dst -j REJECT --reject-with icmp-port-unreachable
-A INPUT -i eth0 -m set ! --match-set localnetwork src -j openclash_wan_input
-A INPUT -m policy --dir in --pol ipsec --proto esp -j ACCEPT
-A INPUT -j SOCAT
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -i eth0 -m comment --comment "!fw3" -j zone_wan_input
-A INPUT -i docker0 -m comment --comment "!fw3" -j zone_docker_input
-A INPUT -i WireGuard -m comment --comment "!fw3" -j zone_zerotier_input
-A INPUT -i ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_input
-A FORWARD -m policy --dir out --pol ipsec --proto esp -j ACCEPT
-A FORWARD -m policy --dir in --pol ipsec --proto esp -j ACCEPT
-A FORWARD -o ztibhvginq -j ACCEPT
-A FORWARD -i ztibhvginq -j ACCEPT
-A FORWARD -o ztibhvginq -j ACCEPT
-A FORWARD -i ztibhvginq -j ACCEPT
-A FORWARD -o ztibhvginq -j ACCEPT
-A FORWARD -i ztibhvginq -j ACCEPT
-A FORWARD -j DOCKER-USER
-A FORWARD -j DOCKER-ISOLATION-STAGE-1
-A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -o docker0 -j DOCKER
-A FORWARD -i docker0 ! -o docker0 -j ACCEPT
-A FORWARD -i docker0 -o docker0 -j ACCEPT
-A FORWARD -o ztibhvginq -j ACCEPT
-A FORWARD -i ztibhvginq -j ACCEPT
-A FORWARD -o ztbxwcuxxr -j ACCEPT
-A FORWARD -i ztbxwcuxxr -j ACCEPT
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m comment --comment "!fw3: Traffic offloading" -m conntrack --ctstate RELATED,ESTABLISHED -j FLOWOFFLOAD
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -i eth0 -m comment --comment "!fw3" -j zone_wan_forward
-A FORWARD -i docker0 -m comment --comment "!fw3" -j zone_docker_forward
-A FORWARD -i WireGuard -m comment --comment "!fw3" -j zone_zerotier_forward
-A FORWARD -i ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_forward
-A OUTPUT -m policy --dir out --pol ipsec --proto esp -j ACCEPT
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A OUTPUT -o eth0 -m comment --comment "!fw3" -j zone_wan_output
-A OUTPUT -o docker0 -m comment --comment "!fw3" -j zone_docker_output
-A OUTPUT -o WireGuard -m comment --comment "!fw3" -j zone_zerotier_output
-A OUTPUT -o ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_output
-A DOCKER-ISOLATION-STAGE-1 -i docker0 ! -o docker0 -j DOCKER-ISOLATION-STAGE-2
-A DOCKER-ISOLATION-STAGE-1 -j RETURN
-A DOCKER-ISOLATION-STAGE-2 -o docker0 -j DROP
-A DOCKER-ISOLATION-STAGE-2 -j RETURN
-A DOCKER-MAN -i br-lan -o docker0 -j RETURN
-A DOCKER-MAN -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j RETURN
-A DOCKER-MAN -o docker0 -m conntrack --ctstate INVALID,NEW -j DROP
-A DOCKER-MAN -j RETURN
-A DOCKER-USER -j DOCKER-MAN
-A DOCKER-USER -j RETURN
-A MINIUPNPD -d 192.168.30.1/32 -p tcp -m tcp --dport 8096 -j ACCEPT
-A MINIUPNPD -d 192.168.30.19/32 -p udp -m udp --dport 50714 -j ACCEPT
-A MINIUPNPD -d 192.168.30.19/32 -p tcp -m tcp --dport 45488 -j ACCEPT
-A MINIUPNPD -d 192.168.30.19/32 -p udp -m udp --dport 47250 -j ACCEPT
-A MINIUPNPD -d 192.168.30.19/32 -p tcp -m tcp --dport 39910 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p tcp -m tcp --dport 47984 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p tcp -m tcp --dport 47989 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p tcp -m tcp --dport 48010 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p udp -m udp --dport 47998 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p udp -m udp --dport 47999 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p udp -m udp --dport 48000 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p udp -m udp --dport 48002 -j ACCEPT
-A MINIUPNPD -d 192.168.30.243/32 -p udp -m udp --dport 48010 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p tcp -m tcp --dport 47984 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p tcp -m tcp --dport 47989 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p tcp -m tcp --dport 48010 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 47998 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 47999 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 48000 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 48002 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 48010 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 47527 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 47999 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 48010 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 47998 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 48000 -j ACCEPT
-A MINIUPNPD -d 192.168.30.138/32 -p udp -m udp --dport 48002 -j ACCEPT
-A forwarding_rule -i pppoe+ -j RETURN
-A forwarding_rule -o pppoe+ -j RETURN
-A forwarding_rule -i ppp+ -m conntrack --ctstate NEW -j ACCEPT
-A forwarding_rule -o ppp+ -m conntrack --ctstate NEW -j ACCEPT
-A openclash_wan_input -p udp -m multiport --dports 7892,7895,9090,7890,7891,7893,7874 -j REJECT --reject-with icmp-port-unreachable
-A openclash_wan_input -p tcp -m multiport --dports 7892,7895,9090,7890,7891,7893,7874 -j REJECT --reject-with icmp-port-unreachable
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp-port-unreachable
-A zone_docker_dest_ACCEPT -o docker0 -m comment --comment "!fw3" -j ACCEPT
-A zone_docker_forward -m comment --comment "!fw3: Custom docker forwarding rule chain" -j forwarding_docker_rule
-A zone_docker_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_docker_forward -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_input -m comment --comment "!fw3: Custom docker input rule chain" -j input_docker_rule
-A zone_docker_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_docker_input -m comment --comment "!fw3" -j zone_docker_src_ACCEPT
-A zone_docker_output -m comment --comment "!fw3: Custom docker output rule chain" -j output_docker_rule
-A zone_docker_output -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_src_ACCEPT -i docker0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_ACCEPT -o eth0 -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_wan_dest_ACCEPT -o eth0 -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_REJECT -o eth0 -m comment --comment "!fw3" -j reject
-A zone_wan_forward -j MINIUPNPD
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_REJECT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -p udp -m udp --dport 68 -m comment --comment "!fw3: Allow-DHCP-Renew" -j ACCEPT
-A zone_wan_input -p icmp -m icmp --icmp-type 8 -m comment --comment "!fw3: Allow-Ping" -j ACCEPT
-A zone_wan_input -p igmp -m comment --comment "!fw3: Allow-IGMP" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 8897 -m comment --comment "!fw3: linkease" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 8118 -m comment --comment "!fw3: adblock" -j DROP
-A zone_wan_input -p udp -m udp --dport 500 -m comment --comment "!fw3: ike" -j ACCEPT
-A zone_wan_input -p udp -m udp --dport 4500 -m comment --comment "!fw3: ipsec" -j ACCEPT
-A zone_wan_input -p ah -m comment --comment "!fw3: ah" -j ACCEPT
-A zone_wan_input -p esp -m comment --comment "!fw3: esp" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 1194 -m comment --comment "!fw3: openvpn" -j ACCEPT
-A zone_wan_input -p udp -m udp --dport 1194 -m comment --comment "!fw3: openvpn" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 1723 -m comment --comment "!fw3: pptp" -j ACCEPT
-A zone_wan_input -p gre -m comment --comment "!fw3: gre" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 1688 -m comment --comment "!fw3: kms" -j ACCEPT
-A zone_wan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_REJECT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
-A zone_wan_src_REJECT -i eth0 -m comment --comment "!fw3" -j reject
-A zone_zerotier_dest_ACCEPT -o WireGuard -m comment --comment "!fw3" -j ACCEPT
-A zone_zerotier_dest_ACCEPT -o ztbxwcuxxr -m comment --comment "!fw3" -j ACCEPT
-A zone_zerotier_forward -m comment --comment "!fw3: Custom zerotier forwarding rule chain" -j forwarding_zerotier_rule
-A zone_zerotier_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_zerotier_forward -m comment --comment "!fw3" -j zone_zerotier_dest_ACCEPT
-A zone_zerotier_input -m comment --comment "!fw3: Custom zerotier input rule chain" -j input_zerotier_rule
-A zone_zerotier_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_zerotier_input -m comment --comment "!fw3" -j zone_zerotier_src_ACCEPT
-A zone_zerotier_output -m comment --comment "!fw3: Custom zerotier output rule chain" -j output_zerotier_rule
-A zone_zerotier_output -m comment --comment "!fw3" -j zone_zerotier_dest_ACCEPT
-A zone_zerotier_src_ACCEPT -i WireGuard -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_zerotier_src_ACCEPT -i ztbxwcuxxr -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
COMMIT
# Completed on Wed Mar 22 22:25:29 2023
#IPv6 NAT chain
# Generated by ip6tables-save v1.8.7 on Wed Mar 22 22:25:29 2023
*nat
:PREROUTING ACCEPT [534:70065]
:INPUT ACCEPT [68:6118]
:OUTPUT ACCEPT [817:66973]
:POSTROUTING ACCEPT [978:84450]
COMMIT
# Completed on Wed Mar 22 22:25:29 2023
#IPv6 Mangle chain
# Generated by ip6tables-save v1.8.7 on Wed Mar 22 22:25:29 2023
*mangle
:PREROUTING ACCEPT [2639:231373]
:INPUT ACCEPT [2178:169181]
:FORWARD ACCEPT [334:39790]
:OUTPUT ACCEPT [2047:156373]
:POSTROUTING ACCEPT [2381:196163]
-A FORWARD -o eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
-A FORWARD -i eth0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m comment --comment "!fw3: Zone wan MTU fixing" -j TCPMSS --clamp-mss-to-pmtu
COMMIT
# Completed on Wed Mar 22 22:25:29 2023
#IPv6 Filter chain
# Generated by ip6tables-save v1.8.7 on Wed Mar 22 22:25:29 2023
*filter
:INPUT ACCEPT [126:11466]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:MINIUPNPD - [0:0]
:SOCAT - [0:0]
:forwarding_docker_rule - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:forwarding_zerotier_rule - [0:0]
:input_docker_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:input_zerotier_rule - [0:0]
:output_docker_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:output_zerotier_rule - [0:0]
:reject - [0:0]
:zone_docker_dest_ACCEPT - [0:0]
:zone_docker_forward - [0:0]
:zone_docker_input - [0:0]
:zone_docker_output - [0:0]
:zone_docker_src_ACCEPT - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_dest_REJECT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_REJECT - [0:0]
:zone_zerotier_dest_ACCEPT - [0:0]
:zone_zerotier_forward - [0:0]
:zone_zerotier_input - [0:0]
:zone_zerotier_output - [0:0]
:zone_zerotier_src_ACCEPT - [0:0]
-A INPUT -j SOCAT
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -i eth0 -m comment --comment "!fw3" -j zone_wan_input
-A INPUT -i docker0 -m comment --comment "!fw3" -j zone_docker_input
-A INPUT -i WireGuard -m comment --comment "!fw3" -j zone_zerotier_input
-A INPUT -i ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_input
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m comment --comment "!fw3: Traffic offloading" -m conntrack --ctstate RELATED,ESTABLISHED -j FLOWOFFLOAD
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -i eth0 -m comment --comment "!fw3" -j zone_wan_forward
-A FORWARD -i docker0 -m comment --comment "!fw3" -j zone_docker_forward
-A FORWARD -i WireGuard -m comment --comment "!fw3" -j zone_zerotier_forward
-A FORWARD -i ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_forward
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A OUTPUT -o eth0 -m comment --comment "!fw3" -j zone_wan_output
-A OUTPUT -o docker0 -m comment --comment "!fw3" -j zone_docker_output
-A OUTPUT -o WireGuard -m comment --comment "!fw3" -j zone_zerotier_output
-A OUTPUT -o ztbxwcuxxr -m comment --comment "!fw3" -j zone_zerotier_output
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp6-port-unreachable
-A zone_docker_dest_ACCEPT -o docker0 -m comment --comment "!fw3" -j ACCEPT
-A zone_docker_forward -m comment --comment "!fw3: Custom docker forwarding rule chain" -j forwarding_docker_rule
-A zone_docker_forward -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_input -m comment --comment "!fw3: Custom docker input rule chain" -j input_docker_rule
-A zone_docker_input -m comment --comment "!fw3" -j zone_docker_src_ACCEPT
-A zone_docker_output -m comment --comment "!fw3: Custom docker output rule chain" -j output_docker_rule
-A zone_docker_output -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_src_ACCEPT -i docker0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_ACCEPT -o eth0 -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_wan_dest_ACCEPT -o eth0 -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_dest_REJECT -o eth0 -m comment --comment "!fw3" -j reject
-A zone_wan_forward -j MINIUPNPD
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 128 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 129 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 2 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 3 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 4/0 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p ipv6-icmp -m icmp6 --icmpv6-type 4/1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Forward" -j ACCEPT
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_REJECT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -s fc00::/6 -d fc00::/6 -p udp -m udp --dport 546 -m comment --comment "!fw3: Allow-DHCPv6" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 130/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 131/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 132/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -s fe80::/10 -p ipv6-icmp -m icmp6 --icmpv6-type 143/0 -m comment --comment "!fw3: Allow-MLD" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 128 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 129 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 2 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 3 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 4/0 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 4/1 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 133 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 135 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 134 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p ipv6-icmp -m icmp6 --icmpv6-type 136 -m limit --limit 1000/sec -m comment --comment "!fw3: Allow-ICMPv6-Input" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 8897 -m comment --comment "!fw3: linkease" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 8118 -m comment --comment "!fw3: adblock" -j DROP
-A zone_wan_input -p udp -m udp --dport 500 -m comment --comment "!fw3: ike" -j ACCEPT
-A zone_wan_input -p udp -m udp --dport 4500 -m comment --comment "!fw3: ipsec" -j ACCEPT
-A zone_wan_input -p ah -m comment --comment "!fw3: ah" -j ACCEPT
-A zone_wan_input -p esp -m comment --comment "!fw3: esp" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 1194 -m comment --comment "!fw3: openvpn" -j ACCEPT
-A zone_wan_input -p udp -m udp --dport 1194 -m comment --comment "!fw3: openvpn" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 1723 -m comment --comment "!fw3: pptp" -j ACCEPT
-A zone_wan_input -p gre -m comment --comment "!fw3: gre" -j ACCEPT
-A zone_wan_input -p tcp -m tcp --dport 1688 -m comment --comment "!fw3: kms" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_REJECT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
-A zone_wan_src_REJECT -i eth0 -m comment --comment "!fw3" -j reject
-A zone_zerotier_dest_ACCEPT -o WireGuard -m comment --comment "!fw3" -j ACCEPT
-A zone_zerotier_dest_ACCEPT -o ztbxwcuxxr -m comment --comment "!fw3" -j ACCEPT
-A zone_zerotier_forward -m comment --comment "!fw3: Custom zerotier forwarding rule chain" -j forwarding_zerotier_rule
-A zone_zerotier_forward -m comment --comment "!fw3" -j zone_zerotier_dest_ACCEPT
-A zone_zerotier_input -m comment --comment "!fw3: Custom zerotier input rule chain" -j input_zerotier_rule
-A zone_zerotier_input -m comment --comment "!fw3" -j zone_zerotier_src_ACCEPT
-A zone_zerotier_output -m comment --comment "!fw3: Custom zerotier output rule chain" -j output_zerotier_rule
-A zone_zerotier_output -m comment --comment "!fw3" -j zone_zerotier_dest_ACCEPT
-A zone_zerotier_src_ACCEPT -i WireGuard -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_zerotier_src_ACCEPT -i ztbxwcuxxr -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
COMMIT
# Completed on Wed Mar 22 22:25:29 2023
#===================== IPSET状态 =====================#
Name: cn
Name: ct
Name: cnc
Name: cmcc
Name: crtc
Name: cernet
Name: gwbn
Name: othernet
Name: music
Name: mwan3_connected_v4
Name: mwan3_connected_v6
Name: mwan3_source_v6
Name: mwan3_dynamic_v4
Name: mwan3_dynamic_v6
Name: mwan3_custom_v4
Name: mwan3_custom_v6
Name: china_ip_route
Name: china_ip_route_pass
Name: localnetwork
Name: china
Name: mwan3_connected
#===================== 路由表状态 =====================#
#route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 10.132.127.254 0.0.0.0 UG 0 0 0 eth0
10.132.0.0 0.0.0.0 255.255.128.0 U 0 0 0 eth0
10.190.200.0 0.0.0.0 255.255.255.0 U 0 0 0 WireGuard
10.190.202.0 0.0.0.0 255.255.255.0 U 0 0 0 ztibhvginq
47.115.208.183 10.132.127.254 255.255.255.255 UGH 0 0 0 eth0
172.17.0.0 0.0.0.0 255.255.0.0 U 0 0 0 docker0
192.168.30.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan
#ip route list
default via 10.132.127.254 dev eth0 proto static src 10.132.0.101
10.132.0.0/17 dev eth0 proto kernel scope link src 10.132.0.101
10.190.200.0/24 dev WireGuard proto kernel scope link src 10.190.200.88
10.190.202.0/24 dev ztibhvginq proto kernel scope link src 10.190.202.88
47.115.208.183 via 10.132.127.254 dev eth0 proto static
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
192.168.30.0/24 dev br-lan proto kernel scope link src 192.168.30.1
#ip rule show
0: from all lookup local
32765: from all fwmark 0x162 lookup 354
32766: from all lookup main
32767: from all lookup default
#===================== 端口占用状态 =====================#
tcp 0 0 :::7891 :::* LISTEN 18416/clash
tcp 0 0 :::7890 :::* LISTEN 18416/clash
tcp 0 0 :::7893 :::* LISTEN 18416/clash
tcp 0 0 :::7892 :::* LISTEN 18416/clash
tcp 0 0 :::7895 :::* LISTEN 18416/clash
tcp 0 0 :::9090 :::* LISTEN 18416/clash
udp 0 0 :::41789 :::* 18416/clash
udp 0 0 :::7874 :::* 18416/clash
udp 0 0 :::7891 :::* 18416/clash
udp 0 0 :::7892 :::* 18416/clash
udp 0 0 :::7893 :::* 18416/clash
udp 0 0 :::7895 :::* 18416/clash
#===================== 测试本机DNS查询(www.baidu.com) =====================#
Server: 127.0.0.1
Address: 127.0.0.1:53
Name: www.baidu.com
Address: 198.18.0.83
#===================== 测试内核DNS查询(www.instagram.com) =====================#
#===================== resolv.conf.d =====================#
# Interface lan
nameserver 119.29.29.29
nameserver 223.5.5.5
nameserver 8.8.8.8
# Interface wan
nameserver 202.114.96.1
nameserver 202.114.64.1
#===================== 测试本机网络连接(www.baidu.com) =====================#
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Connection: keep-alive
Content-Length: 277
Content-Type: text/html
Date: Wed, 22 Mar 2023 14:25:35 GMT
Etag: "575e1f72-115"
Last-Modified: Mon, 13 Jun 2016 02:50:26 GMT
Pragma: no-cache
Server: bfe/1.0.8.18
#===================== 测试本机网络下载(raw.githubusercontent.com) =====================#
HTTP/2 200
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: "275ce7c4d332951875158904a2c8128e7ea40f4ae5057d32acf9f67754ef0e71"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 1E14:2C62:28A9BB:2F8B37:6418DDD8
accept-ranges: bytes
date: Wed, 22 Mar 2023 14:25:36 GMT
via: 1.1 varnish
x-served-by: cache-qpg1226-QPG
x-cache: HIT
x-cache-hits: 1
x-timer: S1679495137.855003,VS0,VE1
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 4d3c5ed31f87b001543226f6a9b1caffb3fce0d8
expires: Wed, 22 Mar 2023 14:30:36 GMT
source-age: 122
content-length: 83
#===================== 最近运行日志(自动切换为Debug模式) =====================#
time="2023-03-22T22:24:55+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7689 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:24:56+08:00" level=info msg="[TCP] 192.168.30.138:7694 --> static.doubleclick.net:443 match DomainSuffix(doubleclick.net) using REJECT"
time="2023-03-22T22:24:56+08:00" level=info msg="[TCP] 192.168.30.138:7697 --> static.doubleclick.net:443 match DomainSuffix(doubleclick.net) using REJECT"
time="2023-03-22T22:24:56+08:00" level=info msg="[TCP] 192.168.30.138:7695 --> www.google.com:443 match DomainKeyword(google) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:24:56+08:00" level=info msg="[TCP] 192.168.30.138:7698 --> rr5---sn-nx57ynsl.googlevideo.com:443 match DomainKeyword(google) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:24:57+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7690 --> mobile.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:24:59+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7691 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:24:59+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7699 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:24:59+08:00" level=info msg="[TCP] 192.168.30.226:58606 --> api.miwifi.com:443 match DomainSuffix(miwifi.com) using DIRECT"
time="2023-03-22T22:25:00+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7692 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:00+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7693 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:01+08:00" level=info msg="[TCP] 192.168.30.19:36036 --> analysis-acc-ssl.xunlei.com:443 match DomainSuffix(xunlei.com) using DIRECT"
time="2023-03-22T22:25:02+08:00" level=info msg="[TCP] 192.168.30.138:7766 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:02+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7700 --> self.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:02+08:00" level=info msg="[TCP] 192.168.30.138:7764 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:02+08:00" level=info msg="[TCP] 192.168.30.138:7765 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:02+08:00" level=info msg="[TCP] 192.168.30.138:7769 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:02+08:00" level=info msg="[TCP] 192.168.30.138:7767 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:02+08:00" level=info msg="[TCP] 192.168.30.138:7768 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:03+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7701 --> fd.api.iris.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:04+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7702 --> nav-edge.smartscreen.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:04+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7708 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:04+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7763 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:04+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7713 --> edge-http.microsoft.com:80 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:05+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7758 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:06+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7762 --> edge.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:07+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7770 --> self.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:08+08:00" level=info msg="[TCP] 192.168.30.138:7792 --> play.google.com:443 match DomainKeyword(google) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:09+08:00" level=info msg="[TCP] 192.168.30.226:58610 --> api.miwifi.com:443 match DomainSuffix(miwifi.com) using DIRECT"
time="2023-03-22T22:25:09+08:00" level=info msg="[TCP] 192.168.30.138:7793 --> client.wns.windows.com:443 match DomainSuffix(windows.com) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:09+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7775 --> nav-edge.smartscreen.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:09+08:00" level=info msg="[UDP] 10.132.0.101:33307 --> ntp.aliyun.com:123 match GeoIP(CN) using DIRECT"
time="2023-03-22T22:25:09+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7776 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:09+08:00" level=info msg="[TCP] 192.168.30.138:7794 --> ocsp.entrust.net:80 match DomainSuffix(entrust.net) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:10+08:00" level=info msg="[TCP] 192.168.30.138:7795 --> play.google.com:443 match DomainKeyword(google) using v2box[【1倍率】美国B | 广港 | 解锁]"
time="2023-03-22T22:25:10+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7777 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:11+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7782 --> edge.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:12+08:00" level=debug msg="[DNS] resolve services.bingapis.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:12+08:00" level=info msg="[TCP] 192.168.30.138:7787 --> services.bingapis.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:15+08:00" level=debug msg="[DNS] resolve x1.c.lencr.org error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:15+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7797 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:15+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7798 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:16+08:00" level=info msg="[TCP] 192.168.30.138:7796 --> x1.c.lencr.org:80 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:16+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7800 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:17+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7801 --> mobile.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:18+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7802 --> self.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:19+08:00" level=debug msg="[DNS] resolve hhu2016-my.sharepoint.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:19+08:00" level=info msg="[TCP] 192.168.30.138:7803 --> hhu2016-my.sharepoint.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:20+08:00" level=debug msg="[DNS] resolve accounts.nvgs.nvidia.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:20+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoftonline.com) 192.168.30.138:7805 --> login.microsoftonline.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:20+08:00" level=info msg="[TCP] 192.168.30.138:7804 --> accounts.nvgs.nvidia.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:20+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7806 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:21+08:00" level=debug msg="[DNS] resolve events.gfe.nvidia.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:21+08:00" level=debug msg="[DNS] resolve crl.verisign.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:21+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7809 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:21+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7810 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:21+08:00" level=info msg="[TCP] 192.168.30.138:7807 --> events.gfe.nvidia.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:21+08:00" level=info msg="[TCP] 192.168.30.138:7808 --> crl.verisign.com:80 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:22+08:00" level=debug msg="[DNS] ctldl.windowsupdate.com --> 36.25.246.52"
time="2023-03-22T22:25:22+08:00" level=info msg="[TCP] 192.168.30.138:7815 --> ctldl.windowsupdate.com:80 match GeoIP(CN) using DIRECT"
time="2023-03-22T22:25:22+08:00" level=info msg="[TCP] 192.168.30.138:7816 --> crl4.digicert.com:80 match DomainSuffix(digicert.com) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:23+08:00" level=info msg="[TCP] 192.168.30.138:7818 --> crl3.digicert.com:80 match DomainSuffix(digicert.com) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:23+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7811 --> self.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:25+08:00" level=info msg="[TCP] 192.168.30.138:7819 --> crl.comodoca.com:80 match DomainSuffix(comodoca.com) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:25+08:00" level=debug msg="[DNS] resolve lightstep.kaizen.nvidia.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:25+08:00" level=info msg="[TCP] 192.168.30.138:7812 --> lightstep.kaizen.nvidia.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:25+08:00" level=info msg="[TCP] 192.168.30.138:7824 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:25+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7813 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:26+08:00" level=info msg="[TCP] 192.168.30.138:7829 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:26+08:00" level=info msg="[TCP] 192.168.30.138:7828 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:26+08:00" level=info msg="[TCP] 192.168.30.138:7831 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:26+08:00" level=info msg="[TCP] 192.168.30.138:7830 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:26+08:00" level=info msg="[TCP] 192.168.30.138:7832 --> www.youtube.com:443 match DomainKeyword(youtube) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:26+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7814 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:27+08:00" level=info msg="[TCP] 10.132.0.101:49018 --> raw.githubusercontent.com:443 match DomainKeyword(github) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:27+08:00" level=debug msg="[DNS] resolve accounts.nvgs.nvidia.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:27+08:00" level=info msg="[TCP] 192.168.30.138:7817 --> accounts.nvgs.nvidia.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:30+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7825 --> nav-edge.smartscreen.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:30+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7826 --> continuum.dds.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:31+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7835 --> edge.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:31+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7840 --> edge.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:32+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7841 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:34+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7842 --> self.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:34+08:00" level=info msg="[TCP] 10.132.0.101:51922 --> www.baidu.com:80 match DomainKeyword(baidu) using DIRECT"
time="2023-03-22T22:25:34+08:00" level=debug msg="[DNS] resolve accounts.nvgs.nvidia.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:34+08:00" level=info msg="[TCP] 192.168.30.138:7843 --> accounts.nvgs.nvidia.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:34+08:00" level=info msg="[TCP] 10.132.0.101:54574 --> raw.githubusercontent.com:443 match DomainKeyword(github) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:35+08:00" level=info msg="[TCP] 192.168.30.169:25015 --> api2.mina.mi.com:443 match DomainSuffix(mi.com) using DIRECT"
time="2023-03-22T22:25:35+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7844 --> nav-edge.smartscreen.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:36+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7845 --> edge.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:36+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7846 --> edge.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:37+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7847 --> functional.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:37+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7848 --> mobile.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:38+08:00" level=info msg="[TCP] 192.168.30.138:7851 --> client.wns.windows.com:443 match DomainSuffix(windows.com) using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:39+08:00" level=warning msg="[TCP] dial DIRECT (match DomainSuffix/microsoft.com) 192.168.30.138:7849 --> self.events.data.microsoft.com:443 error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:41+08:00" level=debug msg="[DNS] resolve userstore.nvidia.com error: all DNS requests failed, first error: dial tcp4 8.8.8.8:853: i/o timeout"
time="2023-03-22T22:25:41+08:00" level=info msg="[TCP] 192.168.30.138:7850 --> userstore.nvidia.com:443 match Match() using v2box[【测试节点 1倍率】 美国C| 琼港]"
time="2023-03-22T22:25:42+08:00" level=debug msg="[DNS] dlandroid.rcv.sandai.net --> 180.163.203.56"
time="2023-03-22T22:25:42+08:00" level=info msg="[TCP] 192.168.30.19:46440 --> dlandroid.rcv.sandai.net:80 match GeoIP(CN) using DIRECT"
time="2023-03-22T22:25:43+08:00" level=info msg="[TCP] 192.168.30.169:27698 --> 45.124.124.68:443 match GeoIP(CN) using DIRECT"
#===================== 最近运行日志获取完成(自动切换为silent模式) =====================#
#===================== 活动连接信息 =====================#
1. SourceIP:【10.132.0.101】 - Host:【ntp.aliyun.com】 - DestinationIP:【203.107.6.88】 - Network:【udp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
2. SourceIP:【192.168.30.138】 - Host:【api-ipv4.ip.sb】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
3. SourceIP:【192.168.30.138】 - Host:【lightstep.kaizen.nvidia.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
4. SourceIP:【192.168.30.138】 - Host:【github.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
5. SourceIP:【192.168.30.138】 - Host:【crl.comodoca.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【comodoca.com】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
6. SourceIP:【192.168.30.226】 - Host:【Empty】 - DestinationIP:【58.83.177.45】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
7. SourceIP:【192.168.30.138】 - Host:【www.gstatic.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【gstatic.com】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
8. SourceIP:【192.168.30.138】 - Host:【www.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
9. SourceIP:【192.168.30.138】 - Host:【ctldl.windowsupdate.com】 - DestinationIP:【36.25.246.52】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
10. SourceIP:【192.168.30.169】 - Host:【Empty】 - DestinationIP:【45.124.124.68】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
11. SourceIP:【192.168.30.138】 - Host:【client.wns.windows.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【windows.com】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
12. SourceIP:【192.168.30.138】 - Host:【services.bingapis.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
13. SourceIP:【192.168.30.138】 - Host:【assets.msn.cn】 - DestinationIP:【117.21.204.45】 - Network:【tcp】 - RulePayload:【cn】 - Lastchain:【DIRECT】
14. SourceIP:【192.168.30.138】 - Host:【s1.music.126.net】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【126.net】 - Lastchain:【DIRECT】
15. SourceIP:【192.168.30.138】 - Host:【www.youtube.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【youtube】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
16. SourceIP:【192.168.30.138】 - Host:【crl3.digicert.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【digicert.com】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
17. SourceIP:【192.168.30.138】 - Host:【api.ipify.org】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
18. SourceIP:【192.168.30.138】 - Host:【www.baidu.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【baidu】 - Lastchain:【DIRECT】
19. SourceIP:【192.168.30.138】 - Host:【www.youtube.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【youtube】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
20. SourceIP:【192.168.30.138】 - Host:【rr5---sn-nx57ynsl.googlevideo.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
21. SourceIP:【192.168.30.138】 - Host:【www.youtube.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【youtube】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
22. SourceIP:【192.168.30.138】 - Host:【www.taobao.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【taobao】 - Lastchain:【DIRECT】
23. SourceIP:【192.168.30.169】 - Host:【access.speech.ai.xiaomi.com】 - DestinationIP:【14.215.35.241】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
24. SourceIP:【192.168.30.138】 - Host:【crl.verisign.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
25. SourceIP:【192.168.30.138】 - Host:【hhu2016-my.sharepoint.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
26. SourceIP:【192.168.30.138】 - Host:【whois.pconline.com.cn】 - DestinationIP:【27.18.12.4】 - Network:【tcp】 - RulePayload:【cn】 - Lastchain:【DIRECT】
27. SourceIP:【192.168.30.138】 - Host:【crl4.digicert.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【digicert.com】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
28. SourceIP:【192.168.30.138】 - Host:【ocsp.entrust.net】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【entrust.net】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
29. SourceIP:【192.168.30.138】 - Host:【play.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】
30. SourceIP:【192.168.30.138】 - Host:【x1.c.lencr.org】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【【测试节点 1倍率】 美国C| 琼港】
31. SourceIP:【192.168.30.138】 - Host:【Empty】 - DestinationIP:【140.143.219.189】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
32. SourceIP:【192.168.30.19】 - Host:【dlandroid.rcv.sandai.net】 - DestinationIP:【180.163.203.56】 - Network:【tcp】 - RulePayload:【CN】 - Lastchain:【DIRECT】
33. SourceIP:【192.168.30.138】 - Host:【play.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【【1倍率】美国B | 广港 | 解锁】感谢你的帮助!
FanofZY
commented
1 year ago 刚才借用他人账号尝试了一下联通网,发现就可以上了,原来是电信服务商的问题,谢谢帮助!
vernesong
commented
1 year ago fallback不通的DNS换了吧
vernesong
commented
1 year ago iStoreOS会加一些端口转发,你看看是不是自动绕过了,新版本忽略了端口范围的自动绕过效果会好转一些
mintisan
commented
1 year ago 我也是 iStore OS 也是这样,Google和twitter上不去,youtube可以,,,
vernesong
commented
1 year ago DNS劫持的问题,关v6,开嗅探,然后自己排查
mintisan
commented
1 year ago 我把 DNS 修改为 8.8.8.8 和 1.1.1.1 后可以了,不要使用192.168.31.1【内网路由】,因为 Clash 会接管 DNS。 不然就会诡异的有些可以,有些不可以,十分不稳定
vernesong
commented
1 year ago 覆写页面的设置需要单独保存
github-actions[bot]
commented
1 year ago This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 5 days
ilovetaimei
commented
1 year ago 我把 DNS 修改为 8.8.8.8 和 1.1.1.1 后可以了,不要使用192.168.31.1【内网路由】,因为 Clash 会接管 DNS。 不然就会诡异的有些可以,有些不可以,十分不稳定
我设置了还是不行啊
ilovetaimei
commented
1 year ago 我把 DNS 修改为 8.8.8.8 和 1.1.1.1 后可以了,不要使用192.168.31.1【内网路由】,因为 Clash 会接管 DNS。 不然就会诡异的有些可以,有些不可以,十分不稳定
我设置了还是不行啊
换meta内核吧,开启sni嗅探和default dns server,什么都解决了
就只是cloudflare warp节点不能用,电脑上用clash可以的
Verify Steps
OpenClash Version
v0.45-103.beta
Bug on Environment
Official OpenWrt
Bug on Platform
Linux-amd64(x86-64)
To Reproduce
开启openclash后,可以打开youtube或者google的主页,但点击视频或者键入搜索内容后就会卡住,提示无链接。
Describe the Bug
开启openclash后,可以打开youtube或者google的主页,但点击视频或者键入搜索内容后就会卡住,提示无链接,观察yacd面板,链接无速度,尝试各种选项开关、采用issues中的种种方法、更换openclash版本以及更换固件版本等方法,均无法解决,唯一发现pornhub正常访问。同一网络环境下的clash for windows可以正常使用。怀疑是否是dns劫持失败?仅仅解析了主域名。我没有能力解决,希望各位大神帮助。
OpenClash Log
log.txt
OpenClash Config
No response
Expected Behavior
希望可以正常访问youtube、google等。
Screenshots
No response