vernesong
commented
1 year ago 看看调试日志吧
Closed luweijun1992 closed 1 year ago
vernesong
commented
1 year ago 看看调试日志吧
luweijun1992
commented
1 year ago 看看调试日志吧
Fake-IP模式 终端电脑的dns为Pi-hole,Pi-hole再指向OpenClash。 比如Pi-hole当前针对www.google.com解析IP为198.18.0.1;www.youtube.com解析IP为192.18.0.2;且还在缓存中。 但是此时OpenClash因为某种原因,比如重启或者dns缓存到期导致没有这个记录或者说对应的记录跟Pi-hole上不一致(www.google.com解析IP为198.18.2.1;www.youtube.com解析IP为192.18.2.2;) 终端再次请求上诉域名时候,Pi-hole上有缓存,直接返回给终端。 终端向这个目标IP地址发起请求,流量到达OpenCLash,所有导致访问国外站点时好时坏呢? 如果是以上这种情况的话,我们有什么办法去应对呢?
taoletsgo
commented
1 year ago 如果国内网站访问正常,fallback里加几个冷门国外doh dot之类的(要能连接通)
vernesong
commented
1 year ago 直接指向7874,不推荐指向其他设备
Kutius
commented
1 year ago 我也是
DuaiDuai0815
commented
1 year ago 我也是這個問題 最近幾天發現有些網站打不開 刷新多少次也沒用 要等幾分鐘再刷新 就可以打開了 (用OpenClash很多年了)後來測試用帕斯沃 一切正常
othelloYu
commented
1 year ago 我感觉自从更新v0.45.112-beta后就隐隐约约有这个问题,一时时的 国内网站可以打开,国外的不行,然后几分钟莫名其妙又没问题了 难道是dns的问题? OpenClash 调试日志
生成时间: 2023-05-14 18:36:27 插件版本: v0.45.112-beta 隐私提示: 上传此日志前请注意检查、屏蔽公网IP、节点、密码等相关敏感信息
#===================== 系统信息 =====================#
主机型号: /IC2M1028V-J
固件版本: OpenWrt SNAPSHOT r0-32330e1
LuCI版本: git-22.354.59335-6a1c418-1
内核版本: 5.15.85
处理器架构: x86_64
#此项有值时,如不使用IPv6,建议到网络-接口-lan的设置中禁用IPV6的DHCP
IPV6-DHCP:
DNS劫持: 停用
#DNS劫持为Dnsmasq时,此项结果应仅有配置文件的DNS监听地址
Dnsmasq转发设置: 127.0.0.1#5553
#===================== 依赖检查 =====================#
dnsmasq-full: 已安装
coreutils: 已安装
coreutils-nohup: 已安装
bash: 已安装
curl: 已安装
ca-certificates: 已安装
ipset: 已安装
ip-full: 已安装
libcap: 已安装
libcap-bin: 已安装
ruby: 已安装
ruby-yaml: 已安装
ruby-psych: 已安装
ruby-pstore: 已安装
kmod-tun(TUN模式): 已安装
luci-compat(Luci >= 19.07): 已安装
kmod-inet-diag(PROCESS-NAME): 已安装
unzip: 已安装
iptables-mod-tproxy: 已安装
kmod-ipt-tproxy: 已安装
iptables-mod-extra: 已安装
kmod-ipt-extra: 已安装
kmod-ipt-nat: 已安装
#===================== 内核检查 =====================#
运行状态: 运行中
运行内核:Meta
进程pid: 5115
运行权限: 5115: cap_dac_override,cap_net_bind_service,cap_net_admin,cap_net_raw,cap_sys_ptrace,cap_sys_resource=eip
运行用户: nobody
已选择的架构: linux-amd64
#下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限
Tun内核版本: 2023.04.16-10-geb52785
Tun内核文件: 存在
Tun内核运行权限: 正常
Dev内核版本: v1.15.1-7-g6eee226
Dev内核文件: 存在
Dev内核运行权限: 正常
Meta内核版本: alpha-gefcb278
Meta内核文件: 存在
Meta内核运行权限: 正常
#===================== 插件设置 =====================#
当前配置文件: /etc/openclash/config/2.222.yaml
启动配置文件: /etc/openclash/2.222.yaml
运行模式: fake-ip
默认代理模式: rule
UDP流量转发(tproxy): 停用
自定义DNS: 启用
IPV6代理: 停用
IPV6-DNS解析: 停用
禁用Dnsmasq缓存: 启用
自定义规则: 启用
仅允许内网: 停用
仅代理命中规则流量: 启用
仅允许常用端口流量: 停用
绕过中国大陆IP: 停用
路由本机代理: 启用
#启动异常时建议关闭此项后重试
混合节点: 停用
保留配置: 停用
#启动异常时建议关闭此项后重试
第三方规则: 启用
#===================== 自定义规则 一 =====================#
##- DOMAIN-SUFFIX,google.com,Proxy 匹配域名后缀(交由Proxy代理服务器组)
##- DOMAIN-KEYWORD,google,Proxy 匹配域名关键字(交由Proxy代理服务器组)
##- DOMAIN,google.com,Proxy 匹配域名(交由Proxy代理服务器组)
##- DOMAIN-SUFFIX,ad.com,REJECT 匹配域名后缀(拒绝)
##- IP-CIDR,127.0.0.0/8,DIRECT 匹配数据目标IP(直连)
##- SRC-IP-CIDR,192.168.1.201/32,DIRECT 匹配数据发起IP(直连)
##- DST-PORT,80,DIRECT 匹配数据目标端口(直连)
##- SRC-PORT,7777,DIRECT 匹配数据源端口(直连)
##排序在上的规则优先生效,如添加(去除规则前的#号):
##IP段:192.168.1.2-192.168.1.200 直连
##- SRC-IP-CIDR,192.168.1.2/31,DIRECT
##- SRC-IP-CIDR,192.168.1.4/30,DIRECT
##- SRC-IP-CIDR,192.168.1.8/29,DIRECT
##- SRC-IP-CIDR,192.168.1.16/28,DIRECT
##- SRC-IP-CIDR,192.168.1.32/27,DIRECT
##- SRC-IP-CIDR,192.168.1.64/26,DIRECT
##- SRC-IP-CIDR,192.168.1.128/26,DIRECT
##- SRC-IP-CIDR,192.168.1.192/29,DIRECT
##- SRC-IP-CIDR,192.168.1.200/32,DIRECT
##IP段:192.168.1.202-192.168.1.255 直连
##- SRC-IP-CIDR,192.168.1.202/31,DIRECT
##- SRC-IP-CIDR,192.168.1.204/30,DIRECT
##- SRC-IP-CIDR,192.168.1.208/28,DIRECT
##- SRC-IP-CIDR,192.168.1.224/27,DIRECT
##此时IP为192.168.1.1和192.168.1.201的客户端流量走代理(策略),其余客户端不走代理
##因为Fake-IP模式下,IP地址为192.168.1.1的路由器自身流量可走代理(策略),所以需要排除
##仅设置路由器自身直连:
##- SRC-IP-CIDR,192.168.1.1/32,DIRECT
##- SRC-IP-CIDR,198.18.0.1/32,DIRECT
##DDNS
##- DOMAIN-SUFFIX,checkip.dyndns.org,DIRECT
##- DOMAIN-SUFFIX,checkipv6.dyndns.org,DIRECT
##- DOMAIN-SUFFIX,checkip.synology.com,DIRECT
##- DOMAIN-SUFFIX,ifconfig.co,DIRECT
##- DOMAIN-SUFFIX,api.myip.com,DIRECT
##- DOMAIN-SUFFIX,ip-api.com,DIRECT
##- DOMAIN-SUFFIX,ipapi.co,DIRECT
##- DOMAIN-SUFFIX,ip6.seeip.org,DIRECT
##- DOMAIN-SUFFIX,members.3322.org,DIRECT
##- DOMAIN,pingpingwuqi.xyz, \U0001F680 节点选择
#DOMAIN-SUFFIX,pingpingwuqi.xyz,\U0001F680 节点选择
#- DST-PORT,55525,Proxy
#- DST-PORT,8096,Proxy
#- DOMAIN-SUFFIX,jmsooo.com,Proxy
#- DOMAIN-SUFFIX,odysseyplus.site,Proxy
##在线IP段转CIDR地址:http://ip2cidr.com
#===================== 自定义规则 二 =====================#
##- DOMAIN-SUFFIX,google.com,Proxy 匹配域名后缀(交由Proxy代理服务器组)
##- DOMAIN-KEYWORD,google,Proxy 匹配域名关键字(交由Proxy代理服务器组)
##- DOMAIN,google.com,Proxy 匹配域名(交由Proxy代理服务器组)
##- DOMAIN-SUFFIX,ad.com,REJECT 匹配域名后缀(拒绝)
##- IP-CIDR,127.0.0.0/8,DIRECT 匹配数据目标IP(直连)
##- SRC-IP-CIDR,192.168.1.201/32,DIRECT 匹配数据发起IP(直连)
##- DST-PORT,80,DIRECT 匹配数据目标端口(直连)
##- SRC-PORT,7777,DIRECT 匹配数据源端口(直连)
#===================== 配置文件 =====================#
port: 7890
socks-port: 7891
allow-lan: true
mode: rule
log-level: info
external-controller: 0.0.0.0:9090
proxy-groups:
- name: "\U0001F680 节点选择"
type: select
disable-udp: false
proxies:
#===================== 自定义覆写设置 =====================#
#!/bin/sh
. /usr/share/openclash/ruby.sh
. /usr/share/openclash/log.sh
. /lib/functions.sh
# This script is called by /etc/init.d/openclash
# Add your custom overwrite scripts here, they will be take effict after the OpenClash own srcipts
LOG_OUT "Tip: Start Running Custom Overwrite Scripts..."
LOGTIME=$(echo $(date "+%Y-%m-%d %H:%M:%S"))
LOG_FILE="/tmp/openclash.log"
CONFIG_FILE="$1" #config path
#Simple Demo:
#General Demo
#1--config path
#2--key name
#3--value
#ruby_edit "$CONFIG_FILE" "['redir-port']" "7892"
#ruby_edit "$CONFIG_FILE" "['secret']" "123456"
#ruby_edit "$CONFIG_FILE" "['dns']['enable']" "true"
#Hash Demo
#1--config path
#2--key name
#3--hash type value
#ruby_edit "$CONFIG_FILE" "['experimental']" "{'sniff-tls-sni'=>true}"
#ruby_edit "$CONFIG_FILE" "['sniffer']" "{'sniffing'=>['tls','http']}"
#Array Demo:
#1--config path
#2--key name
#3--position(start from 0, end with -1)
#4--value
#ruby_arr_insert "$CONFIG_FILE" "['dns']['nameserver']" "0" "114.114.114.114"
#Array Add From Yaml File Demo:
#1--config path
#2--key name
#3--position(start from 0, end with -1)
#4--value file path
#5--value key name in #4 file
#ruby_arr_add_file "$CONFIG_FILE" "['dns']['fallback-filter']['ipcidr']" "0" "/etc/openclash/custom/openclash_custom_fallback_filter.yaml" "['fallback-filter']['ipcidr']"
#Ruby Script Demo:
#ruby -ryaml -rYAML -I "/usr/share/openclash" -E UTF-8 -e "
# begin
# Value = YAML.load_file('$CONFIG_FILE');
# rescue Exception => e
# puts '${LOGTIME} Error: Load File Failed,【' + e.message + '】';
# end;
#General
# begin
# Thread.new{
# Value['redir-port']=7892;
# Value['tproxy-port']=7895;
# Value['port']=7890;
# Value['socks-port']=7891;
# Value['mixed-port']=7893;
# }.join;
# rescue Exception => e
# puts '${LOGTIME} Error: Set General Failed,【' + e.message + '】';
# ensure
# File.open('$CONFIG_FILE','w') {|f| YAML.dump(Value, f)};
# end" 2>/dev/null >> $LOG_FILE
exit 0
#===================== 自定义防火墙设置 =====================#
#!/bin/sh
. /usr/share/openclash/log.sh
. /lib/functions.sh
# This script is called by /etc/init.d/openclash
# Add your custom firewall rules here, they will be added after the end of the OpenClash iptables rules
LOG_OUT "Tip: Start Add Custom Firewall Rules..."
exit 0
#===================== IPTABLES 防火墙设置 =====================#
#IPv4 NAT chain
# Generated by iptables-save v1.8.7 on Sun May 14 18:36:34 2023
*nat
:PREROUTING ACCEPT [4877:543323]
:INPUT ACCEPT [22937:1691560]
:OUTPUT ACCEPT [68053:4323023]
:POSTROUTING ACCEPT [70656:4545768]
:DOCKER - [0:0]
:MINIUPNPD - [0:0]
:MINIUPNPD-POSTROUTING - [0:0]
:openclash - [0:0]
:openclash_output - [0:0]
:postrouting_docker_rule - [0:0]
:postrouting_ipsecserver_rule - [0:0]
:postrouting_lan_rule - [0:0]
:postrouting_rule - [0:0]
:prerouting_docker_rule - [0:0]
:prerouting_ipsecserver_rule - [0:0]
:prerouting_lan_rule - [0:0]
:prerouting_rule - [0:0]
:zone_docker_postrouting - [0:0]
:zone_docker_prerouting - [0:0]
:zone_ipsecserver_postrouting - [0:0]
:zone_ipsecserver_prerouting - [0:0]
:zone_lan_postrouting - [0:0]
:zone_lan_prerouting - [0:0]
-A PREROUTING -d 8.8.4.4/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -d 8.8.8.8/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -m addrtype --dst-type LOCAL -j DOCKER
-A PREROUTING -m comment --comment "!fw3: Custom prerouting rule chain" -j prerouting_rule
-A PREROUTING -i br-lan -m comment --comment "!fw3" -j zone_lan_prerouting
-A PREROUTING -i docker0 -m comment --comment "!fw3" -j zone_docker_prerouting
-A PREROUTING -i ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_prerouting
-A PREROUTING -p udp -m comment --comment DNSMASQ -m udp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -p tcp -j openclash
-A OUTPUT ! -d 127.0.0.0/8 -m addrtype --dst-type LOCAL -j DOCKER
-A OUTPUT -j openclash_output
-A POSTROUTING -s 172.17.0.0/16 ! -o docker0 -j MASQUERADE
-A POSTROUTING -m comment --comment "!fw3: Custom postrouting rule chain" -j postrouting_rule
-A POSTROUTING -o br-lan -m comment --comment "!fw3" -j zone_lan_postrouting
-A POSTROUTING -o docker0 -m comment --comment "!fw3" -j zone_docker_postrouting
-A POSTROUTING -o ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_postrouting
-A DOCKER -i docker0 -j RETURN
-A openclash -m set --match-set localnetwork dst -j RETURN
-A openclash -d 198.18.0.0/16 -p tcp -j REDIRECT --to-ports 7892
-A openclash -p tcp -j REDIRECT --to-ports 7892
-A openclash_output -d 198.18.0.0/16 -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A openclash_output -m set --match-set localnetwork dst -j RETURN
-A openclash_output -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A zone_docker_postrouting -m comment --comment "!fw3: Custom docker postrouting rule chain" -j postrouting_docker_rule
-A zone_docker_prerouting -m comment --comment "!fw3: Custom docker prerouting rule chain" -j prerouting_docker_rule
-A zone_ipsecserver_postrouting -m comment --comment "!fw3: Custom ipsecserver postrouting rule chain" -j postrouting_ipsecserver_rule
-A zone_ipsecserver_prerouting -m comment --comment "!fw3: Custom ipsecserver prerouting rule chain" -j prerouting_ipsecserver_rule
-A zone_lan_postrouting -j MINIUPNPD-POSTROUTING
-A zone_lan_postrouting -m comment --comment "!fw3: Custom lan postrouting rule chain" -j postrouting_lan_rule
-A zone_lan_prerouting -j MINIUPNPD
-A zone_lan_prerouting -m comment --comment "!fw3: Custom lan prerouting rule chain" -j prerouting_lan_rule
COMMIT
# Completed on Sun May 14 18:36:34 2023
#IPv4 Mangle chain
# Generated by iptables-save v1.8.7 on Sun May 14 18:36:34 2023
*mangle
:PREROUTING ACCEPT [766:188633]
:INPUT ACCEPT [767:188685]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [855:176834]
:POSTROUTING ACCEPT [855:176834]
:RRDIPT_FORWARD - [0:0]
:RRDIPT_INPUT - [0:0]
:RRDIPT_OUTPUT - [0:0]
:openclash - [0:0]
:openclash_output - [0:0]
-A PREROUTING -p udp -j openclash
-A INPUT -j RRDIPT_INPUT
-A FORWARD -j RRDIPT_FORWARD
-A OUTPUT -j RRDIPT_OUTPUT
-A OUTPUT -p udp -j openclash_output
-A RRDIPT_FORWARD -s 192.168.31.1/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.31.1/32 -j RETURN
-A RRDIPT_FORWARD -s 192.168.31.161/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.31.161/32 -j RETURN
-A RRDIPT_FORWARD -s 192.168.31.229/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.31.229/32 -j RETURN
-A RRDIPT_FORWARD -s 192.168.31.107/32 -j RETURN
-A RRDIPT_FORWARD -d 192.168.31.107/32 -j RETURN
-A RRDIPT_INPUT -i eth0 -j RETURN
-A RRDIPT_INPUT -i br-lan -j RETURN
-A RRDIPT_INPUT -i eth1 -j RETURN
-A RRDIPT_OUTPUT -o eth0 -j RETURN
-A RRDIPT_OUTPUT -o br-lan -j RETURN
-A RRDIPT_OUTPUT -o eth1 -j RETURN
-A openclash -d 198.18.0.0/16 -p udp -j TPROXY --on-port 7895 --on-ip 0.0.0.0 --tproxy-mark 0x162/0xffffffff
-A openclash_output -d 198.18.0.0/16 -p udp -m owner ! --uid-owner 65534 -j MARK --set-xmark 0x162/0xffffffff
COMMIT
# Completed on Sun May 14 18:36:34 2023
#IPv4 Filter chain
# Generated by iptables-save v1.8.7 on Sun May 14 18:36:34 2023
*filter
:INPUT ACCEPT [1613:64604]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:DOCKER - [0:0]
:DOCKER-ISOLATION-STAGE-1 - [0:0]
:DOCKER-ISOLATION-STAGE-2 - [0:0]
:DOCKER-MAN - [0:0]
:DOCKER-USER - [0:0]
:MINIUPNPD - [0:0]
:SOCAT - [0:0]
:forwarding_docker_rule - [0:0]
:forwarding_ipsecserver_rule - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:input_docker_rule - [0:0]
:input_ipsecserver_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:output_docker_rule - [0:0]
:output_ipsecserver_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_docker_dest_ACCEPT - [0:0]
:zone_docker_forward - [0:0]
:zone_docker_input - [0:0]
:zone_docker_output - [0:0]
:zone_docker_src_ACCEPT - [0:0]
:zone_ipsecserver_dest_ACCEPT - [0:0]
:zone_ipsecserver_forward - [0:0]
:zone_ipsecserver_input - [0:0]
:zone_ipsecserver_output - [0:0]
:zone_ipsecserver_src_ACCEPT - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
-A INPUT -j SOCAT
-A INPUT -j SOCAT
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -i docker0 -m comment --comment "!fw3" -j zone_docker_input
-A INPUT -i ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_input
-A FORWARD -j DOCKER-USER
-A FORWARD -j DOCKER-ISOLATION-STAGE-1
-A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -o docker0 -j DOCKER
-A FORWARD -i docker0 ! -o docker0 -j ACCEPT
-A FORWARD -i docker0 -o docker0 -j ACCEPT
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -i docker0 -m comment --comment "!fw3" -j zone_docker_forward
-A FORWARD -i ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_forward
-A FORWARD -m comment --comment "!fw3" -j reject
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A OUTPUT -o docker0 -m comment --comment "!fw3" -j zone_docker_output
-A OUTPUT -o ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_output
-A DOCKER-ISOLATION-STAGE-1 -i docker0 ! -o docker0 -j DOCKER-ISOLATION-STAGE-2
-A DOCKER-ISOLATION-STAGE-1 -j RETURN
-A DOCKER-ISOLATION-STAGE-2 -o docker0 -j DROP
-A DOCKER-ISOLATION-STAGE-2 -j RETURN
-A DOCKER-MAN -i br-lan -o docker0 -j RETURN
-A DOCKER-MAN -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j RETURN
-A DOCKER-MAN -o docker0 -m conntrack --ctstate INVALID,NEW -j DROP
-A DOCKER-MAN -j RETURN
-A DOCKER-USER -j DOCKER-MAN
-A DOCKER-USER -j RETURN
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp-port-unreachable
-A syn_flood -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A zone_docker_dest_ACCEPT -o docker0 -m comment --comment "!fw3" -j ACCEPT
-A zone_docker_forward -m comment --comment "!fw3: Custom docker forwarding rule chain" -j forwarding_docker_rule
-A zone_docker_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_docker_forward -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_input -m comment --comment "!fw3: Custom docker input rule chain" -j input_docker_rule
-A zone_docker_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_docker_input -m comment --comment "!fw3" -j zone_docker_src_ACCEPT
-A zone_docker_output -m comment --comment "!fw3: Custom docker output rule chain" -j output_docker_rule
-A zone_docker_output -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_src_ACCEPT -i docker0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_ipsecserver_dest_ACCEPT -o ipsec0 -m comment --comment "!fw3" -j ACCEPT
-A zone_ipsecserver_forward -m comment --comment "!fw3: Custom ipsecserver forwarding rule chain" -j forwarding_ipsecserver_rule
-A zone_ipsecserver_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_ipsecserver_forward -m comment --comment "!fw3" -j zone_ipsecserver_dest_ACCEPT
-A zone_ipsecserver_input -m comment --comment "!fw3: Custom ipsecserver input rule chain" -j input_ipsecserver_rule
-A zone_ipsecserver_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_ipsecserver_input -m comment --comment "!fw3" -j zone_ipsecserver_src_ACCEPT
-A zone_ipsecserver_output -m comment --comment "!fw3: Custom ipsecserver output rule chain" -j output_ipsecserver_rule
-A zone_ipsecserver_output -m comment --comment "!fw3" -j zone_ipsecserver_dest_ACCEPT
-A zone_ipsecserver_src_ACCEPT -i ipsec0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -j MINIUPNPD
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
COMMIT
# Completed on Sun May 14 18:36:34 2023
#IPv6 NAT chain
# Generated by ip6tables-save v1.8.7 on Sun May 14 18:36:34 2023
*nat
:PREROUTING ACCEPT [147:127210]
:INPUT ACCEPT [147:127210]
:OUTPUT ACCEPT [1:139]
:POSTROUTING ACCEPT [1:139]
-A PREROUTING -p udp -m comment --comment DNSMASQ -m udp --dport 53 -j REDIRECT --to-ports 53
COMMIT
# Completed on Sun May 14 18:36:34 2023
#IPv6 Mangle chain
# Generated by ip6tables-save v1.8.7 on Sun May 14 18:36:34 2023
*mangle
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:RRDIPT_FORWARD - [0:0]
:RRDIPT_INPUT - [0:0]
:RRDIPT_OUTPUT - [0:0]
-A INPUT -j RRDIPT_INPUT
-A FORWARD -j RRDIPT_FORWARD
-A OUTPUT -j RRDIPT_OUTPUT
-A RRDIPT_FORWARD -s fe80::dc5c:3cbf:3735:1f8/128 -j RETURN
-A RRDIPT_FORWARD -d fe80::dc5c:3cbf:3735:1f8/128 -j RETURN
-A RRDIPT_FORWARD -s fe80::c42c:40ff:fe90:a76c/128 -j RETURN
-A RRDIPT_FORWARD -d fe80::c42c:40ff:fe90:a76c/128 -j RETURN
-A RRDIPT_FORWARD -s fe80::702a:c6ff:fe1f:91a7/128 -j RETURN
-A RRDIPT_FORWARD -d fe80::702a:c6ff:fe1f:91a7/128 -j RETURN
-A RRDIPT_FORWARD -s fe80::1c66:ebd8:6405:b175/128 -j RETURN
-A RRDIPT_FORWARD -d fe80::1c66:ebd8:6405:b175/128 -j RETURN
-A RRDIPT_INPUT -i eth0 -j RETURN
-A RRDIPT_INPUT -i br-lan -j RETURN
-A RRDIPT_INPUT -i eth1 -j RETURN
-A RRDIPT_OUTPUT -o eth0 -j RETURN
-A RRDIPT_OUTPUT -o br-lan -j RETURN
-A RRDIPT_OUTPUT -o eth1 -j RETURN
COMMIT
# Completed on Sun May 14 18:36:34 2023
#IPv6 Filter chain
# Generated by ip6tables-save v1.8.7 on Sun May 14 18:36:34 2023
*filter
:INPUT ACCEPT [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:MINIUPNPD - [0:0]
:SOCAT - [0:0]
:forwarding_docker_rule - [0:0]
:forwarding_ipsecserver_rule - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:input_docker_rule - [0:0]
:input_ipsecserver_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:output_docker_rule - [0:0]
:output_ipsecserver_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_docker_dest_ACCEPT - [0:0]
:zone_docker_forward - [0:0]
:zone_docker_input - [0:0]
:zone_docker_output - [0:0]
:zone_docker_src_ACCEPT - [0:0]
:zone_ipsecserver_dest_ACCEPT - [0:0]
:zone_ipsecserver_forward - [0:0]
:zone_ipsecserver_input - [0:0]
:zone_ipsecserver_output - [0:0]
:zone_ipsecserver_src_ACCEPT - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
-A INPUT -j SOCAT
-A INPUT -j SOCAT
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -i docker0 -m comment --comment "!fw3" -j zone_docker_input
-A INPUT -i ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_input
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -i docker0 -m comment --comment "!fw3" -j zone_docker_forward
-A FORWARD -i ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_forward
-A FORWARD -m comment --comment "!fw3" -j reject
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A OUTPUT -o docker0 -m comment --comment "!fw3" -j zone_docker_output
-A OUTPUT -o ipsec0 -m comment --comment "!fw3" -j zone_ipsecserver_output
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp6-port-unreachable
-A syn_flood -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A zone_docker_dest_ACCEPT -o docker0 -m comment --comment "!fw3" -j ACCEPT
-A zone_docker_forward -m comment --comment "!fw3: Custom docker forwarding rule chain" -j forwarding_docker_rule
-A zone_docker_forward -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_input -m comment --comment "!fw3: Custom docker input rule chain" -j input_docker_rule
-A zone_docker_input -m comment --comment "!fw3" -j zone_docker_src_ACCEPT
-A zone_docker_output -m comment --comment "!fw3: Custom docker output rule chain" -j output_docker_rule
-A zone_docker_output -m comment --comment "!fw3" -j zone_docker_dest_ACCEPT
-A zone_docker_src_ACCEPT -i docker0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_ipsecserver_dest_ACCEPT -o ipsec0 -m comment --comment "!fw3" -j ACCEPT
-A zone_ipsecserver_forward -m comment --comment "!fw3: Custom ipsecserver forwarding rule chain" -j forwarding_ipsecserver_rule
-A zone_ipsecserver_forward -m comment --comment "!fw3" -j zone_ipsecserver_dest_ACCEPT
-A zone_ipsecserver_input -m comment --comment "!fw3: Custom ipsecserver input rule chain" -j input_ipsecserver_rule
-A zone_ipsecserver_input -m comment --comment "!fw3" -j zone_ipsecserver_src_ACCEPT
-A zone_ipsecserver_output -m comment --comment "!fw3: Custom ipsecserver output rule chain" -j output_ipsecserver_rule
-A zone_ipsecserver_output -m comment --comment "!fw3" -j zone_ipsecserver_dest_ACCEPT
-A zone_ipsecserver_src_ACCEPT -i ipsec0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -j MINIUPNPD
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
COMMIT
# Completed on Sun May 14 18:36:34 2023
#===================== IPSET状态 =====================#
Name: mwan3_dynamic_ipv6
Name: mwan3_connected_ipv4
Name: mwan3_connected_ipv6
Name: mwan3_custom_ipv4
Name: mwan3_custom_ipv6
Name: mwan3_rule_ipv4_https
Name: mwan3_rule_ipv6_https
Name: cn
Name: ct
Name: cnc
Name: cmcc
Name: crtc
Name: cernet
Name: gwbn
Name: othernet
Name: localnetwork
Name: china
Name: mwan3_dynamic_ipv4
#===================== 路由表状态 =====================#
#route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 192.168.31.1 0.0.0.0 UG 0 0 0 br-lan
172.17.0.0 0.0.0.0 255.255.0.0 U 0 0 0 docker0
192.168.31.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan
#ip route list
default via 192.168.31.1 dev br-lan proto static
172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown
192.168.31.0/24 dev br-lan proto kernel scope link src 192.168.31.233
#ip rule show
0: from all lookup local
32765: from all fwmark 0x162 lookup 354
32766: from all lookup main
32767: from all lookup default
#===================== 端口占用状态 =====================#
tcp 0 0 :::9090 :::* LISTEN 5115/clash
tcp 0 0 :::7891 :::* LISTEN 5115/clash
tcp 0 0 :::7890 :::* LISTEN 5115/clash
tcp 0 0 :::7895 :::* LISTEN 5115/clash
tcp 0 0 :::7893 :::* LISTEN 5115/clash
tcp 0 0 :::7892 :::* LISTEN 5115/clash
udp 0 0 :::42365 :::* 5115/clash
udp 0 0 :::7874 :::* 5115/clash
udp 0 0 :::7891 :::* 5115/clash
udp 0 0 :::7892 :::* 5115/clash
udp 0 0 :::7893 :::* 5115/clash
udp 0 0 :::7895 :::* 5115/clash
#===================== 测试本机DNS查询(www.baidu.com) =====================#
Server: 127.0.0.1
Address: 127.0.0.1:53
Name: www.baidu.com
Address: 198.18.3.98
#===================== 测试内核DNS查询(www.instagram.com) =====================#
Status: 0
TC: false
RD: true
RA: true
AD: false
CD: false
Question:
Name: www.instagram.com.
Qtype: 1
Qclass: 1
Answer:
TTL: 1
data: 128.242.245.244
name: www.instagram.com.
type: 1
#===================== resolv.conf.d =====================#
# Interface lan
nameserver 192.168.31.233
#===================== 测试本机网络连接(www.baidu.com) =====================#
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Connection: keep-alive
Content-Length: 277
Content-Type: text/html
Date: Sun, 14 May 2023 10:36:42 GMT
Etag: "575e1f6f-115"
Last-Modified: Mon, 13 Jun 2016 02:50:23 GMT
Pragma: no-cache
Server: bfe/1.0.8.18
#===================== 测试本机网络下载(raw.githubusercontent.com) =====================#
HTTP/2 200
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: "c4bb90ae438326968603faec1fb27380615fa6040485f63636e70d4cbfae644b"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 47A4:152C:757FF4:870D7B:645BF7C1
accept-ranges: bytes
date: Sun, 14 May 2023 10:36:42 GMT
via: 1.1 varnish
x-served-by: cache-hkg17932-HKG
x-cache: HIT
x-cache-hits: 2
x-timer: S1684060603.706574,VS0,VE0
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 3045a01e1a2311945d9866b2ad5174308ed66949
expires: Sun, 14 May 2023 10:41:42 GMT
source-age: 95
content-length: 83
#===================== 最近运行日志(自动切换为Debug模式) =====================#
time="2023-05-14T18:27:05.015806406+08:00" level=info msg="[TCP] 192.168.31.229:53626 --> loggw.alipay.com.cn:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:27:05.420908712+08:00" level=info msg="[TCP] 192.168.31.107:9335 --> api.ipify.org:443 match DstPort(443) using 🐟 漏网之鱼[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:27:07.612553034+08:00" level=info msg="[TCP] 192.168.31.229:42408 --> loggw.alipay.com.cn:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:27:19.985108141+08:00" level=info msg="[TCP] 192.168.31.229:45140 --> wmapi.meituan.com:80 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:27:19.991433519+08:00" level=info msg="[TCP] 192.168.31.229:54158 --> wmapi.meituan.com:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:28:41.256942675+08:00" level=info msg="[TCP] 192.168.31.107:9406 --> self.events.data.microsoft.com:443 match DomainKeyword(microsoft) using Ⓜ️ 微软服务[🇸🇬 SG-SP-VLESS-TCP-XTLS]"
time="2023-05-14T18:29:02.522840182+08:00" level=info msg="[TCP] 192.168.31.107:9423 --> www.google.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.154230829+08:00" level=info msg="[TCP] 192.168.31.229:57790 --> tracking.miui.com:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:29:04.601001053+08:00" level=info msg="[TCP] 192.168.31.107:9431 --> qqwry.api.skk.moe:443 match DomainSuffix(skk.moe) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.636553744+08:00" level=info msg="[TCP] 192.168.31.107:9432 --> avatars1.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.644154548+08:00" level=info msg="[TCP] 192.168.31.107:9437 --> api.ipify.org:443 match DstPort(443) using 🐟 漏网之鱼[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.649698133+08:00" level=info msg="[TCP] 192.168.31.107:9435 --> api.ttt.sh:443 match DstPort(443) using 🐟 漏网之鱼[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.653935282+08:00" level=info msg="[TCP] 192.168.31.107:9436 --> avatars0.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.654887766+08:00" level=info msg="[TCP] 192.168.31.107:9433 --> avatars3.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.659237149+08:00" level=info msg="[TCP] 192.168.31.107:9430 --> d.skk.moe:443 match DomainSuffix(skk.moe) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.662935269+08:00" level=info msg="[TCP] 192.168.31.107:9438 --> avatars.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:04.672008519+08:00" level=info msg="[TCP] 192.168.31.107:9434 --> avatars2.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:06.29947581+08:00" level=info msg="[TCP] 192.168.31.107:9441 --> api.ttt.sh:443 match DstPort(443) using 🐟 漏网之鱼[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:15.733264052+08:00" level=info msg="[TCP] 192.168.31.233:44626 --> raw.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:30.764341942+08:00" level=info msg="[TCP] 192.168.31.233:33790 --> www.baidu.com:80 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:29:31.179109673+08:00" level=info msg="[TCP] 192.168.31.233:34328 --> raw.githubusercontent.com:443 match DomainKeyword(github) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:32.356106454+08:00" level=debug msg="Skip once health check because we are lazy"
time="2023-05-14T18:29:32.356254236+08:00" level=debug msg="Skip once health check because we are lazy"
time="2023-05-14T18:29:33.604302203+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:33.604615507+08:00" level=debug msg="[DNS] www.google.com --> 142.250.207.36"
time="2023-05-14T18:29:33.755997996+08:00" level=info msg="[TCP] 192.168.31.107:9461 --> www.google.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:33.9142282+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:33.914512032+08:00" level=debug msg="[DNS] lh3.google.com --> 142.250.207.14"
time="2023-05-14T18:29:34.060138133+08:00" level=info msg="[TCP] 192.168.31.107:9462 --> lh3.google.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:34.256352034+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:34.256626088+08:00" level=debug msg="[DNS] youtube.com --> 172.217.161.46"
time="2023-05-14T18:29:34.256997918+08:00" level=debug msg="[DNS] resolve youtube.com from https://jp.tiarap.org:443/dns-query"
time="2023-05-14T18:29:34.257747935+08:00" level=debug msg="[DNS] resolve youtube.com from https://public.dns.iij.jp:443/dns-query"
time="2023-05-14T18:29:34.257747935+08:00" level=debug msg="[DNS] resolve youtube.com from https://dns.quad9.net:443/dns-query"
time="2023-05-14T18:29:34.257805693+08:00" level=debug msg="[DNS] resolve youtube.com from https://dns.cloudflare.com:443/dns-query"
time="2023-05-14T18:29:34.258949749+08:00" level=debug msg="[DNS] resolve public.dns.iij.jp from udp://1.0.0.1:53"
time="2023-05-14T18:29:34.257805693+08:00" level=debug msg="[DNS] resolve youtube.com from https://dns.google:443/dns-query"
time="2023-05-14T18:29:34.259682864+08:00" level=debug msg="[DNS] resolve public.dns.iij.jp from udp://8.8.8.8:53"
time="2023-05-14T18:29:34.259829529+08:00" level=debug msg="[DNS] resolve public.dns.iij.jp from udp://114.114.114.114:53"
time="2023-05-14T18:29:34.260307517+08:00" level=debug msg="[DNS] resolve public.dns.iij.jp from udp://223.5.5.5:53"
time="2023-05-14T18:29:34.267409171+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:34.267672958+08:00" level=debug msg="[DNS] lh3.googleusercontent.com --> 172.217.163.33"
time="2023-05-14T18:29:34.27765141+08:00" level=debug msg="[DNS] public.dns.iij.jp --> [103.2.57.6 103.2.57.5], from udp://223.5.5.5:53"
time="2023-05-14T18:29:34.335588169+08:00" level=debug msg="[DNS] youtube.com --> [142.250.207.14], from https://dns.quad9.net:443/dns-query"
time="2023-05-14T18:29:34.408740784+08:00" level=info msg="[TCP] 192.168.31.107:9463 --> youtube.com:443 match DomainKeyword(youtube) using 📹 油管视频[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:34.417262225+08:00" level=info msg="[TCP] 192.168.31.107:9464 --> lh3.googleusercontent.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:34.449383865+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:34.449665322+08:00" level=debug msg="[DNS] fonts.googleapis.com --> 120.232.163.225"
time="2023-05-14T18:29:34.449941471+08:00" level=debug msg="[DNS] resolve fonts.googleapis.com from https://116279.alidns.com:443/dns-query"
time="2023-05-14T18:29:34.450112161+08:00" level=debug msg="[DNS] resolve fonts.googleapis.com from https://doh.pub:443/dns-query"
time="2023-05-14T18:29:34.450286762+08:00" level=debug msg="[DNS] resolve fonts.googleapis.com from udp://114.114.114.114:53"
time="2023-05-14T18:29:34.45008653+08:00" level=debug msg="[DNS] resolve fonts.googleapis.com from udp://119.29.29.29:53"
time="2023-05-14T18:29:34.450988309+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:34.451318305+08:00" level=debug msg="[DNS] fonts.gstatic.com --> 203.208.40.34"
time="2023-05-14T18:29:34.451857823+08:00" level=debug msg="[DNS] resolve fonts.gstatic.com from https://doh.pub:443/dns-query"
time="2023-05-14T18:29:34.452119864+08:00" level=debug msg="[DNS] resolve fonts.gstatic.com from udp://114.114.114.114:53"
time="2023-05-14T18:29:34.452129362+08:00" level=debug msg="[DNS] resolve fonts.gstatic.com from https://116279.alidns.com:443/dns-query"
time="2023-05-14T18:29:34.452093813+08:00" level=debug msg="[DNS] resolve fonts.gstatic.com from udp://119.29.29.29:53"
time="2023-05-14T18:29:34.463680481+08:00" level=info msg="[TCP] 192.168.31.107:9466 --> fonts.googleapis.com:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:29:34.468977878+08:00" level=debug msg="[DNS] fonts.googleapis.com --> [120.232.163.225], from udp://119.29.29.29:53"
time="2023-05-14T18:29:34.472229927+08:00" level=debug msg="[DNS] fonts.gstatic.com --> [203.208.41.66 203.208.41.66], from udp://119.29.29.29:53"
time="2023-05-14T18:29:34.493210343+08:00" level=info msg="[TCP] 192.168.31.107:9467 --> fonts.gstatic.com:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:29:35.712801895+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:35.713255578+08:00" level=debug msg="[DNS] resolve lh4.googleusercontent.com from https://doh.pub:443/dns-query"
time="2023-05-14T18:29:35.713562876+08:00" level=debug msg="[DNS] resolve lh4.googleusercontent.com from udp://114.114.114.114:53"
time="2023-05-14T18:29:35.713718341+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:35.71392018+08:00" level=debug msg="[DNS] resolve lh4.googleusercontent.com from udp://119.29.29.29:53"
time="2023-05-14T18:29:35.71405553+08:00" level=debug msg="[DNS] www.google.com --> 142.250.207.36"
time="2023-05-14T18:29:35.714240468+08:00" level=debug msg="[DNS] resolve lh4.googleusercontent.com from https://116279.alidns.com:443/dns-query"
time="2023-05-14T18:29:35.715897223+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:35.716301599+08:00" level=debug msg="[DNS] resolve www.google.com.hk from https://doh.pub:443/dns-query"
time="2023-05-14T18:29:35.716706114+08:00" level=debug msg="[DNS] resolve www.google.com.hk from https://116279.alidns.com:443/dns-query"
time="2023-05-14T18:29:35.717164896+08:00" level=debug msg="[DNS] www.google.com.hk --> 75.126.150.210"
time="2023-05-14T18:29:35.718210617+08:00" level=debug msg="[DNS] resolve www.google.com.hk from udp://119.29.29.29:53"
time="2023-05-14T18:29:35.718636294+08:00" level=debug msg="[DNS] resolve www.google.com.hk from udp://114.114.114.114:53"
time="2023-05-14T18:29:35.73566437+08:00" level=debug msg="[DNS] www.google.com.hk --> [69.63.190.26], from udp://119.29.29.29:53"
time="2023-05-14T18:29:35.735762286+08:00" level=debug msg="[DNS] lh4.googleusercontent.com --> [142.250.204.97], from udp://119.29.29.29:53"
time="2023-05-14T18:29:35.736377999+08:00" level=debug msg="[DNS] lh4.googleusercontent.com --> 142.250.204.97"
time="2023-05-14T18:29:35.866594577+08:00" level=info msg="[TCP] 192.168.31.107:9471 --> www.google.com.hk:443 match DomainSuffix(hk) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:35.871128758+08:00" level=info msg="[TCP] 192.168.31.107:9470 --> www.google.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:35.887779276+08:00" level=info msg="[TCP] 192.168.31.107:9469 --> lh4.googleusercontent.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:35.988587444+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:35.988914228+08:00" level=debug msg="[DNS] lh4.googleusercontent.com --> 142.250.204.97"
time="2023-05-14T18:29:36.140684122+08:00" level=info msg="[TCP] 192.168.31.107:9472 --> lh4.googleusercontent.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:29:39.106980276+08:00" level=debug msg="[Sniffer] Skip sniffing[210.38.47.50:443] due to multiple failures"
time="2023-05-14T18:29:39.107149499+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:39.127162834+08:00" level=info msg="[TCP] 192.168.31.107:9475 --> 210.38.47.50:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:29:39.246874084+08:00" level=debug msg="[Sniffer] Skip sniffing[210.38.47.50:443] due to multiple failures"
time="2023-05-14T18:29:39.247044495+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:39.263519224+08:00" level=info msg="[TCP] 192.168.31.107:9476 --> 210.38.47.50:443 match RuleSet(国内IP白名单) using 🎯 全球直连[DIRECT]"
time="2023-05-14T18:29:39.638433071+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:29:39.63872675+08:00" level=debug msg="[DNS] mtalk.google.com --> 74.125.204.188"
time="2023-05-14T18:29:39.785927753+08:00" level=info msg="[TCP] 192.168.31.161:53806 --> mtalk.google.com:5228 match Domain(mtalk.google.com) using 📢 谷歌FCM[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:36:43.595355074+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:36:43.595668238+08:00" level=debug msg="[DNS] signaler-pa.clients6.google.com --> 172.217.175.10"
time="2023-05-14T18:36:43.743473498+08:00" level=info msg="[TCP] 192.168.31.107:9863 --> signaler-pa.clients6.google.com:443 match DomainKeyword(google) using 🚀 节点选择[🇭🇰 HK-CJB-VLESS-TCP-TLS]"
time="2023-05-14T18:36:49.397137552+08:00" level=debug msg="[Rule] use default rules"
time="2023-05-14T18:36:49.397674346+08:00" level=debug msg="Ⓜ️ 微软服务 UDP is not supported"
time="2023-05-14T18:36:49.399841564+08:00" level=info msg="[UDP] 192.168.31.107:54260 --> win1910.ipv6.microsoft.com:3544 match using DIRECT"
time="2023-05-14T18:36:49.483712589+08:00" level=debug msg="TProxy listenLocalConn rAddr=198.18.0.139:3544 lAddr=192.168.31.107:54260"
#===================== 最近运行日志获取完成(自动切换为silent模式) =====================#
#===================== 活动连接信息 =====================#
1. SourceIP:【192.168.31.107】 - Host:【signaler-pa.clients6.google.com】 - DestinationIP:【142.250.198.10】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
2. SourceIP:【192.168.31.229】 - Host:【plus-static.jd.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
3. SourceIP:【192.168.31.107】 - Host:【www.google.com】 - DestinationIP:【172.217.26.228】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
4. SourceIP:【192.168.31.107】 - Host:【signaler-pa.clients6.google.com】 - DestinationIP:【172.217.175.10】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
5. SourceIP:【192.168.31.107】 - Host:【signaler-pa.clients6.google.com】 - DestinationIP:【172.217.175.10】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
6. SourceIP:【192.168.31.107】 - Host:【avatars2.githubusercontent.com】 - DestinationIP:【185.199.109.133】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
7. SourceIP:【192.168.31.107】 - Host:【translate.google.com】 - DestinationIP:【142.251.222.46】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
8. SourceIP:【192.168.31.161】 - Host:【cdn.exp.xiaomi.com】 - DestinationIP:【120.240.232.64】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
9. SourceIP:【192.168.31.107】 - Host:【client.wns.windows.com】 - DestinationIP:【20.198.162.78】 - Network:【tcp】 - RulePayload:【windows.com】 - Lastchain:【🇸🇬 SG-SP-VLESS-TCP-XTLS】
10. SourceIP:【192.168.31.107】 - Host:【clients2.google.com】 - DestinationIP:【172.217.175.14】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
11. SourceIP:【192.168.31.161】 - Host:【Empty】 - DestinationIP:【120.232.51.95】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
12. SourceIP:【192.168.31.107】 - Host:【avatars0.githubusercontent.com】 - DestinationIP:【185.199.110.133】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
13. SourceIP:【192.168.31.107】 - Host:【rc10-g7.oray.com】 - DestinationIP:【121.41.108.228】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
14. SourceIP:【192.168.31.107】 - Host:【fonts.gstatic.com】 - DestinationIP:【203.208.40.66】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
15. SourceIP:【192.168.31.161】 - Host:【flash.sec.miui.com】 - DestinationIP:【39.156.150.4】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
16. SourceIP:【192.168.31.107】 - Host:【win1910.ipv6.microsoft.com】 - DestinationIP:【40.81.185.240】 - Network:【udp】 - RulePayload:【】 - Lastchain:【DIRECT】
17. SourceIP:【192.168.31.229】 - Host:【h.360buyimg.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
18. SourceIP:【192.168.31.161】 - Host:【tracking.miui.com】 - DestinationIP:【39.156.81.106】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
19. SourceIP:【192.168.31.107】 - Host:【youtube.com】 - DestinationIP:【142.250.207.14】 - Network:【tcp】 - RulePayload:【youtube】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
20. SourceIP:【192.168.31.107】 - Host:【lh3.googleusercontent.com】 - DestinationIP:【172.217.163.33】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
21. SourceIP:【192.168.31.107】 - Host:【www.youtube.com】 - DestinationIP:【142.250.189.206】 - Network:【tcp】 - RulePayload:【youtube】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
22. SourceIP:【192.168.31.107】 - Host:【clients4.google.com】 - DestinationIP:【172.217.175.14】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
23. SourceIP:【192.168.31.107】 - Host:【www.gstatic.com】 - DestinationIP:【203.208.40.2】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
24. SourceIP:【192.168.31.107】 - Host:【avatars.githubusercontent.com】 - DestinationIP:【185.199.110.133】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
25. SourceIP:【192.168.31.229】 - Host:【h.360buyimg.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
26. SourceIP:【192.168.31.107】 - Host:【lh3.google.com】 - DestinationIP:【142.250.207.14】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
27. SourceIP:【192.168.31.229】 - Host:【wl.jd.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
28. SourceIP:【192.168.31.229】 - Host:【h.360buyimg.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
29. SourceIP:【192.168.31.107】 - Host:【clients2.google.com】 - DestinationIP:【172.217.175.14】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
30. SourceIP:【192.168.31.229】 - Host:【h.360buyimg.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
31. SourceIP:【192.168.31.107】 - Host:【google.com】 - DestinationIP:【142.251.222.14】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
32. SourceIP:【192.168.31.107】 - Host:【github.com】 - DestinationIP:【20.205.243.166】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
33. SourceIP:【192.168.31.107】 - Host:【signaler-pa.clients6.google.com】 - DestinationIP:【142.250.198.10】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
34. SourceIP:【192.168.31.229】 - Host:【mars.jd.com】 - DestinationIP:【118.193.121.130】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
35. SourceIP:【192.168.31.107】 - Host:【ogs.google.com】 - DestinationIP:【216.58.220.110】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
36. SourceIP:【192.168.31.107】 - Host:【signaler-pa.clients6.google.com】 - DestinationIP:【142.250.198.10】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
37. SourceIP:【192.168.31.229】 - Host:【api.sec.miui.com】 - DestinationIP:【39.156.150.102】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
38. SourceIP:【192.168.31.229】 - Host:【h5static.m.jd.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
39. SourceIP:【192.168.31.107】 - Host:【play.google.com】 - DestinationIP:【142.250.207.46】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
40. SourceIP:【192.168.31.229】 - Host:【mars.jd.com】 - DestinationIP:【36.110.180.214】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
41. SourceIP:【192.168.31.107】 - Host:【alive.github.com】 - DestinationIP:【140.82.112.26】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
42. SourceIP:【192.168.31.161】 - Host:【noteapi.micloud.xiaomi.net】 - DestinationIP:【111.13.142.37】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
43. SourceIP:【192.168.31.107】 - Host:【ws-std01.sunlogin.oray.com】 - DestinationIP:【116.62.128.150】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
44. SourceIP:【192.168.31.161】 - Host:【noteapi.micloud.xiaomi.net】 - DestinationIP:【111.13.142.37】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
45. SourceIP:【192.168.31.107】 - Host:【accounts.google.com】 - DestinationIP:【142.251.42.173】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
46. SourceIP:【192.168.31.107】 - Host:【mail.google.com】 - DestinationIP:【142.251.42.165】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
47. SourceIP:【192.168.31.229】 - Host:【wx.qlogo.cn】 - DestinationIP:【183.232.224.209】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
48. SourceIP:【192.168.31.161】 - Host:【wx.qlogo.cn】 - DestinationIP:【183.232.224.209】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
49. SourceIP:【192.168.31.229】 - Host:【Empty】 - DestinationIP:【36.158.240.48】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
50. SourceIP:【192.168.31.161】 - Host:【grayconfig.ai.xiaomi.com】 - DestinationIP:【39.156.150.3】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
51. SourceIP:【192.168.31.107】 - Host:【www.google-analytics.com】 - DestinationIP:【120.253.255.33】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
52. SourceIP:【192.168.31.229】 - Host:【hlth.io.mi.com】 - DestinationIP:【124.251.100.25】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
53. SourceIP:【192.168.31.107】 - Host:【config.pinyin.sogou.com】 - DestinationIP:【39.156.165.106】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
54. SourceIP:【192.168.31.107】 - Host:【clients2.google.com】 - DestinationIP:【172.217.175.14】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
55. SourceIP:【192.168.31.229】 - Host:【gia.jd.com】 - DestinationIP:【116.198.21.3】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
56. SourceIP:【192.168.31.229】 - Host:【api.sec.miui.com】 - DestinationIP:【39.156.150.102】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
57. SourceIP:【192.168.31.161】 - Host:【noteapi.micloud.xiaomi.net】 - DestinationIP:【111.13.142.37】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
58. SourceIP:【192.168.31.229】 - Host:【h.360buyimg.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
59. SourceIP:【192.168.31.107】 - Host:【play.google.com】 - DestinationIP:【142.250.207.46】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
60. SourceIP:【192.168.31.107】 - Host:【mail.google.com】 - DestinationIP:【172.217.175.101】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
61. SourceIP:【192.168.31.229】 - Host:【auth.be.sec.miui.com】 - DestinationIP:【39.156.150.102】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
62. SourceIP:【192.168.31.229】 - Host:【anti-sdk-report.m.jd.com】 - DestinationIP:【111.13.149.150】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
63. SourceIP:【192.168.31.107】 - Host:【client.wns.windows.com】 - DestinationIP:【20.198.162.78】 - Network:【tcp】 - RulePayload:【windows.com】 - Lastchain:【🇸🇬 SG-SP-VLESS-TCP-XTLS】
64. SourceIP:【192.168.31.229】 - Host:【Empty】 - DestinationIP:【36.152.56.65】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
65. SourceIP:【192.168.31.107】 - Host:【avatars3.githubusercontent.com】 - DestinationIP:【185.199.111.133】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
66. SourceIP:【192.168.31.107】 - Host:【ssl.gstatic.com】 - DestinationIP:【203.208.40.98】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
67. SourceIP:【192.168.31.107】 - Host:【avatars1.githubusercontent.com】 - DestinationIP:【185.199.108.133】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
68. SourceIP:【192.168.31.107】 - Host:【www.gstatic.com】 - DestinationIP:【203.208.40.34】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
69. SourceIP:【192.168.31.161】 - Host:【Empty】 - DestinationIP:【111.13.141.211】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
70. SourceIP:【192.168.31.107】 - Host:【www.google.com】 - DestinationIP:【172.217.26.228】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
71. SourceIP:【192.168.31.229】 - Host:【mcc.inf.miui.com】 - DestinationIP:【111.13.141.98】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
72. SourceIP:【192.168.31.161】 - Host:【noteapi.micloud.xiaomi.net】 - DestinationIP:【111.13.142.37】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
73. SourceIP:【192.168.31.107】 - Host:【beacons5.gvt3.com】 - DestinationIP:【120.253.253.226】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
74. SourceIP:【192.168.31.229】 - Host:【Empty】 - DestinationIP:【111.13.141.211】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
75. SourceIP:【192.168.31.229】 - Host:【knicks.jd.com】 - DestinationIP:【39.156.62.126】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
76. SourceIP:【192.168.31.229】 - Host:【Empty】 - DestinationIP:【111.13.29.201】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
77. SourceIP:【192.168.31.229】 - Host:【ex.m.jd.com】 - DestinationIP:【111.13.29.218】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
78. SourceIP:【192.168.31.229】 - Host:【Empty】 - DestinationIP:【120.232.67.156】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
79. SourceIP:【192.168.31.107】 - Host:【api.github.com】 - DestinationIP:【20.205.243.168】 - Network:【tcp】 - RulePayload:【github】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
80. SourceIP:【192.168.31.229】 - Host:【h.360buyimg.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
81. SourceIP:【192.168.31.107】 - Host:【clients4.google.com】 - DestinationIP:【142.251.222.46】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
82. SourceIP:【192.168.31.161】 - Host:【flash.sec.miui.com】 - DestinationIP:【111.13.141.126】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
83. SourceIP:【192.168.31.107】 - Host:【play.google.com】 - DestinationIP:【142.251.42.206】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
84. SourceIP:【192.168.31.107】 - Host:【mtalk.google.com】 - DestinationIP:【74.125.204.188】 - Network:【tcp】 - RulePayload:【mtalk.google.com】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
85. SourceIP:【192.168.31.229】 - Host:【Empty】 - DestinationIP:【112.53.48.125】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
86. SourceIP:【192.168.31.229】 - Host:【gias.jd.com】 - DestinationIP:【120.232.249.131】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
87. SourceIP:【192.168.31.107】 - Host:【accounts.google.com】 - DestinationIP:【142.251.222.13】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
88. SourceIP:【192.168.31.107】 - Host:【Empty】 - DestinationIP:【210.38.47.50】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
89. SourceIP:【192.168.31.107】 - Host:【clients2.google.com】 - DestinationIP:【142.251.222.46】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
90. SourceIP:【192.168.31.107】 - Host:【fonts.googleapis.com】 - DestinationIP:【120.232.163.225】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
91. SourceIP:【192.168.31.107】 - Host:【play.google.com】 - DestinationIP:【142.251.42.206】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
92. SourceIP:【192.168.31.229】 - Host:【tracking.miui.com】 - DestinationIP:【111.13.141.40】 - Network:【tcp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
93. SourceIP:【192.168.31.107】 - Host:【www.youtube.com】 - DestinationIP:【142.251.32.46】 - Network:【tcp】 - RulePayload:【youtube】 - Lastchain:【🇭🇰 HK-CJB-VLESS-TCP-TLS】
94. SourceIP:【192.168.31.107】 - Host:【pubsub02.oray.net】 - DestinationIP:【112.124.32.90】 - Network:【udp】 - RulePayload:【国内IP白名单】 - Lastchain:【DIRECT】
> 看看调试日志吧
NimbuSHh
commented
1 year ago 我也有类似问题,看YouTube断流,后来试了半天,发现不用meta就好了,怀疑是新版meta有什么问题
luweijun1992
commented
1 year ago 我也有类似问题,看YouTube断流,后来试了半天,发现不用meta就好了,怀疑是新版meta有什么问题
你说是下面截图这个吗?并没有启用。
NimbuSHh
commented
1 year ago 哦 上面调试日志不是你的啊 看错了~ 上面发调试日志的同学用的是meta。。那看来不是这个问题
luweijun1992
commented
1 year ago 哦 上面调试日志不是你的啊 看错了~ 上面发调试日志的同学用的是meta。。那看来不是这个问题
我现在是随机出现部分网站出现:ERR_SSL_PROTOCOL_ERROR 等几分钟再刷新这个页面就又能正常访问了。
poctopus
commented
1 year ago 在我的几个设备上更新到最新版的openclash后也有类似问题,不过我用的tun模式。
luweijun1992
commented
1 year ago @vernesong 请问OpenClash对解析返回记录的TTL默认是多少,这个TTL是否可以修改?
deuteros-gex
commented
1 year ago @vernesong 请问OpenClash对解析返回记录的TTL默认是多少,这个TTL是否可以修改?
openclash只是帮你创建一层透明代理环境、做一些前置分流而已,它控制不了clash内核的dns ttl。 或者说clash本身也没开放dns ttl给你调,最接近的也只有一个
profile:
store-fakeip: true的参数
evan618
commented
1 year ago 你不是一个人,最常见的情况是访问某些网站,报ERR_SSL_PROTOCOL_ERROR 错误,多刷新几次,或者重新开一下就可以。
TIGER-Timear
commented
1 year ago 我也是同样的问题,YOUTUBE时断时续,然后网页也是会报错。而且不管我用不用CL,开不开代理都是这样!特别是昨天开始用ESXI8.01C装了一个新的路由后,使用OPENCLASH做一个自定义配置,一直都是proxygroup XXXXX the duplicate name,直接给我弄崩溃了。。。
HeHeHeeeeee
commented
1 year ago 我也一样,一切配置好后,openclash一直是开着的,但有时外网网站访问不了,有时又可以访问,也说不清楚什么时候有用什么时候没用
ZHuTOdy
commented
1 year ago 这个问题我用fake-ip就会有,用redir-host就不会。
anjue39
commented
1 year ago 我也一样,一切配置好后,openclash一直是开着的,但有时外网网站访问不了,有时又可以访问,也说不清楚什么时候有用什么时候没用
同样现象!!!莫名其妙的很多卡顿问题
github-actions[bot]
commented
1 year ago This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 5 days
sysalong
commented
9 months ago 用的最新版,也是现在这种情况,经常性就莫名的无法访问google youtube 什么的, 就是DNS的问题 使用的是fake-ip模式
ghost
commented
9 months ago 我倒是感觉主要的问题不是dns的,有可能是内核处理速度的问题。 之前用的规则大致是这样的
防止被去广告拦截,直连
去广告,拦截
国内,直连
游戏下载,直连
MATCH,代理最近换了下,加了个需要代理的列表,调了一下
防止被去广告拦截,直连
去广告,拦截
游戏下载,直连
国外,代理
国内,直连
MATCH,代理别的配置文件完全没有变动,失败明显高于没调整之前的
然后个人感觉用geosite时的失败也少于ruleset的
还有一些属于个人感觉的,内核那边发过,没正回复,这边也说一下吧 代理不要直接指向自动组,通过一个select中转一下 比如
proxy-groups:
- {name: A, type: select, proxies: [B...
- {name: B, type: url-test/fallback/load-balance...
rules:
- RULE-SET,国外,A而不要直接
proxy-groups:
- {name: A, type: url-test/fallback/load-balance...
rules:
- RULE-SET,国外,A
imvane
commented
4 months ago 一直被这个问题困扰,试过很多配置文件,都存在问题。 直到最近用华硕merlin clash,异常丝滑。 所以是否可以按照这个思路排查,大神们…
Verify Steps
OpenClash Version
v0.45.112-beta
Bug on Environment
Official OpenWrt
Bug on Platform
Linux-amd64(x86-64)
To Reproduce
使用的相同的订阅地址订阅的配置文件。
使用客户端软件:Clash for Windows;一直效果很好,网页打开速度也很快。 但是使用OpenWrt:OpenClash;总感觉相对较慢,且有时候网页会打不开,页面多刷新几次就又可以了。
请问这是正常的吗?或者需要怎么排查是否配置问题还是其他导致的?
Describe the Bug
~
OpenClash Log
~
OpenClash Config
No response
Expected Behavior
~
Screenshots
No response