[Bug] IPV6相关问题

[3song]

Verify Steps

• [X] Tracker 我已经在 Issue Tracker 中找过我要提出的问题
• [X] Branch 我知道 OpenClash 的 Dev 分支切换开关位于插件设置-版本更新中，或者我会手动下载并安装 Dev 分支的 OpenClash
• [X] Latest 我已经使用最新 Dev 版本测试过，问题依旧存在
• [X] Relevant 我知道 OpenClash 与 内核(Core)、控制面板(Dashboard)、在线订阅转换(Subconverter)等项目之间无直接关系，仅相互调用
• [X] Definite 这确实是 OpenClash 出现的问题
• [ ] Contributors 我有能力协助 OpenClash 开发并解决此问题
• [ ] Meaningless 我提交的是无意义的催促更新或修复请求

OpenClash Version

v0.46.014-beta

Bug on Environment

Docker

OpenWrt Version

OPENWRT 23.03

Bug on Platform

Linux-armv7

Describe the Bug

openwrt在docker中，PC设备只要开启电脑开启IPV6 就无法翻墙，而且 设备nslookup命令显示的也是ipv6的dns地址，可能是被污染了，在openclash中开启了ipv6也没有用，访问google网址的时候就会提示不是私密链接，但是手机就没事，请问一下怎么解决，或者怎么配置相应的自定义规则

To Reproduce

无

OpenClash Log

OpenClash 调试日志

生成时间: 2024-06-24 23:38:46 插件版本: v0.46.016-beta 隐私提示: 上传此日志前请注意检查、屏蔽公网IP、节点、密码等相关敏感信息

#===================== 系统信息 =====================#

主机型号: Xunlei OneCloud
固件版本: OpenWrt 23.05.3 03.30.2024
LuCI版本: git-23.051.66410-a505bb1
内核版本: 6.8.11-edge-meson
处理器架构: 

#此项有值时,如不使用IPv6,建议到网络-接口-lan的设置中禁用IPV6的DHCP
IPV6-DHCP: 

DNS劫持: 停用
#DNS劫持为Dnsmasq时，此项结果应仅有配置文件的DNS监听地址
Dnsmasq转发设置: 

#===================== 依赖检查 =====================#

dnsmasq-full: 已安装
coreutils: 已安装
coreutils-nohup: 已安装
bash: 已安装
curl: 已安装
ca-certificates: 已安装
ipset: 已安装
ip-full: 已安装
libcap: 已安装
libcap-bin: 已安装
ruby: 已安装
ruby-yaml: 已安装
ruby-psych: 已安装
ruby-pstore: 已安装
kmod-tun(TUN模式): 已安装
luci-compat(Luci >= 19.07): 已安装
kmod-inet-diag(PROCESS-NAME): 已安装
unzip: 已安装
iptables-mod-tproxy: 已安装
kmod-ipt-tproxy: 已安装
iptables-mod-extra: 已安装
kmod-ipt-extra: 已安装
kmod-ipt-nat: 已安装

#===================== 内核检查 =====================#

运行状态: 运行中
运行内核：Meta
进程pid: 694
运行权限: 694: cap_dac_override,cap_net_bind_service,cap_net_admin,cap_net_raw,cap_sys_ptrace,cap_sys_resource=eip
运行用户: nobody
已选择的架构: linux-armv6

#下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限
Tun内核版本: 2023.08.17-13-gdcc8d87
Tun内核文件: 存在
Tun内核运行权限: 正常

Dev内核版本: v1.18.0-13-gd034a40
Dev内核文件: 存在
Dev内核运行权限: 正常

Meta内核版本: alpha-g0d4e57c
Meta内核文件: 存在
Meta内核运行权限: 正常

#===================== 插件设置 =====================#

当前配置文件: /etc/openclash/config/SDKDNS.yaml
启动配置文件: /etc/openclash/SDKDNS.yaml
运行模式: fake-ip
默认代理模式: rule
UDP流量转发(tproxy): 启用
自定义DNS: 启用
IPV6代理: 启用
IPV6-DNS解析: 启用
禁用Dnsmasq缓存: 启用
自定义规则: 停用
仅允许内网: 启用
仅代理命中规则流量: 启用
仅允许常用端口流量: 停用
绕过中国大陆IP: 启用
路由本机代理: 启用

#启动异常时建议关闭此项后重试
混合节点: 停用
保留配置: 停用

#启动异常时建议关闭此项后重试
第三方规则: 启用

#===================== 配置文件 =====================#

mixed-port: 7893
allow-lan: true
bind-address: "*"
mode: rule
log-level: info
external-controller: 0.0.0.0:9090
dns:
  enable: true
  ipv6: true
  default-nameserver:
  - 223.5.5.5
  - 119.29.29.29
  - tls://94.140.14.14
  - tls://94.140.15.15
  - tls://8.8.8.8
  - 192.168.50.1
  - "[fe80::42b0:76ff:fec5:5ef8]:53"
  - tls://1.1.1.1#SDK DNS
  - https://1.1.1.1/dns-query#SDK DNS
  fake-ip-range: 198.18.0.1/16
  use-hosts: true
  nameserver:
  - dhcp://"eth0"
  - 192.168.50.1
  - "[fe80::42b0:76ff:fec5:5ef8]:53"
  fallback:
  - quic://dns.adguard-dns.com#SDK DNS
  - tls://dns.quad9.net#SDK DNS
  - tls://dns.google#SDK DNS
  - tls://1.1.1.1#SDK DNS
  - tls://jp.tiar.app#SDK DNS
  - tls://dot.tiar.app#SDK DNS
  - https://dns.quad9.net/dns-query#SDK DNS
  - https://dns.google/dns-query#SDK DNS
  - https://dns.cloudflare.com/dns-query#SDK DNS
  - https://1.1.1.1/dns-query#SDK DNS
  - https://public.dns.iij.jp/dns-query#SDK DNS
  - https://jp.tiar.app/dns-query#SDK DNS
  - https://jp.tiarap.org/dns-query#SDK DNS
  - https://doh.dnslify.com/dns-query#SDK DNS
  - https://dns.twnic.tw/dns-query#SDK DNS
  - https://dns.oszx.co/dns-query#SDK DNS
  fallback-filter:
    geoip: true
    ipcidr:
    - 240.0.0.0/4
    - 0.0.0.0/32
  enhanced-mode: fake-ip
  listen: 0.0.0.0:7874
proxy-groups:
- name: SDK DNS
  type: select
  proxies:
  - 自动选择
  - 故障转移
  - "\U0001F1EF\U0001F1F5日本-01 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-02 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-03 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-04 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-01 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-02 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-03 V 1.0x"
  - "\U0001F1ED\U0001F1F0香港-03 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-04 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-05 S 1.0x"
  - "\U0001F1F9\U0001F1FC台湾-01 T 1.0x"
  - "\U0001F1F9\U0001F1FC台湾-02 T 1.0x"
  - "\U0001F1F8\U0001F1EC新加坡-01 T 1.0x"
  - "\U0001F1F8\U0001F1EC新加坡-02 T 1.0x"
  - "\U0001F1F0\U0001F1F7韩国-01 T 1.0x"
  - "\U0001F1F2\U0001F1FE马来西亚-01 T 1.0x"
  - "\U0001F1F2\U0001F1FE马来西亚-02 T 1.0x"
  - "\U0001F1FB\U0001F1F3越南-01 T 1.0x"
  - "\U0001F1F5\U0001F1ED菲律宾-01 T 1.0x"
  - "\U0001F1EE\U0001F1E9印尼-01 T 1.0x"
  - "\U0001F1F9\U0001F1ED泰国-01 T 1.0x"
  - "\U0001F1EE\U0001F1F3印度-01 T 1.0x"
  - "\U0001F1F5\U0001F1F0巴基斯坦-01 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-01 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-02 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-03 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-04 T 1.0x"
  - "\U0001F1E8\U0001F1E6加拿大-01 D+ T 1.0x"
  - "\U0001F1E6\U0001F1FA澳大利亚-01 T 1.0x"
  - "\U0001F1E6\U0001F1F7阿根廷-01 T 1.0x"
  - "\U0001F1E7\U0001F1F7巴西-01 T 1.0x"
  - "\U0001F1F3\U0001F1F1荷兰-01 T 1.0x"
  - "\U0001F1F7\U0001F1FA俄罗斯-01 T 1.0x"
  - "\U0001F1F9\U0001F1F7土耳其-01 T 1.0x"
  - "\U0001F1E6\U0001F1EA迪拜-01 T 1.0x"
  - "\U0001F1EB\U0001F1F7法国-01 T 1.0x"
  - "\U0001F1E9\U0001F1EA德国-01 T 1.0x"
  - "\U0001F1EC\U0001F1E7英国-01 T 1.0x"
  - 以下节点不推荐国内用户使用
  - "\U0001F1EF\U0001F1F5Japan-01 Z 1.0x NF"
  - "\U0001F1ED\U0001F1F0HongKong-01 Z 1.0x"
  - "\U0001F1F9\U0001F1FCTaiwan-01 Z 1.0x"
  - "\U0001F1F8\U0001F1ECSingapore-01 Z 1.0x"
  - "\U0001F1FA\U0001F1F8U.S.-01 Z 1.0x TT"
  - "\U0001F1FA\U0001F1F8U.S.-02 TZ 1.0x"
  - "\U0001F1E8\U0001F1E6Canada-01 Z 1.0x Z"
  - "\U0001F1E6\U0001F1FAAustralia-01 Z 1.0x Z"
  - "\U0001F1F7\U0001F1FARussia-01 Z 1.0x"
  - "\U0001F1EC\U0001F1E7U.K.-01 Z 1.0x TT"
  - "\U0001F1E6\U0001F1F7Argentina-01 Z 1.0x"
  - "\U0001F1F9\U0001F1F7Turkey-01 Z 1.0x"
  - "\U0001F1E7\U0001F1F7Brazil-01 Z 1.0x"
  - 节点后面的数字表示倍率,是指消耗流量的倍数.请合理分配使用！
  - Netflix仅限Advance,Pro订阅用户可见
  - Hulu仅限Advance,Pro订阅用户可见
  - Disney+仅限Advance,Pro订阅用户可见
  - HBOMAX仅限Advance,Pro订阅用户可见
  - hbogo[tw]仅限Advance,Pro订阅用户可见
  - Pornhub仅限Advance,Pro订阅用户可见
- name: 自动选择
  type: url-test
  proxies:
  - "\U0001F1EF\U0001F1F5日本-01 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-02 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-03 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-04 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-01 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-02 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-03 V 1.0x"
  - "\U0001F1ED\U0001F1F0香港-03 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-04 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-05 S 1.0x"
  - "\U0001F1F9\U0001F1FC台湾-01 T 1.0x"
  - "\U0001F1F9\U0001F1FC台湾-02 T 1.0x"
  - "\U0001F1F8\U0001F1EC新加坡-01 T 1.0x"
  - "\U0001F1F8\U0001F1EC新加坡-02 T 1.0x"
  - "\U0001F1F0\U0001F1F7韩国-01 T 1.0x"
  - "\U0001F1F2\U0001F1FE马来西亚-01 T 1.0x"
  - "\U0001F1F2\U0001F1FE马来西亚-02 T 1.0x"
  - "\U0001F1FB\U0001F1F3越南-01 T 1.0x"
  - "\U0001F1F5\U0001F1ED菲律宾-01 T 1.0x"
  - "\U0001F1EE\U0001F1E9印尼-01 T 1.0x"
  - "\U0001F1F9\U0001F1ED泰国-01 T 1.0x"
  - "\U0001F1EE\U0001F1F3印度-01 T 1.0x"
  - "\U0001F1F5\U0001F1F0巴基斯坦-01 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-01 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-02 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-03 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-04 T 1.0x"
  - "\U0001F1E8\U0001F1E6加拿大-01 D+ T 1.0x"
  - "\U0001F1E6\U0001F1FA澳大利亚-01 T 1.0x"
  - "\U0001F1E6\U0001F1F7阿根廷-01 T 1.0x"
  - "\U0001F1E7\U0001F1F7巴西-01 T 1.0x"
  - "\U0001F1F3\U0001F1F1荷兰-01 T 1.0x"
  - "\U0001F1F7\U0001F1FA俄罗斯-01 T 1.0x"
  - "\U0001F1F9\U0001F1F7土耳其-01 T 1.0x"
  - "\U0001F1E6\U0001F1EA迪拜-01 T 1.0x"
  - "\U0001F1EB\U0001F1F7法国-01 T 1.0x"
  - "\U0001F1E9\U0001F1EA德国-01 T 1.0x"
  - "\U0001F1EC\U0001F1E7英国-01 T 1.0x"
  - 以下节点不推荐国内用户使用
  - "\U0001F1EF\U0001F1F5Japan-01 Z 1.0x NF"
  - "\U0001F1ED\U0001F1F0HongKong-01 Z 1.0x"
  - "\U0001F1F9\U0001F1FCTaiwan-01 Z 1.0x"
  - "\U0001F1F8\U0001F1ECSingapore-01 Z 1.0x"
  - "\U0001F1FA\U0001F1F8U.S.-01 Z 1.0x TT"
  - "\U0001F1FA\U0001F1F8U.S.-02 TZ 1.0x"
  - "\U0001F1E8\U0001F1E6Canada-01 Z 1.0x Z"
  - "\U0001F1E6\U0001F1FAAustralia-01 Z 1.0x Z"
  - "\U0001F1F7\U0001F1FARussia-01 Z 1.0x"
  - "\U0001F1EC\U0001F1E7U.K.-01 Z 1.0x TT"
  - "\U0001F1E6\U0001F1F7Argentina-01 Z 1.0x"
  - "\U0001F1F9\U0001F1F7Turkey-01 Z 1.0x"
  - "\U0001F1E7\U0001F1F7Brazil-01 Z 1.0x"
  - 节点后面的数字表示倍率,是指消耗流量的倍数.请合理分配使用！
  - Netflix仅限Advance,Pro订阅用户可见
  - Hulu仅限Advance,Pro订阅用户可见
  - Disney+仅限Advance,Pro订阅用户可见
  - HBOMAX仅限Advance,Pro订阅用户可见
  - hbogo[tw]仅限Advance,Pro订阅用户可见
  - Pornhub仅限Advance,Pro订阅用户可见
  url: http://cp.cloudflare.com/generate_204
  interval: 180
  tolerance: 100
- name: 故障转移
  type: fallback
  proxies:
  - "\U0001F1EF\U0001F1F5日本-01 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-02 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-03 T 1.0x"
  - "\U0001F1EF\U0001F1F5日本-04 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-01 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-02 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-03 V 1.0x"
  - "\U0001F1ED\U0001F1F0香港-03 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-04 T 1.0x"
  - "\U0001F1ED\U0001F1F0香港-05 S 1.0x"
  - "\U0001F1F9\U0001F1FC台湾-01 T 1.0x"
  - "\U0001F1F9\U0001F1FC台湾-02 T 1.0x"
  - "\U0001F1F8\U0001F1EC新加坡-01 T 1.0x"
  - "\U0001F1F8\U0001F1EC新加坡-02 T 1.0x"
  - "\U0001F1F0\U0001F1F7韩国-01 T 1.0x"
  - "\U0001F1F2\U0001F1FE马来西亚-01 T 1.0x"
  - "\U0001F1F2\U0001F1FE马来西亚-02 T 1.0x"
  - "\U0001F1FB\U0001F1F3越南-01 T 1.0x"
  - "\U0001F1F5\U0001F1ED菲律宾-01 T 1.0x"
  - "\U0001F1EE\U0001F1E9印尼-01 T 1.0x"
  - "\U0001F1F9\U0001F1ED泰国-01 T 1.0x"
  - "\U0001F1EE\U0001F1F3印度-01 T 1.0x"
  - "\U0001F1F5\U0001F1F0巴基斯坦-01 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-01 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-02 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-03 T 1.0x"
  - "\U0001F1FA\U0001F1F8美国-04 T 1.0x"
  - "\U0001F1E8\U0001F1E6加拿大-01 D+ T 1.0x"
  - "\U0001F1E6\U0001F1FA澳大利亚-01 T 1.0x"
  - "\U0001F1E6\U0001F1F7阿根廷-01 T 1.0x"
  - "\U0001F1E7\U0001F1F7巴西-01 T 1.0x"
  - "\U0001F1F3\U0001F1F1荷兰-01 T 1.0x"
  - "\U0001F1F7\U0001F1FA俄罗斯-01 T 1.0x"
  - "\U0001F1F9\U0001F1F7土耳其-01 T 1.0x"
  - "\U0001F1E6\U0001F1EA迪拜-01 T 1.0x"
  - "\U0001F1EB\U0001F1F7法国-01 T 1.0x"
  - "\U0001F1E9\U0001F1EA德国-01 T 1.0x"
  - "\U0001F1EC\U0001F1E7英国-01 T 1.0x"
  - 以下节点不推荐国内用户使用
  - "\U0001F1EF\U0001F1F5Japan-01 Z 1.0x NF"
  - "\U0001F1ED\U0001F1F0HongKong-01 Z 1.0x"
  - "\U0001F1F9\U0001F1FCTaiwan-01 Z 1.0x"
  - "\U0001F1F8\U0001F1ECSingapore-01 Z 1.0x"
  - "\U0001F1FA\U0001F1F8U.S.-01 Z 1.0x TT"
  - "\U0001F1FA\U0001F1F8U.S.-02 TZ 1.0x"
  - "\U0001F1E8\U0001F1E6Canada-01 Z 1.0x Z"
  - "\U0001F1E6\U0001F1FAAustralia-01 Z 1.0x Z"
  - "\U0001F1F7\U0001F1FARussia-01 Z 1.0x"
  - "\U0001F1EC\U0001F1E7U.K.-01 Z 1.0x TT"
  - "\U0001F1E6\U0001F1F7Argentina-01 Z 1.0x"
  - "\U0001F1F9\U0001F1F7Turkey-01 Z 1.0x"
  - "\U0001F1E7\U0001F1F7Brazil-01 Z 1.0x"
  - 节点后面的数字表示倍率,是指消耗流量的倍数.请合理分配使用！
  - Netflix仅限Advance,Pro订阅用户可见
  - Hulu仅限Advance,Pro订阅用户可见
  - Disney+仅限Advance,Pro订阅用户可见
  - HBOMAX仅限Advance,Pro订阅用户可见
  - hbogo[tw]仅限Advance,Pro订阅用户可见
  - Pornhub仅限Advance,Pro订阅用户可见
  url: http://cp.cloudflare.com/generate_204
  interval: 180
rules:
- DST-PORT,7895,REJECT
- DST-PORT,7892,REJECT
- IP-CIDR,198.18.0.1/16,REJECT,no-resolve
- DOMAIN-SUFFIX,awesome-hd.me,DIRECT
- DOMAIN-SUFFIX,broadcasthe.net,DIRECT
- DOMAIN-SUFFIX,chdbits.co,DIRECT
- DOMAIN-SUFFIX,classix-unlimited.co.uk,DIRECT
- DOMAIN-SUFFIX,empornium.me,DIRECT
- DOMAIN-SUFFIX,gazellegames.net,DIRECT
- DOMAIN-SUFFIX,hdchina.org,DIRECT
- DOMAIN-SUFFIX,hdsky.me,DIRECT
- DOMAIN-SUFFIX,icetorrent.org,DIRECT
- DOMAIN-SUFFIX,jpopsuki.eu,DIRECT
- DOMAIN-SUFFIX,keepfrds.com,DIRECT
- DOMAIN-SUFFIX,madsrevolution.net,DIRECT
- DOMAIN-SUFFIX,m-team.cc,DIRECT
- DOMAIN-SUFFIX,nanyangpt.com,DIRECT
- DOMAIN-SUFFIX,ncore.cc,DIRECT
- DOMAIN-SUFFIX,open.cd,DIRECT
- DOMAIN-SUFFIX,ourbits.club,DIRECT
- DOMAIN-SUFFIX,passthepopcorn.me,DIRECT
- DOMAIN-SUFFIX,privatehd.to,DIRECT
- DOMAIN-SUFFIX,redacted.ch,DIRECT
- DOMAIN-SUFFIX,springsunday.net,DIRECT
- DOMAIN-SUFFIX,tjupt.org,DIRECT
- DOMAIN-SUFFIX,totheglory.im,DIRECT
- DOMAIN-SUFFIX,smtp,DIRECT
- DOMAIN-KEYWORD,announce,DIRECT
- DOMAIN-KEYWORD,torrent,DIRECT
- DOMAIN-KEYWORD,tracker,DIRECT
- DOMAIN,api.sdback.xyz,DIRECT
- DOMAIN-SUFFIX,services.googleapis.cn,SDK DNS
- DOMAIN-SUFFIX,xn--ngstr-lra8j.com,SDK DNS
- DOMAIN,safebrowsing.urlsec.qq.com,DIRECT
- DOMAIN,safebrowsing.googleapis.com,DIRECT
- DOMAIN,developer.apple.com,SDK DNS
- DOMAIN-SUFFIX,digicert.com,SDK DNS
- DOMAIN,ocsp.apple.com,SDK DNS
- DOMAIN,ocsp.comodoca.com,SDK DNS
- DOMAIN,ocsp.usertrust.com,SDK DNS
- DOMAIN,ocsp.sectigo.com,SDK DNS
- DOMAIN,ocsp.verisign.net,SDK DNS
- DOMAIN-SUFFIX,apple-dns.net,SDK DNS
- DOMAIN,testflight.apple.com,SDK DNS
- DOMAIN,sandbox.itunes.apple.com,SDK DNS
- DOMAIN,itunes.apple.com,SDK DNS
- DOMAIN-SUFFIX,apps.apple.com,SDK DNS
- DOMAIN-SUFFIX,blobstore.apple.com,SDK DNS
- DOMAIN,cvws.icloud-content.com,SDK DNS
- DOMAIN-SUFFIX,mzstatic.com,DIRECT
- DOMAIN-SUFFIX,itunes.apple.com,DIRECT
- DOMAIN-SUFFIX,icloud.com,DIRECT
- DOMAIN-SUFFIX,icloud-content.com,DIRECT
- DOMAIN-SUFFIX,me.com,DIRECT
- DOMAIN-SUFFIX,aaplimg.com,DIRECT
- DOMAIN-SUFFIX,cdn20.com,DIRECT
- DOMAIN-SUFFIX,cdn-apple.com,DIRECT
- DOMAIN-SUFFIX,akadns.net,DIRECT
- DOMAIN-SUFFIX,akamaiedge.net,DIRECT
- DOMAIN-SUFFIX,edgekey.net,DIRECT
- DOMAIN-SUFFIX,mwcloudcdn.com,DIRECT
- DOMAIN-SUFFIX,mwcname.com,DIRECT
- DOMAIN-SUFFIX,apple.com,DIRECT
- DOMAIN-SUFFIX,apple-cloudkit.com,DIRECT
- DOMAIN-SUFFIX,apple-mapkit.com,DIRECT
- DOMAIN-SUFFIX,126.com,DIRECT
- DOMAIN-SUFFIX,126.net,DIRECT
- DOMAIN-SUFFIX,127.net,DIRECT
- DOMAIN-SUFFIX,163.com,DIRECT
- DOMAIN-SUFFIX,360buyimg.com,DIRECT
- DOMAIN-SUFFIX,36kr.com,DIRECT
- DOMAIN-SUFFIX,acfun.tv,DIRECT
- DOMAIN-SUFFIX,air-matters.com,DIRECT
- DOMAIN-SUFFIX,aixifan.com,DIRECT
- DOMAIN-KEYWORD,alicdn,DIRECT
- DOMAIN-KEYWORD,alipay,DIRECT
- DOMAIN-KEYWORD,taobao,DIRECT
- DOMAIN-SUFFIX,amap.com,DIRECT
- DOMAIN-SUFFIX,autonavi.com,DIRECT
- DOMAIN-KEYWORD,baidu,DIRECT
- DOMAIN-SUFFIX,bdimg.com,DIRECT
- DOMAIN-SUFFIX,bdstatic.com,DIRECT
- DOMAIN-SUFFIX,bilibili.com,DIRECT
- DOMAIN-SUFFIX,bilivideo.com,DIRECT
- DOMAIN-SUFFIX,caiyunapp.com,DIRECT
- DOMAIN-SUFFIX,clouddn.com,DIRECT
- DOMAIN-SUFFIX,cnbeta.com,DIRECT
- DOMAIN-SUFFIX,cnbetacdn.com,DIRECT
- DOMAIN-SUFFIX,cootekservice.com,DIRECT
- DOMAIN-SUFFIX,csdn.net,DIRECT
- DOMAIN-SUFFIX,ctrip.com,DIRECT
- DOMAIN-SUFFIX,dgtle.com,DIRECT
- DOMAIN-SUFFIX,dianping.com,DIRECT
- DOMAIN-SUFFIX,douban.com,DIRECT
- DOMAIN-SUFFIX,doubanio.com,DIRECT
- DOMAIN-SUFFIX,duokan.com,DIRECT
- DOMAIN-SUFFIX,easou.com,DIRECT
- DOMAIN-SUFFIX,ele.me,DIRECT
- DOMAIN-SUFFIX,feng.com,DIRECT
- DOMAIN-SUFFIX,fir.im,DIRECT
- DOMAIN-SUFFIX,frdic.com,DIRECT
- DOMAIN-SUFFIX,g-cores.com,DIRECT
- DOMAIN-SUFFIX,godic.net,DIRECT
- DOMAIN-SUFFIX,gtimg.com,DIRECT
- DOMAIN,cdn.hockeyapp.net,DIRECT
- DOMAIN-SUFFIX,hongxiu.com,DIRECT
- DOMAIN-SUFFIX,hxcdn.net,DIRECT
- DOMAIN-SUFFIX,iciba.com,DIRECT
- DOMAIN-SUFFIX,ifeng.com,DIRECT
- DOMAIN-SUFFIX,ifengimg.com,DIRECT
- DOMAIN-SUFFIX,ipip.net,DIRECT
- DOMAIN-SUFFIX,iqiyi.com,DIRECT
- DOMAIN-SUFFIX,jd.com,DIRECT
- DOMAIN-SUFFIX,jianshu.com,DIRECT
- DOMAIN-SUFFIX,knewone.com,DIRECT
- DOMAIN-SUFFIX,le.com,DIRECT
- DOMAIN-SUFFIX,lecloud.com,DIRECT
- DOMAIN-SUFFIX,lemicp.com,DIRECT
- DOMAIN-SUFFIX,licdn.com,DIRECT
- DOMAIN-SUFFIX,luoo.net,DIRECT
- DOMAIN-SUFFIX,meituan.com,DIRECT
- DOMAIN-SUFFIX,meituan.net,DIRECT
- DOMAIN-SUFFIX,mi.com,DIRECT
- DOMAIN-SUFFIX,miaopai.com,DIRECT
- DOMAIN-SUFFIX,microsoft.com,DIRECT
- DOMAIN-SUFFIX,microsoftonline.com,DIRECT
- DOMAIN-SUFFIX,miui.com,DIRECT
- DOMAIN-SUFFIX,miwifi.com,DIRECT
- DOMAIN-SUFFIX,mob.com,DIRECT
- DOMAIN-SUFFIX,netease.com,DIRECT
- DOMAIN-SUFFIX,office.com,DIRECT
- DOMAIN-SUFFIX,office365.com,DIRECT
- DOMAIN-KEYWORD,officecdn,DIRECT
- DOMAIN-SUFFIX,oschina.net,DIRECT
- DOMAIN-SUFFIX,ppsimg.com,DIRECT
- DOMAIN-SUFFIX,pstatp.com,DIRECT
- DOMAIN-SUFFIX,qcloud.com,DIRECT
- DOMAIN-SUFFIX,qdaily.com,DIRECT
- DOMAIN-SUFFIX,qdmm.com,DIRECT
- DOMAIN-SUFFIX,qhimg.com,DIRECT
- DOMAIN-SUFFIX,qhres.com,DIRECT
- DOMAIN-SUFFIX,qidian.com,DIRECT
- DOMAIN-SUFFIX,qihucdn.com,DIRECT
- DOMAIN-SUFFIX,qiniu.com,DIRECT
- DOMAIN-SUFFIX,qiniucdn.com,DIRECT
- DOMAIN-SUFFIX,qiyipic.com,DIRECT
- DOMAIN-SUFFIX,qq.com,DIRECT
- DOMAIN-SUFFIX,qqurl.com,DIRECT
- DOMAIN-SUFFIX,rarbg.to,DIRECT
- DOMAIN-SUFFIX,ruguoapp.com,DIRECT
- DOMAIN-SUFFIX,segmentfault.com,DIRECT
- DOMAIN-SUFFIX,sinaapp.com,DIRECT
- DOMAIN-SUFFIX,smzdm.com,DIRECT
- DOMAIN-SUFFIX,snapdrop.net,DIRECT
- DOMAIN-SUFFIX,sogou.com,DIRECT
- DOMAIN-SUFFIX,sogoucdn.com,DIRECT
- DOMAIN-SUFFIX,sohu.com,DIRECT
- DOMAIN-SUFFIX,soku.com,DIRECT
- DOMAIN-SUFFIX,speedtest.net,DIRECT
- DOMAIN-SUFFIX,sspai.com,DIRECT
- DOMAIN-SUFFIX,suning.com,DIRECT
- DOMAIN-SUFFIX,taobao.com,DIRECT
- DOMAIN-SUFFIX,tencent.com,DIRECT
- DOMAIN-SUFFIX,tenpay.com,DIRECT
- DOMAIN-SUFFIX,tianyancha.com,DIRECT
- DOMAIN-SUFFIX,tmall.com,DIRECT
- DOMAIN-SUFFIX,tudou.com,DIRECT
- DOMAIN-SUFFIX,umetrip.com,DIRECT
- DOMAIN-SUFFIX,upaiyun.com,DIRECT
- DOMAIN-SUFFIX,upyun.com,DIRECT
- DOMAIN-SUFFIX,veryzhun.com,DIRECT
- DOMAIN-SUFFIX,weather.com,DIRECT
- DOMAIN-SUFFIX,weibo.com,DIRECT
- DOMAIN-SUFFIX,xiami.com,DIRECT
- DOMAIN-SUFFIX,xiami.net,DIRECT
- DOMAIN-SUFFIX,xiaomicp.com,DIRECT
- DOMAIN-SUFFIX,ximalaya.com,DIRECT
- DOMAIN-SUFFIX,xmcdn.com,DIRECT
- DOMAIN-SUFFIX,xunlei.com,DIRECT
- DOMAIN-SUFFIX,yhd.com,DIRECT
- DOMAIN-SUFFIX,yihaodianimg.com,DIRECT
- DOMAIN-SUFFIX,yinxiang.com,DIRECT
- DOMAIN-SUFFIX,ykimg.com,DIRECT
- DOMAIN-SUFFIX,youdao.com,DIRECT
- DOMAIN-SUFFIX,youku.com,DIRECT
- DOMAIN-SUFFIX,zealer.com,DIRECT
- DOMAIN-SUFFIX,zhihu.com,DIRECT
- DOMAIN-SUFFIX,zhimg.com,DIRECT
- DOMAIN-SUFFIX,zimuzu.tv,DIRECT
- DOMAIN-SUFFIX,zoho.com,DIRECT
- DOMAIN-KEYWORD,amazon,SDK DNS
- DOMAIN-KEYWORD,google,SDK DNS
- DOMAIN-KEYWORD,gmail,SDK DNS
- DOMAIN-KEYWORD,youtube,SDK DNS
- DOMAIN-KEYWORD,facebook,SDK DNS
- DOMAIN-SUFFIX,fb.me,SDK DNS
- DOMAIN-SUFFIX,fbcdn.net,SDK DNS
- DOMAIN-KEYWORD,twitter,SDK DNS
- DOMAIN-KEYWORD,instagram,SDK DNS
- DOMAIN-KEYWORD,dropbox,SDK DNS
- DOMAIN-SUFFIX,twimg.com,SDK DNS
- DOMAIN-KEYWORD,blogspot,SDK DNS
- DOMAIN-SUFFIX,youtu.be,SDK DNS
- DOMAIN-KEYWORD,whatsapp,SDK DNS
- DOMAIN-KEYWORD,admarvel,REJECT
- DOMAIN-KEYWORD,admaster,REJECT
- DOMAIN-KEYWORD,adsage,REJECT
- DOMAIN-KEYWORD,adsmogo,REJECT
- DOMAIN-KEYWORD,adsrvmedia,REJECT
- DOMAIN-KEYWORD,adwords,REJECT
- DOMAIN-KEYWORD,adservice,REJECT
- DOMAIN-SUFFIX,appsflyer.com,REJECT
- DOMAIN-KEYWORD,domob,REJECT
- DOMAIN-SUFFIX,doubleclick.net,REJECT
- DOMAIN-KEYWORD,duomeng,REJECT
- DOMAIN-KEYWORD,dwtrack,REJECT
- DOMAIN-KEYWORD,guanggao,REJECT
- DOMAIN-KEYWORD,lianmeng,REJECT
- DOMAIN-SUFFIX,mmstat.com,REJECT
- DOMAIN-KEYWORD,mopub,REJECT
- DOMAIN-KEYWORD,omgmta,REJECT
- DOMAIN-KEYWORD,openx,REJECT
- DOMAIN-KEYWORD,partnerad,REJECT
- DOMAIN-KEYWORD,pingfore,REJECT
- DOMAIN-KEYWORD,supersonicads,REJECT
- DOMAIN-KEYWORD,uedas,REJECT
- DOMAIN-KEYWORD,umeng,REJECT
- DOMAIN-KEYWORD,usage,REJECT
- DOMAIN-SUFFIX,vungle.com,REJECT
- DOMAIN-KEYWORD,wlmonitor,REJECT
- DOMAIN-KEYWORD,zjtoolbar,REJECT
- DOMAIN-SUFFIX,9to5mac.com,SDK DNS
- DOMAIN-SUFFIX,abpchina.org,SDK DNS
- DOMAIN-SUFFIX,adblockplus.org,SDK DNS
- DOMAIN-SUFFIX,adobe.com,SDK DNS
- DOMAIN-SUFFIX,akamaized.net,SDK DNS
- DOMAIN-SUFFIX,alfredapp.com,SDK DNS
- DOMAIN-SUFFIX,amplitude.com,SDK DNS
- DOMAIN-SUFFIX,ampproject.org,SDK DNS
- DOMAIN-SUFFIX,android.com,SDK DNS
- DOMAIN-SUFFIX,angularjs.org,SDK DNS
- DOMAIN-SUFFIX,aolcdn.com,SDK DNS
- DOMAIN-SUFFIX,apkpure.com,SDK DNS
- DOMAIN-SUFFIX,appledaily.com,SDK DNS
- DOMAIN-SUFFIX,appshopper.com,SDK DNS
- DOMAIN-SUFFIX,appspot.com,SDK DNS
- DOMAIN-SUFFIX,arcgis.com,SDK DNS
- DOMAIN-SUFFIX,archive.org,SDK DNS
- DOMAIN-SUFFIX,armorgames.com,SDK DNS
- DOMAIN-SUFFIX,aspnetcdn.com,SDK DNS
- DOMAIN-SUFFIX,att.com,SDK DNS
- DOMAIN-SUFFIX,awsstatic.com,SDK DNS
- DOMAIN-SUFFIX,azureedge.net,SDK DNS
- DOMAIN-SUFFIX,azurewebsites.net,SDK DNS
- DOMAIN-SUFFIX,bing.com,SDK DNS
- DOMAIN-SUFFIX,bintray.com,SDK DNS
- DOMAIN-SUFFIX,bit.com,SDK DNS
- DOMAIN-SUFFIX,bit.ly,SDK DNS
- DOMAIN-SUFFIX,bitbucket.org,SDK DNS
- DOMAIN-SUFFIX,bjango.com,SDK DNS
- DOMAIN-SUFFIX,bkrtx.com,SDK DNS
- DOMAIN-SUFFIX,blog.com,SDK DNS
- DOMAIN-SUFFIX,blogcdn.com,SDK DNS
- DOMAIN-SUFFIX,blogger.com,SDK DNS
- DOMAIN-SUFFIX,blogsmithmedia.com,SDK DNS
- DOMAIN-SUFFIX,blogspot.com,SDK DNS
- DOMAIN-SUFFIX,blogspot.hk,SDK DNS
- DOMAIN-SUFFIX,bloomberg.com,SDK DNS
- DOMAIN-SUFFIX,box.com,SDK DNS
- DOMAIN-SUFFIX,box.net,SDK DNS
- DOMAIN-SUFFIX,cachefly.net,SDK DNS
- DOMAIN-SUFFIX,chromium.org,SDK DNS
- DOMAIN-SUFFIX,cl.ly,SDK DNS
- DOMAIN-SUFFIX,cloudflare.com,SDK DNS
- DOMAIN-SUFFIX,cloudfront.net,SDK DNS
- DOMAIN-SUFFIX,cloudmagic.com,SDK DNS
- DOMAIN-SUFFIX,cmail19.com,SDK DNS
- DOMAIN-SUFFIX,cnet.com,SDK DNS
- DOMAIN-SUFFIX,cocoapods.org,SDK DNS
- DOMAIN-SUFFIX,comodoca.com,SDK DNS
- DOMAIN-SUFFIX,crashlytics.com,SDK DNS
- DOMAIN-SUFFIX,culturedcode.com,SDK DNS
- DOMAIN-SUFFIX,d.pr,SDK DNS
- DOMAIN-SUFFIX,danilo.to,SDK DNS
- DOMAIN-SUFFIX,dayone.me,SDK DNS
- DOMAIN-SUFFIX,db.tt,SDK DNS
- DOMAIN-SUFFIX,deskconnect.com,SDK DNS
- DOMAIN-SUFFIX,disq.us,SDK DNS
- DOMAIN-SUFFIX,disqus.com,SDK DNS
- DOMAIN-SUFFIX,disquscdn.com,SDK DNS
- DOMAIN-SUFFIX,dnsimple.com,SDK DNS
- DOMAIN-SUFFIX,docker.com,SDK DNS
- DOMAIN-SUFFIX,dribbble.com,SDK DNS
- DOMAIN-SUFFIX,droplr.com,SDK DNS
- DOMAIN-SUFFIX,duckduckgo.com,SDK DNS
- DOMAIN-SUFFIX,dueapp.com,SDK DNS
- DOMAIN-SUFFIX,dytt8.net,SDK DNS
- DOMAIN-SUFFIX,edgecastcdn.net,SDK DNS
- DOMAIN-SUFFIX,edgekey.net,SDK DNS
- DOMAIN-SUFFIX,edgesuite.net,SDK DNS
- DOMAIN-SUFFIX,engadget.com,SDK DNS
- DOMAIN-SUFFIX,entrust.net,SDK DNS
- DOMAIN-SUFFIX,eurekavpt.com,SDK DNS
- DOMAIN-SUFFIX,evernote.com,SDK DNS
- DOMAIN-SUFFIX,fabric.io,SDK DNS
- DOMAIN-SUFFIX,fast.com,SDK DNS
- DOMAIN-SUFFIX,fastly.net,SDK DNS
- DOMAIN-SUFFIX,fc2.com,SDK DNS
- DOMAIN-SUFFIX,feedburner.com,SDK DNS
- DOMAIN-SUFFIX,feedly.com,SDK DNS
- DOMAIN-SUFFIX,feedsportal.com,SDK DNS
- DOMAIN-SUFFIX,fiftythree.com,SDK DNS
- DOMAIN-SUFFIX,firebaseio.com,SDK DNS
- DOMAIN-SUFFIX,flexibits.com,SDK DNS
- DOMAIN-SUFFIX,flickr.com,SDK DNS
- DOMAIN-SUFFIX,flipboard.com,SDK DNS
- DOMAIN-SUFFIX,g.co,SDK DNS
- DOMAIN-SUFFIX,gabia.net,SDK DNS
- DOMAIN-SUFFIX,geni.us,SDK DNS
- DOMAIN-SUFFIX,gfx.ms,SDK DNS
- DOMAIN-SUFFIX,ggpht.com,SDK DNS
- DOMAIN-SUFFIX,ghostnoteapp.com,SDK DNS
- DOMAIN-SUFFIX,git.io,SDK DNS
- DOMAIN-KEYWORD,github,SDK DNS
- DOMAIN-SUFFIX,globalsign.com,SDK DNS
- DOMAIN-SUFFIX,gmodules.com,SDK DNS
- DOMAIN-SUFFIX,godaddy.com,SDK DNS
- DOMAIN-SUFFIX,golang.org,SDK DNS
- DOMAIN-SUFFIX,gongm.in,SDK DNS
- DOMAIN-SUFFIX,goo.gl,SDK DNS
- DOMAIN-SUFFIX,goodreaders.com,SDK DNS
- DOMAIN-SUFFIX,goodreads.com,SDK DNS
- DOMAIN-SUFFIX,gravatar.com,SDK DNS
- DOMAIN-SUFFIX,gstatic.com,SDK DNS
- DOMAIN-SUFFIX,gvt0.com,SDK DNS
- DOMAIN-SUFFIX,hockeyapp.net,SDK DNS
- DOMAIN-SUFFIX,hotmail.com,SDK DNS
- DOMAIN-SUFFIX,icons8.com,SDK DNS
- DOMAIN-SUFFIX,ifixit.com,SDK DNS
- DOMAIN-SUFFIX,ift.tt,SDK DNS
- DOMAIN-SUFFIX,ifttt.com,SDK DNS
- DOMAIN-SUFFIX,iherb.com,SDK DNS
- DOMAIN-SUFFIX,imageshack.us,SDK DNS
- DOMAIN-SUFFIX,img.ly,SDK DNS
- DOMAIN-SUFFIX,imgur.com,SDK DNS
- DOMAIN-SUFFIX,imore.com,SDK DNS
- DOMAIN-SUFFIX,instapaper.com,SDK DNS
- DOMAIN-SUFFIX,ipn.li,SDK DNS
- DOMAIN-SUFFIX,is.gd,SDK DNS
- DOMAIN-SUFFIX,issuu.com,SDK DNS
- DOMAIN-SUFFIX,itgonglun.com,SDK DNS
- DOMAIN-SUFFIX,itun.es,SDK DNS
- DOMAIN-SUFFIX,ixquick.com,SDK DNS
- DOMAIN-SUFFIX,j.mp,SDK DNS
- DOMAIN-SUFFIX,js.revsci.net,SDK DNS
- DOMAIN-SUFFIX,jshint.com,SDK DNS
- DOMAIN-SUFFIX,jtvnw.net,SDK DNS
- DOMAIN-SUFFIX,justgetflux.com,SDK DNS
- DOMAIN-SUFFIX,kat.cr,SDK DNS
- DOMAIN-SUFFIX,klip.me,SDK DNS
- DOMAIN-SUFFIX,libsyn.com,SDK DNS
- DOMAIN-SUFFIX,linkedin.com,SDK DNS
- DOMAIN-SUFFIX,line-apps.com,SDK DNS
- DOMAIN-SUFFIX,linode.com,SDK DNS
- DOMAIN-SUFFIX,lithium.com,SDK DNS
- DOMAIN-SUFFIX,littlehj.com,SDK DNS
- DOMAIN-SUFFIX,live.com,SDK DNS
- DOMAIN-SUFFIX,live.net,SDK DNS
- DOMAIN-SUFFIX,livefilestore.com,SDK DNS
- DOMAIN-SUFFIX,llnwd.net,SDK DNS
- DOMAIN-SUFFIX,macid.co,SDK DNS
- DOMAIN-SUFFIX,macromedia.com,SDK DNS
- DOMAIN-SUFFIX,macrumors.com,SDK DNS
- DOMAIN-SUFFIX,mashable.com,SDK DNS
- DOMAIN-SUFFIX,mathjax.org,SDK DNS
- DOMAIN-SUFFIX,medium.com,SDK DNS
- DOMAIN-SUFFIX,mega.co.nz,SDK DNS
- DOMAIN-SUFFIX,mega.nz,SDK DNS
- DOMAIN-SUFFIX,megaupload.com,SDK DNS
- DOMAIN-SUFFIX,microsofttranslator.com,SDK DNS
- DOMAIN-SUFFIX,mindnode.com,SDK DNS
- DOMAIN-SUFFIX,mobile01.com,SDK DNS
- DOMAIN-SUFFIX,modmyi.com,SDK DNS
- DOMAIN-SUFFIX,msedge.net,SDK DNS
- DOMAIN-SUFFIX,myfontastic.com,SDK DNS
- DOMAIN-SUFFIX,name.com,SDK DNS
- DOMAIN-SUFFIX,nextmedia.com,SDK DNS
- DOMAIN-SUFFIX,nsstatic.net,SDK DNS
- DOMAIN-SUFFIX,nssurge.com,SDK DNS
- DOMAIN-SUFFIX,nyt.com,SDK DNS
- DOMAIN-SUFFIX,nytimes.com,SDK DNS
- DOMAIN-SUFFIX,omnigroup.com,SDK DNS
- DOMAIN-SUFFIX,onedrive.com,SDK DNS
- DOMAIN-SUFFIX,onenote.com,SDK DNS
- DOMAIN-SUFFIX,ooyala.com,SDK DNS
- DOMAIN-SUFFIX,openvpn.net,SDK DNS
- DOMAIN-SUFFIX,openwrt.org,SDK DNS
- DOMAIN-SUFFIX,orkut.com,SDK DNS
- DOMAIN-SUFFIX,osxdaily.com,SDK DNS
- DOMAIN-SUFFIX,outlook.com,SDK DNS
- DOMAIN-SUFFIX,ow.ly,SDK DNS
- DOMAIN-SUFFIX,paddleapi.com,SDK DNS
- DOMAIN-SUFFIX,parallels.com,SDK DNS
- DOMAIN-SUFFIX,parse.com,SDK DNS
- DOMAIN-SUFFIX,pdfexpert.com,SDK DNS
- DOMAIN-SUFFIX,periscope.tv,SDK DNS
- DOMAIN-SUFFIX,pinboard.in,SDK DNS
- DOMAIN-SUFFIX,pinterest.com,SDK DNS
- DOMAIN-SUFFIX,pixelmator.com,SDK DNS
- DOMAIN-SUFFIX,pixiv.net,SDK DNS
- DOMAIN-SUFFIX,playpcesor.com,SDK DNS
- DOMAIN-SUFFIX,playstation.com,SDK DNS
- DOMAIN-SUFFIX,playstation.com.hk,SDK DNS
- DOMAIN-SUFFIX,playstation.net,SDK DNS
- DOMAIN-SUFFIX,playstationnetwork.com,SDK DNS
- DOMAIN-SUFFIX,pushwoosh.com,SDK DNS
- DOMAIN-SUFFIX,rime.im,SDK DNS
- DOMAIN-SUFFIX,servebom.com,SDK DNS
- DOMAIN-SUFFIX,sfx.ms,SDK DNS
- DOMAIN-SUFFIX,shadowsocks.org,SDK DNS
- DOMAIN-SUFFIX,sharethis.com,SDK DNS
- DOMAIN-SUFFIX,shazam.com,SDK DNS
- DOMAIN-SUFFIX,skype.com,SDK DNS
- DOMAIN-SUFFIX,smartdnsSDK DNS.com,SDK DNS
- DOMAIN-SUFFIX,smartmailcloud.com,SDK DNS
- DOMAIN-SUFFIX,sndcdn.com,SDK DNS
- DOMAIN-SUFFIX,sony.com,SDK DNS
- DOMAIN-SUFFIX,soundcloud.com,SDK DNS
- DOMAIN-SUFFIX,sourceforge.net,SDK DNS
- DOMAIN-SUFFIX,spotify.com,SDK DNS
- DOMAIN-SUFFIX,squarespace.com,SDK DNS
- DOMAIN-SUFFIX,sstatic.net,SDK DNS
- DOMAIN-SUFFIX,st.luluku.pw,SDK DNS
- DOMAIN-SUFFIX,stackoverflow.com,SDK DNS
- DOMAIN-SUFFIX,startpage.com,SDK DNS
- DOMAIN-SUFFIX,staticflickr.com,SDK DNS
- DOMAIN-SUFFIX,steamcommunity.com,SDK DNS
- DOMAIN-SUFFIX,symauth.com,SDK DNS
- DOMAIN-SUFFIX,symcb.com,SDK DNS
- DOMAIN-SUFFIX,symcd.com,SDK DNS
- DOMAIN-SUFFIX,tapbots.com,SDK DNS
- DOMAIN-SUFFIX,tapbots.net,SDK DNS
- DOMAIN-SUFFIX,tdesktop.com,SDK DNS
- DOMAIN-SUFFIX,techcrunch.com,SDK DNS
- DOMAIN-SUFFIX,techsmith.com,SDK DNS
- DOMAIN-SUFFIX,thepiratebay.org,SDK DNS
- DOMAIN-SUFFIX,theverge.com,SDK DNS
- DOMAIN-SUFFIX,time.com,SDK DNS
- DOMAIN-SUFFIX,timeinc.net,SDK DNS
- DOMAIN-SUFFIX,tiny.cc,SDK DNS
- DOMAIN-SUFFIX,tinypic.com,SDK DNS
- DOMAIN-SUFFIX,tmblr.co,SDK DNS
- DOMAIN-SUFFIX,todoist.com,SDK DNS
- DOMAIN-SUFFIX,trello.com,SDK DNS
- DOMAIN-SUFFIX,trustasiassl.com,SDK DNS
- DOMAIN-SUFFIX,tumblr.co,SDK DNS
- DOMAIN-SUFFIX,tumblr.com,SDK DNS
- DOMAIN-SUFFIX,tweetdeck.com,SDK DNS
- DOMAIN-SUFFIX,tweetmarker.net,SDK DNS
- DOMAIN-SUFFIX,twitch.tv,SDK DNS
- DOMAIN-SUFFIX,txmblr.com,SDK DNS
- DOMAIN-SUFFIX,typekit.net,SDK DNS
- DOMAIN-SUFFIX,ubertags.com,SDK DNS
- DOMAIN-SUFFIX,ublock.org,SDK DNS
- DOMAIN-SUFFIX,ubnt.com,SDK DNS
- DOMAIN-SUFFIX,ulyssesapp.com,SDK DNS
- DOMAIN-SUFFIX,urchin.com,SDK DNS
- DOMAIN-SUFFIX,usertrust.com,SDK DNS
- DOMAIN-SUFFIX,v.gd,SDK DNS
- DOMAIN-SUFFIX,v2ex.com,SDK DNS
- DOMAIN-SUFFIX,vimeo.com,SDK DNS
- DOMAIN-SUFFIX,vimeocdn.com,SDK DNS
- DOMAIN-SUFFIX,vine.co,SDK DNS
- DOMAIN-SUFFIX,vivaldi.com,SDK DNS
- DOMAIN-SUFFIX,vox-cdn.com,SDK DNS
- DOMAIN-SUFFIX,vsco.co,SDK DNS
- DOMAIN-SUFFIX,vultr.com,SDK DNS
- DOMAIN-SUFFIX,w.org,SDK DNS
- DOMAIN-SUFFIX,w3schools.com,SDK DNS
- DOMAIN-SUFFIX,webtype.com,SDK DNS
- DOMAIN-SUFFIX,wikiwand.com,SDK DNS
- DOMAIN-SUFFIX,wikileaks.org,SDK DNS
- DOMAIN-SUFFIX,wikimedia.org,SDK DNS
- DOMAIN-SUFFIX,wikipedia.com,SDK DNS
- DOMAIN-SUFFIX,wikipedia.org,SDK DNS
- DOMAIN-SUFFIX,windows.com,SDK DNS
- DOMAIN-SUFFIX,windows.net,SDK DNS
- DOMAIN-SUFFIX,wire.com,SDK DNS
- DOMAIN-SUFFIX,wordpress.com,SDK DNS
- DOMAIN-SUFFIX,workflowy.com,SDK DNS
- DOMAIN-SUFFIX,wp.com,SDK DNS
- DOMAIN-SUFFIX,wsj.com,SDK DNS
- DOMAIN-SUFFIX,wsj.net,SDK DNS
- DOMAIN-SUFFIX,xda-developers.com,SDK DNS
- DOMAIN-SUFFIX,xeeno.com,SDK DNS
- DOMAIN-SUFFIX,xiti.com,SDK DNS
- DOMAIN-SUFFIX,yahoo.com,SDK DNS
- DOMAIN-SUFFIX,yimg.com,SDK DNS
- DOMAIN-SUFFIX,ying.com,SDK DNS
- DOMAIN-SUFFIX,yoyo.org,SDK DNS
- DOMAIN-SUFFIX,ytimg.com,SDK DNS
- DOMAIN-SUFFIX,abema.tv,SDK DNS
- DOMAIN-SUFFIX,telegra.ph,SDK DNS
- DOMAIN-SUFFIX,telegram.org,SDK DNS
- IP-CIDR,91.108.4.0/22,SDK DNS,no-resolve
- IP-CIDR,91.108.8.0/21,SDK DNS,no-resolve
- IP-CIDR,91.108.16.0/22,SDK DNS,no-resolve
- IP-CIDR,91.108.56.0/22,SDK DNS,no-resolve
- IP-CIDR,149.154.160.0/20,SDK DNS,no-resolve
- IP-CIDR6,2001:67c:4e8::/48,SDK DNS,no-resolve
- IP-CIDR6,2001:b28:f23d::/48,SDK DNS,no-resolve
- IP-CIDR6,2001:b28:f23f::/48,SDK DNS,no-resolve
- IP-CIDR,120.232.181.162/32,SDK DNS,no-resolve
- IP-CIDR,120.241.147.226/32,SDK DNS,no-resolve
- IP-CIDR,120.253.253.226/32,SDK DNS,no-resolve
- IP-CIDR,120.253.255.162/32,SDK DNS,no-resolve
- IP-CIDR,120.253.255.34/32,SDK DNS,no-resolve
- IP-CIDR,120.253.255.98/32,SDK DNS,no-resolve
- IP-CIDR,180.163.150.162/32,SDK DNS,no-resolve
- IP-CIDR,180.163.150.34/32,SDK DNS,no-resolve
- IP-CIDR,180.163.151.162/32,SDK DNS,no-resolve
- IP-CIDR,180.163.151.34/32,SDK DNS,no-resolve
- IP-CIDR,203.208.39.0/24,SDK DNS,no-resolve
- IP-CIDR,203.208.40.0/24,SDK DNS,no-resolve
- IP-CIDR,203.208.41.0/24,SDK DNS,no-resolve
- IP-CIDR,203.208.43.0/24,SDK DNS,no-resolve
- IP-CIDR,203.208.50.0/24,SDK DNS,no-resolve
- IP-CIDR,220.181.174.162/32,SDK DNS,no-resolve
- IP-CIDR,220.181.174.226/32,SDK DNS,no-resolve
- IP-CIDR,220.181.174.34/32,SDK DNS,no-resolve
- DOMAIN,injections.adguard.org,DIRECT
- DOMAIN,local.adguard.org,DIRECT
- DOMAIN-SUFFIX,local,DIRECT
- IP-CIDR,127.0.0.0/8,DIRECT
- IP-CIDR,172.16.0.0/12,DIRECT
- IP-CIDR,192.168.0.0/16,DIRECT
- IP-CIDR,10.0.0.0/8,DIRECT
- IP-CIDR,17.0.0.0/8,DIRECT
- IP-CIDR,100.64.0.0/10,DIRECT
- IP-CIDR,224.0.0.0/4,DIRECT
- IP-CIDR6,fe80::/10,DIRECT
- DOMAIN-SUFFIX,cn,DIRECT
- DOMAIN-KEYWORD,-cn,DIRECT
- GEOIP,CN,DIRECT
- PROCESS-NAME,aria2c,DIRECT
- PROCESS-NAME,BitComet,DIRECT
- PROCESS-NAME,fdm,DIRECT
- PROCESS-NAME,NetTransport,DIRECT
- PROCESS-NAME,qbittorrent,DIRECT
- PROCESS-NAME,Thunder,DIRECT
- PROCESS-NAME,transmission-daemon,DIRECT
- PROCESS-NAME,transmission-qt,DIRECT
- PROCESS-NAME,uTorrent,DIRECT
- PROCESS-NAME,WebTorrent,DIRECT
- PROCESS-NAME,Folx,DIRECT
- PROCESS-NAME,Transmission,DIRECT
- PROCESS-NAME,WebTorrent Helper,DIRECT
- PROCESS-NAME,v2ray,DIRECT
- PROCESS-NAME,ss-local,DIRECT
- PROCESS-NAME,ssr-local,DIRECT
- PROCESS-NAME,ss-redir,DIRECT
- PROCESS-NAME,ssr-redir,DIRECT
- PROCESS-NAME,ss-server,DIRECT
- PROCESS-NAME,trojan-go,DIRECT
- PROCESS-NAME,xray,DIRECT
- PROCESS-NAME,hysteria,DIRECT
- PROCESS-NAME,singbox,DIRECT
- PROCESS-NAME,UUBooster,DIRECT
- PROCESS-NAME,uugamebooster,DIRECT
- DST-PORT,80,SDK DNS
- DST-PORT,443,SDK DNS
- DST-PORT,22,SDK DNS
- MATCH,DIRECT
redir-port: 7892
tproxy-port: 7895
port: 7890
socks-port: 7891
external-ui: "/usr/share/openclash/ui"
ipv6: true
interface-name: eth0
geodata-mode: true
geodata-loader: standard
tcp-concurrent: true
unified-delay: true
keep-alive-interval: 1800
sniffer:
  enable: true
  parse-pure-ip: true
tun:
  enable: true
  stack: mixed
  device: utun
  auto-route: false
  auto-detect-interface: false
  dns-hijack:
  - tcp://any:53
profile:
  store-selected: true
  store-fake-ip: true

#===================== 自定义覆写设置 =====================#

#!/bin/sh
. /usr/share/openclash/ruby.sh
. /usr/share/openclash/log.sh
. /lib/functions.sh

# This script is called by /etc/init.d/openclash
# Add your custom overwrite scripts here, they will be take effict after the OpenClash own srcipts

LOG_OUT "Tip: Start Running Custom Overwrite Scripts..."
LOGTIME=$(echo $(date "+%Y-%m-%d %H:%M:%S"))
LOG_FILE="/tmp/openclash.log"
CONFIG_FILE="$1" #config path

#Simple Demo:
    #General Demo
    #1--config path
    #2--key name
    #3--value
    #ruby_edit "$CONFIG_FILE" "['redir-port']" "7892"
    #ruby_edit "$CONFIG_FILE" "['secret']" "123456"
    #ruby_edit "$CONFIG_FILE" "['dns']['enable']" "true"

    #Hash Demo
    #1--config path
    #2--key name
    #3--hash type value
    #ruby_edit "$CONFIG_FILE" "['experimental']" "{'sniff-tls-sni'=>true}"
    #ruby_edit "$CONFIG_FILE" "['sniffer']" "{'sniffing'=>['tls','http']}"

    #Array Demo:
    #1--config path
    #2--key name
    #3--position(start from 0, end with -1)
    #4--value
    #ruby_arr_insert "$CONFIG_FILE" "['dns']['nameserver']" "0" "114.114.114.114"

    #Array Add From Yaml File Demo:
    #1--config path
    #2--key name
    #3--position(start from 0, end with -1)
    #4--value file path
    #5--value key name in #4 file
    #ruby_arr_add_file "$CONFIG_FILE" "['dns']['fallback-filter']['ipcidr']" "0" "/etc/openclash/custom/openclash_custom_fallback_filter.yaml" "['fallback-filter']['ipcidr']"

#Ruby Script Demo:
    #ruby -ryaml -rYAML -I "/usr/share/openclash" -E UTF-8 -e "
    #   begin
    #      Value = YAML.load_file('$CONFIG_FILE');
    #   rescue Exception => e
    #      puts '${LOGTIME} Error: Load File Failed,【' + e.message + '】';
    #   end;

        #General
    #   begin
    #   Thread.new{
    #      Value['redir-port']=7892;
    #      Value['tproxy-port']=7895;
    #      Value['port']=7890;
    #      Value['socks-port']=7891;
    #      Value['mixed-port']=7893;
    #   }.join;

    #   rescue Exception => e
    #      puts '${LOGTIME} Error: Set General Failed,【' + e.message + '】';
    #   ensure
    #      File.open('$CONFIG_FILE','w') {|f| YAML.dump(Value, f)};
    #   end" 2>/dev/null >> $LOG_FILE

exit 0
#===================== 自定义防火墙设置 =====================#

#!/bin/sh
. /usr/share/openclash/log.sh
. /lib/functions.sh

# This script is called by /etc/init.d/openclash
# Add your custom firewall rules here, they will be added after the end of the OpenClash iptables rules

LOG_OUT "Tip: Start Add Custom Firewall Rules..."

exit 0
#===================== IPTABLES 防火墙设置 =====================#

#IPv4 NAT chain

# Generated by iptables-save v1.8.8 on Mon Jun 24 23:39:15 2024
*nat
:PREROUTING ACCEPT [167:18594]
:INPUT ACCEPT [395:30558]
:OUTPUT ACCEPT [11042:690541]
:POSTROUTING ACCEPT [325:19545]
:MINIUPNPD - [0:0]
:MINIUPNPD-POSTROUTING - [0:0]
:openclash - [0:0]
:openclash_output - [0:0]
:openclash_post - [0:0]
:postrouting_lan_rule - [0:0]
:postrouting_rule - [0:0]
:postrouting_wan_rule - [0:0]
:prerouting_lan_rule - [0:0]
:prerouting_rule - [0:0]
:prerouting_wan_rule - [0:0]
:ts-postrouting - [0:0]
:zone_lan_postrouting - [0:0]
:zone_lan_prerouting - [0:0]
:zone_wan_postrouting - [0:0]
:zone_wan_prerouting - [0:0]
-A PREROUTING -d 8.8.4.4/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -d 8.8.8.8/32 -p tcp -m comment --comment "OpenClash Google DNS Hijack" -m tcp --dport 53 -j REDIRECT --to-ports 7892
-A PREROUTING -p tcp -m tcp --dport 53 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 7874
-A PREROUTING -p udp -m udp --dport 53 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 7874
-A PREROUTING -p udp -m udp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -p tcp -m tcp --dport 53 -j REDIRECT --to-ports 53
-A PREROUTING -m comment --comment "!fw3: Custom prerouting rule chain" -j prerouting_rule
-A PREROUTING -i eth0 -m comment --comment "!fw3" -j zone_lan_prerouting
-A PREROUTING -p tcp -j openclash
-A OUTPUT -p tcp -m tcp --dport 12353 -m owner ! --uid-owner 65534 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 0
-A OUTPUT -p udp -m udp --dport 12353 -m owner ! --uid-owner 65534 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 0
-A OUTPUT -p tcp -m tcp --dport 53 -m owner ! --uid-owner 65534 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 7874
-A OUTPUT -p udp -m udp --dport 53 -m owner ! --uid-owner 65534 -m comment --comment "OpenClash DNS Hijack" -j REDIRECT --to-ports 7874
-A OUTPUT -j openclash_output
-A POSTROUTING -j ts-postrouting
-A POSTROUTING -m comment --comment "!fw3: Custom postrouting rule chain" -j postrouting_rule
-A POSTROUTING -o eth0 -m comment --comment "!fw3" -j zone_lan_postrouting
-A POSTROUTING -m comment --comment "OpenClash Bypass Gateway Compatible" -j openclash_post
-A MINIUPNPD -p udp -m udp --dport 41642 -j DNAT [unsupported revision]
-A MINIUPNPD-POSTROUTING -s 192.168.50.73/32 -p udp -m udp --sport 41641 -j MASQUERADE --to-ports 41642
-A openclash -m set --match-set localnetwork dst -j RETURN
-A openclash -d 198.18.0.0/16 -p tcp -j REDIRECT --to-ports 7892
-A openclash -m set --match-set china_ip_route dst -m set ! --match-set china_ip_route_pass dst -j RETURN
-A openclash -p tcp -j REDIRECT --to-ports 7892
-A openclash_output -d 198.18.0.0/16 -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A openclash_output -m set --match-set localnetwork dst -j RETURN
-A openclash_output -m owner ! --uid-owner 65534 -m set --match-set china_ip_route dst -m set ! --match-set china_ip_route_pass dst -j RETURN
-A openclash_output -p tcp -m owner ! --uid-owner 65534 -j REDIRECT --to-ports 7892
-A openclash_post -m mark --mark 0x162 -j ACCEPT
-A openclash_post -m set --match-set localnetwork dst -j RETURN
-A openclash_post -m addrtype ! --src-type LOCAL -m owner ! --uid-owner 65534 -j MASQUERADE
-A ts-postrouting -m mark --mark 0x40000/0xff0000 -j MASQUERADE
-A zone_lan_postrouting -j MINIUPNPD-POSTROUTING
-A zone_lan_postrouting -j MINIUPNPD-POSTROUTING
-A zone_lan_postrouting -m comment --comment "!fw3: Custom lan postrouting rule chain" -j postrouting_lan_rule
-A zone_lan_postrouting -m comment --comment "!fw3" -j MASQUERADE
-A zone_lan_prerouting -j MINIUPNPD
-A zone_lan_prerouting -j MINIUPNPD
-A zone_lan_prerouting -m comment --comment "!fw3: Custom lan prerouting rule chain" -j prerouting_lan_rule
-A zone_wan_postrouting -m comment --comment "!fw3: Custom wan postrouting rule chain" -j postrouting_wan_rule
-A zone_wan_postrouting -m comment --comment "!fw3" -j MASQUERADE
-A zone_wan_prerouting -m comment --comment "!fw3: Custom wan prerouting rule chain" -j prerouting_wan_rule
COMMIT
# Completed on Mon Jun 24 23:39:15 2024

#IPv4 Mangle chain

# Generated by iptables-save v1.8.8 on Mon Jun 24 23:39:15 2024
*mangle
:PREROUTING ACCEPT [105610:375500142]
:INPUT ACCEPT [32750:4600020]
:FORWARD ACCEPT [72950:370911373]
:OUTPUT ACCEPT [45719:4219255]
:POSTROUTING ACCEPT [118646:375128687]
:openclash - [0:0]
:openclash_output - [0:0]
:openclash_upnp - [0:0]
-A PREROUTING -p udp -j openclash
-A OUTPUT -p udp -j openclash_output
-A openclash -p udp -m udp --sport 500 -j RETURN
-A openclash -p udp -m udp --sport 68 -j RETURN
-A openclash -i lo -j RETURN
-A openclash -m set --match-set localnetwork dst -j RETURN
-A openclash -p udp -m udp --dport 53 -j RETURN
-A openclash -d 198.18.0.0/16 -p udp -j TPROXY --on-port 7895 --on-ip 0.0.0.0 --tproxy-mark 0x162/0xffffffff
-A openclash -m set --match-set china_ip_route dst -m set ! --match-set china_ip_route_pass dst -j RETURN
-A openclash -p udp -j openclash_upnp
-A openclash -p udp -j TPROXY --on-port 7895 --on-ip 0.0.0.0 --tproxy-mark 0x162/0xffffffff
-A openclash_output -p udp -m udp --sport 500 -j RETURN
-A openclash_output -p udp -m udp --sport 68 -j RETURN
-A openclash_output -d 198.18.0.0/16 -p udp -m owner ! --uid-owner 65534 -j MARK --set-xmark 0x162/0xffffffff
-A openclash_upnp -s 192.168.50.73/32 -p udp -m udp --sport 41641 -j RETURN
COMMIT
# Completed on Mon Jun 24 23:39:15 2024

#IPv4 Filter chain

# Generated by iptables-save v1.8.8 on Mon Jun 24 23:39:15 2024
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:MINIUPNPD - [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:openclash_wan_input - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:ts-forward - [0:0]
:ts-input - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_dest_REJECT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_REJECT - [0:0]
-A INPUT -p udp -m udp --dport 443 -m comment --comment "OpenClash QUIC REJECT" -m set ! --match-set china_ip_route dst -j REJECT --reject-with icmp-port-unreachable
-A INPUT -i eth0 -m set ! --match-set localnetwork src -j openclash_wan_input
-A INPUT -j ts-input
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i eth0 -m comment --comment "!fw3" -j zone_lan_input
-A INPUT -m comment --comment "!fw3" -j reject
-A FORWARD -j ts-forward
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i eth0 -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -m comment --comment "!fw3" -j reject
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o eth0 -m comment --comment "!fw3" -j zone_lan_output
-A MINIUPNPD -d 192.168.50.73/32 -p udp -m udp --dport 41641 -j ACCEPT
-A openclash_wan_input -p udp -m multiport --dports 7892,7895,9090,7890,7891,7893,7874 -j REJECT --reject-with icmp-port-unreachable
-A openclash_wan_input -p tcp -m multiport --dports 7892,7895,9090,7890,7891,7893,7874 -j REJECT --reject-with icmp-port-unreachable
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp-port-unreachable
-A syn_flood -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A ts-forward -i tailscale0 -j MARK --set-xmark 0x40000/0xff0000
-A ts-forward -m mark --mark 0x40000/0xff0000 -j ACCEPT
-A ts-forward -s 100.64.0.0/10 -o tailscale0 -j DROP
-A ts-forward -o tailscale0 -j ACCEPT
-A ts-input -s 100.124.239.76/32 -i lo -j ACCEPT
-A ts-input -s 100.115.92.0/23 ! -i tailscale0 -j RETURN
-A ts-input -s 100.64.0.0/10 ! -i tailscale0 -j DROP
-A ts-input -i tailscale0 -j ACCEPT
-A ts-input -p udp -m udp --dport 41641 -j ACCEPT
-A zone_lan_dest_ACCEPT -o eth0 -m conntrack --ctstate INVALID -m comment --comment "!fw3: Prevent NAT leakage" -j DROP
-A zone_lan_dest_ACCEPT -o eth0 -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -j MINIUPNPD
-A zone_lan_forward -j MINIUPNPD
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i eth0 -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_REJECT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -p udp -m udp --dport 68 -m comment --comment "!fw3: Allow-DHCP-Renew" -j ACCEPT
-A zone_wan_input -p icmp -m icmp --icmp-type 8 -m comment --comment "!fw3: Allow-Ping" -j ACCEPT
-A zone_wan_input -p igmp -m comment --comment "!fw3: Allow-IGMP" -j ACCEPT
-A zone_wan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_REJECT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
COMMIT
# Completed on Mon Jun 24 23:39:15 2024

#IPv6 NAT chain

#IPv6 Mangle chain

#IPv6 Filter chain

#===================== IPSET状态 =====================#

Name: localnetwork
Type: hash:net
Revision: 7
Header: family inet hashsize 1024 maxelem 65536 bucketsize 12 initval 0x7bbe3957
Size in memory: 1412
References: 5
Number of entries: 26

Name: china_ip_route
Type: hash:net
Revision: 7
Header: family inet hashsize 4096 maxelem 1000000 bucketsize 12 initval 0x42edbaf4
Size in memory: 214968
References: 4
Number of entries: 8652

Name: china_ip_route_pass
Type: hash:net
Revision: 7
Header: family inet hashsize 1024 maxelem 1000000 bucketsize 12 initval 0x3d60e18d
Size in memory: 372
References: 3
Number of entries: 0

#===================== 路由表状态 =====================#

#IPv4

#route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.0.0         192.168.50.1    0.0.0.0         UG    0      0        0 eth0
192.168.50.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0

#ip route list
default via 192.168.50.1 dev eth0 proto static 
192.168.50.0/24 dev eth0 proto kernel scope link src 192.168.50.3 

#ip rule show
0:  from all lookup local
5209:   from all fwmark 0x162 lookup 354
5210:   from all fwmark 0x80000/0xff0000 lookup main
5230:   from all fwmark 0x80000/0xff0000 lookup default
5250:   from all fwmark 0x80000/0xff0000 unreachable
5270:   from all lookup 52
32766:  from all lookup main
32767:  from all lookup default

#IPv6

#route -A inet6
Kernel IPv6 routing table
Destination                                 Next Hop                                Flags Metric Ref    Use Iface
::/0                                        fe80::42b0:76ff:fec5:5ef8               UG    512    5        0 eth0    
2408:8207:18e5:7fb1:2f17:b7c6:b9c1:9a08/128 ::                                      U     1024   2        0 eth0    
2408:8207:18e5:7fb1:30bd:d973:9b03:e113/128 ::                                      U     1024   1        0 eth0    
2408:8207:18e5:7fb1::/64                    ::                                      U     256    2        0 eth0    
2408:8207:18e5:7fb1::/64                    ::                                      !n    2147483647 1        0 lo      
fe80::/64                                   ::                                      U     256    1        0 eth0    
::/0                                        ::                                      !n    -1     2        0 lo      
2408:8207:18e5:7fb1::/128                   ::                                      Un    0      3        0 eth0    
*WAN IP*:3202/128   ::                                      Un    0      4        0 eth0    
fe80::/128                                  ::                                      Un    0      3        0 eth0    
fe80::42:c0ff:fea8:3202/128                 ::                                      Un    0      4        0 eth0    
ff00::/8                                    ::                                      U     256    6        0 eth0    
::/0                                        ::                                      !n    -1     2        0 lo      

#ip -6 route list
default from 2408:8207:18e5:7fb1::/64 via fe80::42b0:76ff:fec5:5ef8 dev eth0 proto static metric 512 pref medium
2408:8207:18e5:7fb1:2f17:b7c6:b9c1:9a08 dev eth0 proto static metric 1024 pref medium
2408:8207:18e5:7fb1:30bd:d973:9b03:e113 dev eth0 proto static metric 1024 pref medium
2408:8207:18e5:7fb1::/64 dev eth0 proto static metric 256 pref medium
unreachable 2408:8207:18e5:7fb1::/64 dev lo proto static metric 2147483647 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium

#ip -6 rule show
0:  from all lookup local
32766:  from all lookup main

#===================== 端口占用状态 =====================#

tcp        0      0 :::9090                 :::*                    LISTEN      694/clash
tcp        0      0 :::7890                 :::*                    LISTEN      694/clash
tcp        0      0 :::7891                 :::*                    LISTEN      694/clash
tcp        0      0 :::7895                 :::*                    LISTEN      694/clash
tcp        0      0 :::7892                 :::*                    LISTEN      694/clash
tcp        0      0 :::7893                 :::*                    LISTEN      694/clash
udp        0      0 :::55451                :::*                                694/clash
udp        0      0 :::7874                 :::*                                694/clash
udp        0      0 :::7891                 :::*                                694/clash
udp        0      0 :::7892                 :::*                                694/clash
udp        0      0 :::7893                 :::*                                694/clash
udp        0      0 :::7895                 :::*                                694/clash
udp        0      0 :::56557                :::*                                694/clash
udp        0      0 :::47912                :::*                                694/clash

#===================== 测试本机DNS查询(www.baidu.com) =====================#

Server:     127.0.0.1
Address:    127.0.0.1:53

Name:   www.baidu.com
Address: 198.18.0.5

#===================== 测试内核DNS查询(www.instagram.com) =====================#

Status: 0
TC: false
RD: true
RA: true
AD: false
CD: false

Question: 
  Name: www.instagram.com.
  Qtype: 1
  Qclass: 1

Answer: 
  TTL: 1247
  data: z-p42-instagram.c10r.instagram.com.
  name: www.instagram.com.
  type: 5

  TTL: 9
  data: 157.240.31.174
  name: z-p42-instagram.c10r.instagram.com.
  type: 1

Status: 0
TC: false
RD: true
RA: true
AD: false
CD: false

Question: 
  Name: www.instagram.com.
  Qtype: 28
  Qclass: 1

Answer: 
  TTL: 1140
  data: z-p42-instagram.c10r.instagram.com.
  name: www.instagram.com.
  type: 5

  TTL: 36
  data: 2a03:2880:f20f:1e7:face:b00c:0:4420
  name: z-p42-instagram.c10r.instagram.com.
  type: 28

Dnsmasq 当前默认 resolv 文件：/tmp/resolv.conf.d/resolv.conf.auto

#===================== /tmp/resolv.conf.d/resolv.conf.auto =====================#

# Interface lan
nameserver 1.1.1.1
# Interface lan6
nameserver 2408:8207:18e5:7fb1::1

#===================== 测试本机网络连接(www.baidu.com) =====================#

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Connection: keep-alive
Content-Length: 277
Content-Type: text/html
Date: Mon, 24 Jun 2024 15:39:16 GMT
Etag: "575e1f71-115"
Last-Modified: Mon, 13 Jun 2016 02:50:25 GMT
Pragma: no-cache
Server: bfe/1.0.8.18

#===================== 测试本机网络下载(raw.githubusercontent.com) =====================#

HTTP/2 404 
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
content-type: text/plain; charset=utf-8
x-github-request-id: 0FD0:1D0854:39C384:45B6EE:6679930D
accept-ranges: bytes
date: Mon, 24 Jun 2024 15:39:17 GMT
via: 1.1 varnish
x-served-by: cache-hkg17927-HKG
x-cache: HIT
x-cache-hits: 1
x-timer: S1719243557.013232,VS0,VE1
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 640cd3af7be389cfe2151bd4d87df067b29cdeba
expires: Mon, 24 Jun 2024 15:44:17 GMT
source-age: 23
content-length: 14

#===================== 最近运行日志(自动切换为Debug模式) =====================#

time="2024-06-24T15:39:26.75399347Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from "
time="2024-06-24T15:39:26.755056475Z" level=debug msg="Health Checked, proxy: 以下节点不推荐国内用户使用, url: http://cp.cloudflare.com/generate_204, alive: false, delay: 65535 ms uid: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:26.755344476Z" level=debug msg="Health Checking, proxy: 节点后面的数字表示倍率,是指消耗流量的倍数.请合理分配使用！, url: http://cp.cloudflare.com/generate_204, id: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:26.756103479Z" level=debug msg="[DNS] cache hit for www.sdkdns.com., expire at 2024-06-24 16:04:20"
time="2024-06-24T15:39:26.756102479Z" level=debug msg="[DNS] aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz --> [45.146.232.170 45.146.232.114 45.146.232.173] A from udp://192.168.50.1:53"
time="2024-06-24T15:39:26.756560481Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://dns.quad9.net:853"
time="2024-06-24T15:39:26.756746482Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.twnic.tw:443/dns-query"
time="2024-06-24T15:39:26.756872483Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.google:443/dns-query"
time="2024-06-24T15:39:26.756989483Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://jp.tiarap.org:443/dns-query"
time="2024-06-24T15:39:26.757460485Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from dns.adguard-dns.com:853"
time="2024-06-24T15:39:26.757605486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.quad9.net:443/dns-query"
time="2024-06-24T15:39:26.757753487Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://1.1.1.1:853"
time="2024-06-24T15:39:26.757490485Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://1.1.1.1:443/dns-query"
time="2024-06-24T15:39:26.757629486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.cloudflare.com:443/dns-query"
time="2024-06-24T15:39:26.756951483Z" level=debug msg="[DNS] cache hit for dns.quad9.net., expire at 2024-06-24 15:48:13"
time="2024-06-24T15:39:26.757606486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://dot.tiar.app:853"
time="2024-06-24T15:39:26.756835483Z" level=debug msg="[DNS] cache hit for dns.quad9.net., expire at 2024-06-24 15:50:23"
time="2024-06-24T15:39:26.759867496Z" level=debug msg="[DNS] cache hit for dot.tiar.app., expire at 2024-06-24 16:19:46"
time="2024-06-24T15:39:26.757691486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://dns.google:853"
time="2024-06-24T15:39:26.760135497Z" level=debug msg="[DNS] cache hit for dot.tiar.app., expire at 2024-06-24 16:19:44"
time="2024-06-24T15:39:26.760221498Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:26.757725487Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://jp.tiar.app:853"
time="2024-06-24T15:39:26.760476499Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:26.760597499Z" level=debug msg="[DNS] cache hit for dns.google., expire at 2024-06-24 15:50:52"
time="2024-06-24T15:39:26.760374498Z" level=debug msg="[DNS] cache hit for dns.google., expire at 2024-06-24 15:43:28"
time="2024-06-24T15:39:26.761272502Z" level=debug msg="[DNS] cache hit for jp.tiar.app., expire at 2024-06-25 00:13:40"
time="2024-06-24T15:39:26.757653486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://jp.tiar.app:443/dns-query"
time="2024-06-24T15:39:26.762131506Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:26.762389507Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:26.761280502Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:26.757519486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://doh.dnslify.com:443/dns-query"
time="2024-06-24T15:39:26.756026479Z" level=debug msg="[DNS] cache hit for www.sdkdns.com., expire at 2024-06-24 15:44:20"
time="2024-06-24T15:39:26.763309511Z" level=debug msg="[DNS] cache hit for jp.tiar.app., expire at 2024-06-25 02:31:15"
time="2024-06-24T15:39:26.758667491Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:26.76527852Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:26.761525503Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:26.75850049Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:26.765867523Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:26.757584486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.oszx.co:443/dns-query"
time="2024-06-24T15:39:26.757541486Z" level=debug msg="[DNS] resolve aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://public.dns.iij.jp:443/dns-query"
time="2024-06-24T15:39:26.869133981Z" level=debug msg="Health Checked, proxy: 🇯🇵Japan-01 Z 1.0x NF, url: http://cp.cloudflare.com/generate_204, alive: false, delay: 65535 ms uid: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:26.869383982Z" level=debug msg="Health Checking, proxy: 🇹🇭泰国-01 T 1.0x, url: http://cp.cloudflare.com/generate_204, id: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:26.869826984Z" level=debug msg="[DNS] cache hit for aafrtpfxr.thl01i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:32"
time="2024-06-24T15:39:26.870122986Z" level=debug msg="[DNS] cache hit for aafrtpfxr.thl01i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:40:09"
time="2024-06-24T15:39:26.870767988Z" level=debug msg="[DNS] aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz --> [45.146.232.173 45.146.232.170 45.146.232.114] A from https://1.1.1.1:443/dns-query"
time="2024-06-24T15:39:26.870916989Z" level=debug msg="[DNS] aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz --> [45.146.232.173 45.146.232.114 45.146.232.170] A from https://dns.google:443/dns-query"
time="2024-06-24T15:39:26.895635099Z" level=debug msg="[DNS] aafrtpfxr.idl01i9zjfegelp.5xfsur8v62.gosdk.xyz --> [45.146.232.114 45.146.232.173 45.146.232.170] A from dns.adguard-dns.com:853"
time="2024-06-24T15:39:26.896767104Z" level=debug msg="Health Checked, proxy: 节点后面的数字表示倍率,是指消耗流量的倍数.请合理分配使用！, url: http://cp.cloudflare.com/generate_204, alive: false, delay: 65535 ms uid: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:26.897030105Z" level=debug msg="Health Checking, proxy: Netflix仅限Advance,Pro订阅用户可见, url: http://cp.cloudflare.com/generate_204, id: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:26.897474107Z" level=debug msg="[DNS] cache hit for www.sdkdns.com., expire at 2024-06-24 15:44:20"
time="2024-06-24T15:39:26.897737108Z" level=debug msg="[DNS] cache hit for www.sdkdns.com., expire at 2024-06-24 16:04:20"
time="2024-06-24T15:39:27.017028638Z" level=debug msg="Health Checked, proxy: Netflix仅限Advance,Pro订阅用户可见, url: http://cp.cloudflare.com/generate_204, alive: false, delay: 65535 ms uid: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:27.017339639Z" level=debug msg="Health Checking, proxy: 🇮🇳印度-01 T 1.0x, url: http://cp.cloudflare.com/generate_204, id: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:27.017882642Z" level=debug msg="[DNS] cache hit for aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:26"
time="2024-06-24T15:39:27.018639645Z" level=debug msg="[DNS] cache hit for aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:21"
time="2024-06-24T15:39:27.018899646Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from udp://192.168.50.1:53"
time="2024-06-24T15:39:27.01965965Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from udp://[fe80::42b0:76ff:fec5:5ef8]:53"
time="2024-06-24T15:39:27.020693654Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from udp://192.168.50.1:53"
time="2024-06-24T15:39:27.021289657Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from udp://[fe80::42b0:76ff:fec5:5ef8]:53"
time="2024-06-24T15:39:27.022195661Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from "
time="2024-06-24T15:39:27.022277661Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from "
time="2024-06-24T15:39:27.061556836Z" level=debug msg="Health Checked, proxy: 🇵🇭菲律宾-01 T 1.0x, url: http://cp.cloudflare.com/generate_204, alive: true, delay: 288 ms uid: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:27.061835837Z" level=debug msg="Health Checking, proxy: Hulu仅限Advance,Pro订阅用户可见, url: http://cp.cloudflare.com/generate_204, id: {7bfc799a-3040-4324-85be-c95f285340aa}"
time="2024-06-24T15:39:27.062293839Z" level=debug msg="[DNS] cache hit for www.sdkdns.com., expire at 2024-06-24 15:44:20"
time="2024-06-24T15:39:27.06257984Z" level=debug msg="[DNS] cache hit for www.sdkdns.com., expire at 2024-06-24 16:04:20"
time="2024-06-24T15:39:27.069609871Z" level=debug msg="[DNS] aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz --> [45.146.232.170 45.146.232.114 45.146.232.173] A from udp://192.168.50.1:53"
time="2024-06-24T15:39:27.070060873Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.oszx.co:443/dns-query"
time="2024-06-24T15:39:27.071274879Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from dns.adguard-dns.com:853"
time="2024-06-24T15:39:27.072611885Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.twnic.tw:443/dns-query"
time="2024-06-24T15:39:27.073500889Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://dns.quad9.net:853"
time="2024-06-24T15:39:27.07386789Z" level=debug msg="[DNS] cache hit for dns.quad9.net., expire at 2024-06-24 15:50:23"
time="2024-06-24T15:39:27.074064891Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://dns.google:853"
time="2024-06-24T15:39:27.074338892Z" level=debug msg="[DNS] cache hit for dns.google., expire at 2024-06-24 15:50:52"
time="2024-06-24T15:39:27.074494893Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://1.1.1.1:853"
time="2024-06-24T15:39:27.075018895Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://public.dns.iij.jp:443/dns-query"
time="2024-06-24T15:39:27.075220896Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://jp.tiarap.org:443/dns-query"
time="2024-06-24T15:39:27.0759819Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://jp.tiar.app:853"
time="2024-06-24T15:39:27.0761509Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from tls://dot.tiar.app:853"
time="2024-06-24T15:39:27.076275901Z" level=debug msg="[DNS] cache hit for jp.tiar.app., expire at 2024-06-25 02:31:15"
time="2024-06-24T15:39:27.0760239Z" level=debug msg="[DNS] cache hit for dns.quad9.net., expire at 2024-06-24 15:48:13"
time="2024-06-24T15:39:27.076519902Z" level=debug msg="[DNS] cache hit for dot.tiar.app., expire at 2024-06-24 16:19:46"
time="2024-06-24T15:39:27.076223901Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:27.076287901Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://1.1.1.1:443/dns-query"
time="2024-06-24T15:39:27.077106905Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:27.076946904Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:27.076523902Z" level=debug msg="[DNS] cache hit for dot.tiar.app., expire at 2024-06-24 16:19:44"
time="2024-06-24T15:39:27.076456902Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.google:443/dns-query"
time="2024-06-24T15:39:27.0760729Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://doh.dnslify.com:443/dns-query"
time="2024-06-24T15:39:27.0760839Z" level=debug msg="[DNS] cache hit for dns.google., expire at 2024-06-24 15:43:28"
time="2024-06-24T15:39:27.083761934Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:27.0761249Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.cloudflare.com:443/dns-query"
time="2024-06-24T15:39:27.085852943Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:27.075191896Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://jp.tiar.app:443/dns-query"
time="2024-06-24T15:39:27.088654956Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"
time="2024-06-24T15:39:27.088676956Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:27.076482902Z" level=debug msg="[DNS] resolve aafrtpfxr.inl01i9zjfegelp.5xfsur8v62.gosdk.xyz from https://dns.quad9.net:443/dns-query"
time="2024-06-24T15:39:27.075133896Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:27.076546902Z" level=debug msg="[DNS] cache hit for jp.tiar.app., expire at 2024-06-25 00:13:40"
time="2024-06-24T15:39:27.09191897Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:38"
time="2024-06-24T15:39:27.095562986Z" level=debug msg="[DNS] cache hit for aafrtpfxr.hkl04i9zjfegelp.5xfsur8v62.gosdk.xyz., expire at 2024-06-24 15:39:33"

#===================== 最近运行日志获取完成(自动切换为silent模式) =====================#

#===================== 活动连接信息 =====================#

1. SourceIP:【192.168.50.2】 - Host:【Empty】 - DestinationIP:【14.7.30.9】 - Network:【udp】 - RulePayload:【】 - Lastchain:【DIRECT】
2. SourceIP:【192.168.50.2】 - Host:【Empty】 - DestinationIP:【157.119.101.135】 - Network:【udp】 - RulePayload:【】 - Lastchain:【DIRECT】
3. SourceIP:【192.168.50.73】 - Host:【accounts.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇯🇵日本-02 T 1.0x】
4. SourceIP:【192.168.50.73】 - Host:【beacons.gcp.gvt2.com】 - DestinationIP:【0.0.0.0】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇭🇰香港-04 T 1.0x】
5. SourceIP:【192.168.50.73】 - Host:【clientservices.googleapis.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰香港-02 T 1.0x】
6. SourceIP:【192.168.50.73】 - Host:【translate.googleapis.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇯🇵日本-02 T 1.0x】
7. SourceIP:【192.168.50.73】 - Host:【clients4.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇯🇵日本-02 T 1.0x】
8. SourceIP:【192.168.50.73】 - Host:【beacons.gcp.gvt2.com】 - DestinationIP:【0.0.0.0】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇭🇰香港-02 T 1.0x】
9. SourceIP:【192.168.50.73】 - Host:【Empty】 - DestinationIP:【43.153.191.215】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇭🇰香港-02 T 1.0x】
10. SourceIP:【192.168.50.73】 - Host:【Empty】 - DestinationIP:【43.153.191.215】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇭🇰香港-04 T 1.0x】
11. SourceIP:【192.168.50.73】 - Host:【Empty】 - DestinationIP:【52.22.173.123】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇯🇵日本-02 T 1.0x】
12. SourceIP:【192.168.50.2】 - Host:【Empty】 - DestinationIP:【123.58.209.219】 - Network:【udp】 - RulePayload:【】 - Lastchain:【DIRECT】
13. SourceIP:【192.168.50.2】 - Host:【Empty】 - DestinationIP:【183.177.72.201】 - Network:【udp】 - RulePayload:【】 - Lastchain:【DIRECT】
14. SourceIP:【192.168.50.73】 - Host:【Empty】 - DestinationIP:【43.153.191.215】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇭🇰香港-04 T 1.0x】
15. SourceIP:【192.168.50.2】 - Host:【Empty】 - DestinationIP:【223.255.185.2】 - Network:【udp】 - RulePayload:【】 - Lastchain:【DIRECT】
16. SourceIP:【192.168.50.73】 - Host:【Empty】 - DestinationIP:【43.153.191.215】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇭🇰香港-01 T 1.0x】
17. SourceIP:【192.168.50.73】 - Host:【transmart.qq.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【qq.com】 - Lastchain:【DIRECT】
18. SourceIP:【192.168.50.73】 - Host:【Empty】 - DestinationIP:【64.233.187.95】 - Network:【tcp】 - RulePayload:【443】 - Lastchain:【🇯🇵日本-02 T 1.0x】
19. SourceIP:【192.168.50.73】 - Host:【accounts.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇯🇵日本-03 T 1.0x】
20. SourceIP:【192.168.50.73】 - Host:【www.gstatic.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【gstatic.com】 - Lastchain:【🇯🇵日本-02 T 1.0x】
21. SourceIP:【192.168.50.73】 - Host:【clients4.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【google】 - Lastchain:【🇭🇰香港-01 T 1.0x】
22. SourceIP:【192.168.50.234】 - Host:【time-ios.apple.com】 - DestinationIP:【17.253.68.253】 - Network:【udp】 - RulePayload:【apple.com】 - Lastchain:【DIRECT】

### OpenClash Config

_No response_

### Expected Behavior

无

### Additional Context

_No response_

[3song]

我的ipv4是指向了旁路由的这是一定没问题的，ipv6的话之前试过指向但是不好用，你说的日志是内核日志么？还是插件日志，我可以提供

[3song]

ipv6到底应该怎么配置才是正确的，这个东西分前后缀，我不知道是不是我自己配置的问题，因为我的接口上有获取到ipv6的地址，是直接指向那个就可以么

[3song]

OpenClash-2024-6-24-20-56-35.log 这是我修改了pc的网络ipv6设置之后的openclash日志，麻烦您帮忙看一下

[3song]

而且开启了ipv6之后，也不是完全不能翻墙，但是不稳，时不时就出不去，就提示不是私密链接，但是机场又没问题，因为我单开clashvarge翻墙是出的去的，所以就怀疑是不是我别的地方出的问题，而且我使用了adguard home作为上游，但是所有的不能翻墙的情况，手机都是能翻出去的，就不知道是什么情况

[hoststgjrem]

连issue都不会发为什么要学着在docker里搞啊 docker什么模式 端口号映射出来了吗 用的哪个教程哪个镜像 再加上上面大佬说的 旁路模式吗 dns有指向docker设备的lanIP吗 防火墙规则劫持了吗 ...docker问题太多了随便一打就这么几行了

---

以及最重要的一点

为什么发issue不看内容瞎填

你扪心自问下尊重开发者吗？

还想让开发者帮你你解决问题

[3song]

首先，既然我说了ipv4可以翻墙，就说明，我是了解基本的docker配置和openwrt旁路由配置的，dns没指定docker的ip，我怎么可能翻墙成功呢，用你的脑子想想，我没有发运行日志是我认为是我个人的原因出了问题，你怎么上来就指责我呢，你怎么就不想想我可能以为是我的配置问题只是需要人来给我提供思路呢？按你这么说，我一个ipv6设置的问题，还需要开发者来给我从docker讲起么？是你疯了，还是我疯了

[3song]

我只是想用最简单的方式，解决因为我自己原因导致的问题，如果我什么都没有做只是安了个软件然后发了这样的issie，你怎么说我都不反驳，既然我说了我ipv4翻墙成功，就说明我知道这是我的问题，你没有必要帮我解决，可以，你要说我发issie不规范，我也认，你凭什么说我不尊重开发者？

[3song]

从docker讲起就是尊重开发者？你问问开发者有没有时间从docker讲起？疯子一个

[3song]

我就请你帮我解释一下，我ipv4能翻墙成功，ipv6不成功 能和你说的docker问题太多了的那条对上？

[3song]

@jelly21fish 之前一直没复现问题，现在才复现成功，复现之后的日志已经上传了，我没有修改任何设置，这个问题就出现了，半个小时之前都是能翻墙的，现在就不行了

[3song]

停用劫持就是因为adguard home接管了clash的7874，而且adguard home并没有拦截google.com，即使我把adguard去掉，也是这样的，开了ipv6就可能提示链接不私密，时不时就来一次，然后还能自己恢复好，很离谱，我发上个消息前的半个小时，都还能用，然后提示链接问题了，我怀疑过是dns被下毒了，把所有的dns设置全给搞成国外的了，还是不行，但是手机端就没啥影响，手机端能获取ipv6地址，翻墙也不受影响，但是pc上就提示不是私密链接，但是单开clashvarge就没问题，pc上把ipv6设置禁掉，也没问题

[3song]

我要是不用ipv6看tv直播，我早就不用ipv6了

[3song]

我理解你说的意思了，谢谢，我去看一下

[3song]

我还有一个小问题，这个ipv6的dns可以像ipv4一样指定么就是直接用lan口获取的ipv6，还是需要自己处理一下，因为我看一般的ipv6dns 格式和lan口获取到的不一样

[Aethersailor]

机场不支持ipv6出站的情况下最好不要开ipv6

[3song]

@Aethersailor 我没用想用ipv6翻墙，我只是想把ipv6和ipv4分流，v4走机场，v6过国内，因为我需要看直播啊

[3song]

解决了，在win10上加一个注册表项目， 位置： HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\ 名称：DisabledComponents 类型：REG_DWORD 数值为10进制32 此项是设置为ipv4优先，开v6就不会影响设备翻墙了，而且也不会影响v6的网站