你正在使用哪个版本的 XRay?
Xray 1.3.0 (Xray, Penetrates Everything.) Custom (go1.15.8 linux/amd64)
A unified platform for anti-censorship.
你的使用场景是什么?
如标题所示,使用 Xray-core 作为 SNI Proxy 和 VLESS Inbound。
你看到的异常现象是什么?
使用 Xray-core 连接上述 SNI Proxy 时,VLESS 总是触发回落。
- 已测试
xtls-rprx-origin 和 xtls-rprx-direct,均可复现。
- 已测试普通
TLS,可复现。
你期待看到的正常表现是怎样的?
使用 Xray-core 连接上述 SNI Proxy 时,VLESS 不 触发回落。
请附上你的配置
服务端配置:
{
"dns": {
"servers": [
"1.1.1.1",
"1.0.0.1"
]
},
"log": {
"loglevel": "info"
},
"inbounds": [
{
"tag": "sniproxy-in",
"port": 443,
"protocol": "dokodemo-door",
"settings": {
"address": "0.0.0.0",
"port": 80,
"network": "tcp",
"followRedirect": false
},
"sniffing": {
"enabled": true,
"destOverride": ["http", "tls"]
}
},
{
"tag": "tcp-vless",
"port": 11443,
"listen": "127.0.0.1",
"protocol": "vless",
"settings": {
"decryption": "none",
"clients": [
{
"id": "00000000-0000-0000-0000-000000000000",
"flow": "xtls-rprx-origin"
}
],
"fallbacks": [{
"dest": 80
}]
},
"streamSettings": {
"network": "tcp",
"security": "xtls",
"xtlsSettings": {
"alpn": ["http/1.1"],
"certificates": [{
"certificateFile": "/path/to/xray.crt",
"keyFile": "/path/to/xray.key"
}]
}
}
}
],
"outbounds": [
{
"tag": "default",
"protocol": "freedom"
},
{
"tag": "block",
"protocol": "blackhole"
},
{
"tag": "localhost-xtls",
"protocol": "freedom",
"settings": { "redirect": "127.0.0.1:11443" }
}
],
"routing": {
"strategy": "rules",
"settings": {
"domainStrategy": "AsIs",
"rules": [
{
"type": "field",
"inboundTag": ["sniproxy-in"],
"domain": [
"domain:xray-xtls.com"
],
"outboundTag": "localhost-xtls"
},
{
"type": "field",
"inboundTag": ["sniproxy-in"],
"domain": [
"domain:winehq.org",
"domain:amazon.com",
"domain:any-other-sites-to-be-proxied.com"
],
"outboundTag": "default"
},
{
"_comment": "禁止滥用",
"type": "field",
"inboundTag": ["sniproxy-in"],
"outboundTag": "block"
}
]
}
}
}客户端配置:
请附上出错时软件输出的错误日志
服务器端错误日志:
Xray 1.3.0 (Xray, Penetrates Everything.) Custom (go1.15.8 linux/amd64)
A unified platform for anti-censorship.
2021/02/14 23:46:36 Using default config: /usr/local/etc/xray/config.json
2021/02/14 23:46:36 [Info] infra/conf/serial: Reading config: /usr/local/etc/xray/config.json
2021/02/14 23:46:36 [Info] app/dns: DNS: created udp client inited for 1.1.1.1:53
2021/02/14 23:46:36 [Info] app/dns: DNS: created udp client inited for 1.0.0.1:53
2021/02/14 23:46:36 [Info] transport/internet/tcp: listening TCP on 0.0.0.0:443
2021/02/14 23:46:36 [Info] transport/internet/tcp: listening TCP on 127.0.0.1:11443
2021/02/14 23:46:36 [Warning] core: Xray 1.3.0 started
2021/02/14 23:46:37 [Info] [486096498] proxy/dokodemo: received request for 114.5.1.4:893
2021/02/14 23:46:37 117.136.75.205:22186 accepted tcp:127.0.0.1:11443 [sniproxy-in -> localhost-xtls]
2021/02/14 23:46:37 [Info] [486096498] app/dispatcher: sniffed domain: xray-xtls.com
2021/02/14 23:46:37 [Info] [486096498] app/dispatcher: taking detour [localhost-xtls] for [tcp:xray-xtls.com:11443]
2021/02/14 23:46:37 [Info] [486096498] proxy/freedom: opening connection to tcp:127.0.0.1:11443
2021/02/14 23:46:37 [Info] [486096498] transport/internet/tcp: dialing TCP to tcp:127.0.0.1:11443
2021/02/14 23:46:37 [Info] [2300660023] proxy/vless/inbound: firstLen = 0
2021/02/14 23:46:37 [Info] [2300660023] proxy/vless/inbound: fallback starts > proxy/vless/inbound: fallback directly
2021/02/14 23:46:37 [Info] [2300660023] proxy/vless/inbound: realName = xray-xtls.com
2021/02/14 23:46:37 [Info] [2300660023] proxy/vless/inbound: realAlpn = http/1.1
2021/02/14 23:46:37 [Info] [2300660023] app/proxyman/inbound: connection ends > proxy/vless/inbound: fallback ends > proxy/vless/inbound: failed to fallback request payload > remote error: tls: bad certificate
2021/02/14 23:46:38 [Info] [3269894773] proxy/dokodemo: received request for 114.5.1.4:893
2021/02/14 23:46:38 [Info] [3269894773] app/dispatcher: sniffed domain: xray-xtls.com
2021/02/14 23:46:38 [Info] [3269894773] app/dispatcher: taking detour [localhost-xtls] for [tcp:xray-xtls.com:11443]
2021/02/14 23:46:38 [Info] [3269894773] proxy/freedom: opening connection to tcp:127.0.0.1:11443
2021/02/14 23:46:38 [Info] [3269894773] transport/internet/tcp: dialing TCP to tcp:127.0.0.1:11443
2021/02/14 23:46:38 [2409:8934:429:4dac:a7dd:4582:bb1d:bbff]:35740 accepted tcp:127.0.0.1:11443 [sniproxy-in -> localhost-xtls]
2021/02/14 23:46:39 [Info] [3835552883] proxy/vless/inbound: firstLen = 0
2021/02/14 23:46:39 [Info] [3835552883] proxy/vless/inbound: fallback starts > proxy/vless/inbound: fallback directly
2021/02/14 23:46:39 [Info] [3835552883] proxy/vless/inbound: realName = xray-xtls.com
2021/02/14 23:46:39 [Info] [3835552883] proxy/vless/inbound: realAlpn = http/1.1
2021/02/14 23:46:39 [Info] [3835552883] app/proxyman/inbound: connection ends > proxy/vless/inbound: fallback ends > proxy/vless/inbound: failed to fallback request payload > remote error: tls: bad certificate
你正在使用哪个版本的 XRay?
你的使用场景是什么?
如标题所示,使用 Xray-core 作为 SNI Proxy 和 VLESS Inbound。
你看到的异常现象是什么?
使用 Xray-core 连接上述 SNI Proxy 时,VLESS 总是触发回落。
xtls-rprx-origin和xtls-rprx-direct,均可复现。TLS,可复现。你期待看到的正常表现是怎样的?
使用 Xray-core 连接上述 SNI Proxy 时,VLESS 不 触发回落。
请附上你的配置
服务端配置:
客户端配置:
// 在这里附上客户端配置请附上出错时软件输出的错误日志
服务器端错误日志: