We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
#!/bin/sh iptables-save -c | grep -v "SS_SPEC" | iptables-restore -c iptables-restore -n <<-EOT *nat :SS_SPEC_WAN_AC - [0:0] :SS_SPEC_WAN_FW - [0:0] -I PREROUTING 1 -i br-lan -p tcp -m comment --comment SS_SPEC_RULE -j SS_SPEC_WAN_AC -I OUTPUT 1 -p tcp -m comment --comment SS_SPEC_RULE -j SS_SPEC_WAN_AC -A SS_SPEC_WAN_AC -p tcp -m set --match-set netflix dst -j REDIRECT --to-ports 303 -A SS_SPEC_WAN_AC -m set --match-set music dst -j RETURN -A SS_SPEC_WAN_AC -m set --match-set whitelist dst -j RETURN -A SS_SPEC_WAN_AC -m set --match-set blacklist dst -j SS_SPEC_WAN_FW -A SS_SPEC_WAN_AC -m set --match-set bplan src -j RETURN -A SS_SPEC_WAN_AC -m set --match-set fplan src -j SS_SPEC_WAN_FW -A SS_SPEC_WAN_AC -d 103.161.255.71/32 -p tcp -m tcp ! --dport 53 -j RETURN -A SS_SPEC_WAN_AC -m set --match-set china dst -j RETURN -A SS_SPEC_WAN_AC -m set --match-set gfwlist dst -j SS_SPEC_WAN_FW -A SS_SPEC_WAN_AC -m set --match-set gmlan src -m set ! --match-set china dst -j SS_SPEC_WAN_FW -A SS_SPEC_WAN_FW -d 0.0.0.0/8 -j RETURN -A SS_SPEC_WAN_FW -d 10.0.0.0/8 -j RETURN -A SS_SPEC_WAN_FW -d 127.0.0.0/8 -j RETURN -A SS_SPEC_WAN_FW -d 169.254.0.0/16 -j RETURN -A SS_SPEC_WAN_FW -d 172.16.0.0/12 -j RETURN -A SS_SPEC_WAN_FW -d 192.168.0.0/16 -j RETURN -A SS_SPEC_WAN_FW -d 224.0.0.0/4 -j RETURN -A SS_SPEC_WAN_FW -d 240.0.0.0/4 -j RETURN -A SS_SPEC_WAN_FW -p tcp -m multiport --dports 22,53,587,465,995,993,143,80,443,853,9418 -j REDIRECT --to-ports 1234 COMMIT *mangle COMMIT EOT
101:这个是我的shadowsocksr.include的内容netflix请求被劫持到303端口,然后是怎么被处理的? 102:music,whitelist,blacklist,bplan,fplan,gmlan 都是什么ip集,他们是怎么被填充的,对应luci界面的哪个部分 103:china 和 gfwlist 是对应luci中的gfwlist和中国大陆ip段吗? 104:-A SS_SPEC_WAN_AC -d 103.161.255.71/32 -p tcp -m tcp ! --dport 53 -j RETURN。这一条是干什么用的? 105:dns劫持是在哪条设置的?我看user.include中只有把对外dns请求劫持到路由器的53端口,并没有劫持到ssrp中。路由器的53不是对应dnsmasq吗?有点糊涂。 105:ssrp的日志文件存储位置和日志等级可以设置吗?在哪能看到日志?我手机的小火箭都可以看日志。这个代理的日志在哪能看见。 106:dns2tcp和dnstosocks解析的节点是怎么确定的,这两个机制返回域名的地址中包括ipv6地址吗?还是只有ipv4地址。 107:ssrp支持ipv6流量的劫持吗?我看luci里面没有开关。
The text was updated successfully, but these errors were encountered:
No branches or pull requests
#!/bin/sh
iptables-save -c | grep -v "SS_SPEC" | iptables-restore -c
iptables-restore -n <<-EOT
*nat
:SS_SPEC_WAN_AC - [0:0]
:SS_SPEC_WAN_FW - [0:0]
-I PREROUTING 1 -i br-lan -p tcp -m comment --comment SS_SPEC_RULE -j SS_SPEC_WAN_AC
-I OUTPUT 1 -p tcp -m comment --comment SS_SPEC_RULE -j SS_SPEC_WAN_AC
-A SS_SPEC_WAN_AC -p tcp -m set --match-set netflix dst -j REDIRECT --to-ports 303
-A SS_SPEC_WAN_AC -m set --match-set music dst -j RETURN
-A SS_SPEC_WAN_AC -m set --match-set whitelist dst -j RETURN
-A SS_SPEC_WAN_AC -m set --match-set blacklist dst -j SS_SPEC_WAN_FW
-A SS_SPEC_WAN_AC -m set --match-set bplan src -j RETURN
-A SS_SPEC_WAN_AC -m set --match-set fplan src -j SS_SPEC_WAN_FW
-A SS_SPEC_WAN_AC -d 103.161.255.71/32 -p tcp -m tcp ! --dport 53 -j RETURN
-A SS_SPEC_WAN_AC -m set --match-set china dst -j RETURN
-A SS_SPEC_WAN_AC -m set --match-set gfwlist dst -j SS_SPEC_WAN_FW
-A SS_SPEC_WAN_AC -m set --match-set gmlan src -m set ! --match-set china dst -j SS_SPEC_WAN_FW
-A SS_SPEC_WAN_FW -d 0.0.0.0/8 -j RETURN
-A SS_SPEC_WAN_FW -d 10.0.0.0/8 -j RETURN
-A SS_SPEC_WAN_FW -d 127.0.0.0/8 -j RETURN
-A SS_SPEC_WAN_FW -d 169.254.0.0/16 -j RETURN
-A SS_SPEC_WAN_FW -d 172.16.0.0/12 -j RETURN
-A SS_SPEC_WAN_FW -d 192.168.0.0/16 -j RETURN
-A SS_SPEC_WAN_FW -d 224.0.0.0/4 -j RETURN
-A SS_SPEC_WAN_FW -d 240.0.0.0/4 -j RETURN
-A SS_SPEC_WAN_FW -p tcp -m multiport --dports 22,53,587,465,995,993,143,80,443,853,9418 -j REDIRECT --to-ports 1234
COMMIT
*mangle
COMMIT
EOT
101:这个是我的shadowsocksr.include的内容netflix请求被劫持到303端口,然后是怎么被处理的?
102:music,whitelist,blacklist,bplan,fplan,gmlan 都是什么ip集,他们是怎么被填充的,对应luci界面的哪个部分
103:china 和 gfwlist 是对应luci中的gfwlist和中国大陆ip段吗?
104:-A SS_SPEC_WAN_AC -d 103.161.255.71/32 -p tcp -m tcp ! --dport 53 -j RETURN。这一条是干什么用的?
105:dns劫持是在哪条设置的?我看user.include中只有把对外dns请求劫持到路由器的53端口,并没有劫持到ssrp中。路由器的53不是对应dnsmasq吗?有点糊涂。
105:ssrp的日志文件存储位置和日志等级可以设置吗?在哪能看到日志?我手机的小火箭都可以看日志。这个代理的日志在哪能看见。
106:dns2tcp和dnstosocks解析的节点是怎么确定的,这两个机制返回域名的地址中包括ipv6地址吗?还是只有ipv4地址。
107:ssrp支持ipv6流量的劫持吗?我看luci里面没有开关。
The text was updated successfully, but these errors were encountered: