1.13.0版本,tuic无法使用sni分流 #3639
Description
Operating system
Windows
System version
window 10
Installation type
Third-party graphical clients that advertise themselves as using sing-box (Windows)
If you are using a graphical client, please provide the version of the client.
GUI4singbox v1.16.0
Version
Description
切换到1.13.0时,服务端使用caddy l4,根据sni无法将tuic流量转发到singbox
1.12.13是正常的
Reproduction
客户端配置
{
"$schema": "DO NOT EDIT - Generated by GUI.for.SingBox",
"log": {
"disabled": false,
"level": "trace",
"output": "",
"timestamp": false
},
"experimental": {
"cache_file": {
"enabled": true,
"path": "cache.db",
"cache_id": "",
"store_fakeip": true,
"store_rdrc": true,
"rdrc_timeout": "7d"
}
},
"inbounds": [
{
"type": "mixed",
"tag": "mixed-in",
"listen": "127.0.0.1",
"listen_port": 1080,
"tcp_fast_open": false,
"tcp_multi_path": false,
"udp_fragment": false
}
],
"outbounds": [
{
"type": "selector",
"tag": "🚀 节点选择",
"interrupt_exist_connections": true,
"outbounds": [
"🎈 自动选择",
"tuic"
]
},
{
"type": "urltest",
"tag": "🎈 自动选择",
"url": "https://www.gstatic.com/generate_204",
"interval": "3m",
"tolerance": 150,
"interrupt_exist_connections": false,
"outbounds": [
"tuic"
]
},
{
"type": "direct",
"tag": "🎯 全球直连"
},
{
"type": "tuic",
"tag": "tuic",
"server": "example.com",
"server_port": 443,
"uuid": "111",
"password": "222",
"congestion_control": "bbr",
"udp_relay_mode": "native",
"udp_over_stream": false,
"zero_rtt_handshake": false,
"heartbeat": "10s",
"tls": {
"enabled": true,
"server_name": "example.com",
"alpn": [
"h3"
]
}
}
],
"route": {
"rules": [
{
"action": "hijack-dns",
"protocol": "dns"
},
{
"action": "route",
"clash_mode": "direct",
"outbound": "🎯 全球直连"
},
{
"action": "route",
"clash_mode": "global",
"outbound": "GLOBAL"
},
{
"action": "reject",
"protocol": "quic",
"method": ""
},
{
"action": "reject",
"rule_set": [
"Category-Ads"
],
"method": ""
},
{
"action": "route",
"rule_set": [
"GeoSite-Private"
],
"outbound": "🎯 全球直连"
},
{
"action": "route",
"rule_set": [
"GeoSite-CN"
],
"outbound": "🎯 全球直连"
},
{
"action": "route",
"rule_set": [
"GeoIP-Private"
],
"outbound": "🎯 全球直连"
},
{
"action": "route",
"rule_set": [
"GeoIP-CN"
],
"outbound": "🎯 全球直连"
},
{
"action": "route",
"rule_set": [
"GeoLocation-!CN"
],
"outbound": "🚀 节点选择"
}
],
"rule_set": [
{
"tag": "Category-Ads",
"type": "remote",
"url": "https://testingcf.jsdelivr.net/gh/MetaCubeX/meta-rules-dat@sing/geo/geosite/category-ads-all.srs",
"format": "binary",
"download_detour": "🎯 全球直连"
},
{
"tag": "GeoIP-Private",
"type": "remote",
"url": "https://testingcf.jsdelivr.net/gh/MetaCubeX/meta-rules-dat@sing/geo/geoip/private.srs",
"format": "binary",
"download_detour": "🎯 全球直连"
},
{
"tag": "GeoSite-Private",
"type": "remote",
"url": "https://testingcf.jsdelivr.net/gh/MetaCubeX/meta-rules-dat@sing/geo/geosite/private.srs",
"format": "binary",
"download_detour": "🎯 全球直连"
},
{
"tag": "GeoIP-CN",
"type": "remote",
"url": "https://testingcf.jsdelivr.net/gh/MetaCubeX/meta-rules-dat@sing/geo/geoip/cn.srs",
"format": "binary",
"download_detour": "🎯 全球直连"
},
{
"tag": "GeoSite-CN",
"type": "remote",
"url": "https://testingcf.jsdelivr.net/gh/MetaCubeX/meta-rules-dat@sing/geo/geosite/cn.srs",
"format": "binary",
"download_detour": "🎯 全球直连"
},
{
"tag": "GeoLocation-!CN",
"type": "remote",
"url": "https://testingcf.jsdelivr.net/gh/MetaCubeX/meta-rules-dat@sing/geo/geosite/geolocation-!cn.srs",
"format": "binary",
"download_detour": "🎯 全球直连"
}
],
"auto_detect_interface": true,
"final": "🐟 漏网之鱼",
"default_domain_resolver": {
"server": "Local-DNS"
}
},
"dns": {
"servers": [
{
"tag": "Local-DNS",
"type": "https",
"domain_resolver": "Local-DNS-Resolver",
"server": "223.5.5.5",
"path": "/dns-query"
},
{
"tag": "Local-DNS-Resolver",
"type": "udp",
"server": "223.5.5.5"
},
{
"tag": "Remote-DNS",
"type": "tls",
"detour": "🚀 节点选择",
"domain_resolver": "Remote-DNS-Resolver",
"server": "8.8.8.8"
},
{
"tag": "Remote-DNS-Resolver",
"type": "udp",
"detour": "🚀 节点选择",
"server": "8.8.8.8"
}
],
"rules": [
{
"action": "route",
"clash_mode": "direct",
"server": "Local-DNS"
},
{
"action": "route",
"clash_mode": "global",
"server": "Remote-DNS"
},
{
"action": "route",
"rule_set": [
"GeoSite-CN"
],
"server": "Local-DNS"
},
{
"action": "route",
"rule_set": [
"GeoLocation-!CN"
],
"server": "Remote-DNS"
}
],
"disable_cache": false,
"disable_expire": false,
"independent_cache": false,
"final": "Remote-DNS",
"strategy": "prefer_ipv6"
}
}
caddy配置
{
layer4 {
:443 {
route {
proxy {
proxy_protocol v2
upstream localhost:8443
}
}
}
udp/:443 {
@tuic quic sni example.com
route @tuic {
proxy udp/sing-box:9001
}
}
}
}
直接使用命令行,也连接失败
客户端连9001接口,能正常连接
Logs
Supporter
- I am a sponsor
Integrity requirements
- I confirm that I have read the documentation, understand the meaning of all the configuration items I wrote, and did not pile up seemingly useful options or default values.
- I confirm that I have provided the server and client configuration files and process that can be reproduced locally, instead of a complicated client configuration file that has been stripped of sensitive data.
- I confirm that I have provided the simplest configuration that can be used to reproduce the error I reported, instead of depending on remote servers, TUN, graphical interface clients, or other closed-source software.
- I confirm that I have provided the complete configuration files and logs, rather than just providing parts I think are useful out of confidence in my own intelligence.