Comments (46)
yichya
commented on June 26, 2024
在这里 https://github.com/Loyalsoldier/v2ray-rules-dat/releases/ 下载 geoip.dat 和 geosite.dat 放到 /usr/share/xray 下面。
不过你遇到的这个问题按说我之前是处理过的,如果没有这俩文件应该不至于起不来,大概是又写出 bug 了
from luci-app-xray.
3xpert
commented on June 26, 2024
谢谢回复!
下载 geoip.dat 和 geosite.dat 放到 /usr/share/xray 下后,xray是起来了,但还是通不了外网,根据https://github.com/yichya/luci-app-xray/issues/28,做了些DNS的测试,还是不行。
Tue Jun 8 08:00:36 2021 user.info transparent-proxy-ipset[4847]: flush_ipset_rules
Tue Jun 8 08:00:36 2021 user.info transparent-proxy-ipset[4847]: ipset_init
Tue Jun 8 08:00:36 2021 user.info transparent-proxy-ipset[4847]: gen_lan_host_ipset_entry
Tue Jun 8 08:00:36 2021 user.info transparent-proxy-ipset[4847]: default gateway check 10.10.10.11
Tue Jun 8 08:00:36 2021 daemon.info xray[4909]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Tue Jun 8 08:00:36 2021 daemon.info xray[4909]: A unified platform for anti-censorship.
Tue Jun 8 08:00:36 2021 daemon.err xray[4909]: 2021/06/08 00:00:36 Using confdir from arg: /var/etc/xray
Tue Jun 8 08:00:36 2021 daemon.info xray[4909]: 2021/06/08 00:00:36 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Tue Jun 8 08:00:37 2021 daemon.info xray[4909]: 2021/06/08 00:00:37 [Warning] core: Xray 1.4.2 started
Tue Jun 8 08:01:00 2021 cron.info crond[2316]: USER root pid 4976 cmd /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
Tue Jun 8 08:02:00 2021 cron.info crond[2316]: USER root pid 5109 cmd /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
Tue Jun 8 08:03:00 2021 cron.info crond[2316]: USER root pid 5236 cmd /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[4826]: exiting on receipt of SIGTERM
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: started, version 2.80 cachesize 150
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: DNS service limited to local subnets
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: compile time options: IPv6 GNU-getopt no-DBus no-i18n no-IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth nettlehash DNSSEC no-ID loop-detect inotify dumpfile
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain test
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain onion
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain localhost
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain local
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain invalid
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain bind
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using nameserver 127.0.0.1#5353 for default
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using nameserver 114.114.114.114#53 for domain mydomain.tk
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain lan
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: reading /tmp/resolv.conf.auto
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain test
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain onion
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain localhost
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain local
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain invalid
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain bind
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using nameserver 127.0.0.1#5353 for default
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using nameserver 114.114.114.114#53 for domain mydomain.tk
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using local addresses only for domain lan
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: using nameserver 10.10.10.11#53
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: read /etc/hosts - 4 addresses
Tue Jun 8 08:03:48 2021 daemon.info dnsmasq[5435]: read /tmp/hosts/dhcp.cfg01411c - 0 addresses
Tue Jun 8 08:03:49 2021 daemon.info dnsmasq[5435]: read /etc/hosts - 4 addresses
Tue Jun 8 08:03:49 2021 daemon.info dnsmasq[5435]: read /tmp/hosts/dhcp.cfg01411c - 0 addresses
Tue Jun 8 08:04:00 2021 cron.info crond[2316]: USER root pid 5655 cmd /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
Tue Jun 8 08:05:00 2021 cron.info crond[2316]: USER root pid 5811 cmd /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
from luci-app-xray.
yichya
commented on June 26, 2024
你的这个 watchdog 是什么?
然后你这边访问不了外网的表现是什么样的,dns 解析有问题,还是 timeout,还是一些什么其他的表现
from luci-app-xray.
3xpert
commented on June 26, 2024
1.xray_watchdog.log一直重复以下内容:
Syntax: /etc/init.d/xray [command]
Available commands:
start Start the service
stop Stop the service
restart Restart the service
reload Reload configuration files (or restart if service does not implement reload)
enable Enable service autostart
disable Disable service autostart
下面是cron里的内容
0 */3 * * * rm -f /var/log/xray_watchdog.log 2>&1
-
-
-
-
- /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
这个是本项目加进去的吗?
- /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
-
-
-
2.外网访问不了,就是路由本身就访问不了外网。网页上就提示说“没有连网”,以下10.10.10.11是我的主路由
root@xray:# ping 10.10.10.11# opkg update
PING 10.10.10.11 (10.10.10.11): 56 data bytes
64 bytes from 10.10.10.11: seq=0 ttl=64 time=0.261 ms
64 bytes from 10.10.10.11: seq=1 ttl=64 time=0.141 ms
64 bytes from 10.10.10.11: seq=2 ttl=64 time=0.189 ms
64 bytes from 10.10.10.11: seq=3 ttl=64 time=0.122 ms
^C
--- 10.10.10.11 ping statistics ---
4 packets transmitted, 4 packets received, 0% packet loss
round-trip min/avg/max = 0.122/0.178/0.261 ms
root@xray:
Downloading http://downloads.openwrt.org/releases/19.07.7/targets/x86/64/packages/Packages.gz
*** Failed to download the package list from http://downloads.openwrt.org/releases/19.07.7/targets/x86/64/packages/Packages.gz
Downloading http://downloads.openwrt.org/releases/19.07.7/packages/x86_64/base/Packages.gz
*** Failed to download the package list from http://downloads.openwrt.org/releases/19.07.7/packages/x86_64/base/Packages.gz
Downloading http://downloads.openwrt.org/releases/19.07.7/packages/x86_64/freifunk/Packages.gz
^C
root@xray:# ping baidu.com#
ping: bad address 'baidu.com'
root@xray:
from luci-app-xray.
yichya
commented on June 26, 2024
dns 解析就有问题啊。。。
你能 ping 通 114.114.114.114 么,最好能用 dig 试试 114.114.114.114 能不能用
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:~# ping 114.114.114.114
PING 114.114.114.114 (114.114.114.114): 56 data bytes
64 bytes from 114.114.114.114: seq=0 ttl=71 time=25.754 ms
64 bytes from 114.114.114.114: seq=1 ttl=83 time=25.254 ms
64 bytes from 114.114.114.114: seq=2 ttl=76 time=25.689 ms
64 bytes from 114.114.114.114: seq=3 ttl=72 time=25.264 ms
64 bytes from 114.114.114.114: seq=4 ttl=82 time=25.632 ms
可以通
dig装不了哈
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:~# dig @114.114.114.114 baidu.com
; <<>> DiG 9.16.15 <<>> @114.114.114.114 baidu.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15643
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;baidu.com. IN A
;; ANSWER SECTION:
baidu.com. 255 IN A 39.156.69.79
baidu.com. 255 IN A 220.181.38.148
;; Query time: 20 msec
;; SERVER: 114.114.114.114#53(114.114.114.114)
;; WHEN: Tue Jun 08 14:32:40 CST 2021
;; MSG SIZE rcvd: 70
from luci-app-xray.
yichya
commented on June 26, 2024
如果说你能 ping 通 114.114.114.114 的话,不应该有什么问题。。。
你试试 dig @127.0.0.1 -p 5353 baidu.com,然后也贴一下 /etc/config/xray 的内容(记得脱敏)
以及
0 */3 * * * rm -f /var/log/xray_watchdog.log 2>&1
- /etc/init.d/xray watchdog >> /var/log/xray_watchdog.log 2>&1
这个是本项目加进去的吗?
不是,而且这个脚本里面没这功能。即使它挂了,应该会由 procd 拉起来而不是用定时任务处理
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:~# dig @127.0.0.1 -p 5353 baidu.com
; <<>> DiG 9.16.15 <<>> @127.0.0.1 -p 5353 baidu.com
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
root@xray:## cat /etc/config/xray
root@xray:
config general
option xray_bin '/usr/bin/xray'
option mark '255'
option tproxy_port_tcp '1080'
option tproxy_port_udp '1081'
option socks_port '1082'
option http_port '1083'
option dns_port '5353'
option default_dns '1.1.1.1'
list bypassed_domain_rules 'geosite:cn'
list forwarded_domain_rules 'geosite:geolocation-!cn'
option transparent_proxy_enable '1'
option wan_bp_list '/dev/null'
option lan_target 'TP_SPEC_WAN_AC'
option lan_ifaces 'br-lan'
list wan_bp_ips '114.114.114.114'
list wan_bp_ips '104.16.0.0/12'
option xray_api '1'
option tproxy_udp_server 'cfg044a8f'
option main_server 'cfg044a8f'
option fast_dns '114.114.114.114'
option secure_dns '8.8.8.8'
config servers
option security 'auto'
option transport 'tcp'
option tcp_guise 'none'
option tls '0'
option tests_enabled 'none'
option protocol 'vless'
option server_port '443'
option password '00000000-0000-0000-0000-000000000000'
option vless_security 'none'
option vless_encryption 'none'
option server 'example.org'
option alias 'VLESS XTLS Splice Example'
option vless_flow 'xtls-rprx-splice'
option vless_tls 'xtls'
option vless_xtls_host 'example.org'
option vless_xtls_insecure '0'
config servers
option password 'supersecret'
option transport 'tcp'
option tcp_guise 'none'
option server 'example.org'
option server_port '443'
option protocol 'trojan'
option alias 'Trojan Example'
option trojan_flow 'none'
option trojan_tls 'tls'
option trojan_tls_host 'example.org'
option trojan_tls_insecure '0'
config servers
option protocol 'vless'
option tcp_guise 'none'
option vless_flow 'xtls-rprx-direct'
option vless_xtls_insecure '0'
option password 'uuid'
option vless_encryption 'none'
option vless_tls 'xtls'
option transport 'tcp'
option alias 'xrayvps'
option server 'mydomain.tk'
option server_port '443'
from luci-app-xray.
3xpert
commented on June 26, 2024
删了cron里watch_dog的内容后(奇怪这个是哪里来的?),transparent pxoxy rule设为cn,国内可以访问了,但外网还是访问不了,设成telegram也不行。当然,确定uuid和domain是正确的。
设成cn
root@xray:~# dig @127.0.0.1 -p 5353 baidu.com
; <<>> DiG 9.16.15 <<>> @127.0.0.1 -p 5353 baidu.com
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7191
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;baidu.com. IN A
;; ANSWER SECTION:
baidu.com. 600 IN A 39.156.69.79
baidu.com. 600 IN A 220.181.38.148
;; Query time: 10 msec
;; SERVER: 127.0.0.1#5353(127.0.0.1)
;; WHEN: Wed Jun 09 08:32:54 CST 2021
;; MSG SIZE rcvd: 59
设成telegram
root@xray:~# dig @127.0.0.1 -p 5353 baidu.com
; <<>> DiG 9.16.15 <<>> @127.0.0.1 -p 5353 baidu.com
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
from luci-app-xray.
yichya
commented on June 26, 2024
配置看着没问题,如果 transparent proxy rules 改成 cn 就一切正常的话,说明 xray 出站连接也都是没问题的,问题大概只能出在你的梯子上了。。。
或者你可以试试把你的服务端的 ip 加到 wan_bp_ips 里面(就是配置里面的 bypassed ips)
from luci-app-xray.
3xpert
commented on June 26, 2024
感谢!
我firstboot后,按你上面的指引重新来一遍,现在可以了。:)
你上面说的几个问题提醒我是不是安装了其它类似的项目后,有些设置被改后没有还原。
from luci-app-xray.
3xpert
commented on June 26, 2024
顺便问一下,更新geoip.dat和geosite.dat后,xray服务需要重启才生效吗?
from luci-app-xray.
yichya
commented on June 26, 2024
顺便问一下,更新geoip.dat和geosite.dat后,xray服务需要重启才生效吗?
要的。
from luci-app-xray.
3xpert
commented on June 26, 2024
早上还正常,刚刚就不行了。没动过任何配置,域名访问也没问题(android上的v2rayng正常,没梯子情况下域名可以访问)
Fri Jun 11 10:53:30 2021 user.info transparent-proxy-ipset[2184]: flush_ipset_rules
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: transparent-proxy-ipset[2184]: flush_ipset_rules
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: ip: RTNETLINK answers: No such file or directory
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: ip: RTNETLINK answers: No such file or directory
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: ip: RTNETLINK answers: No such process
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: ip: RTNETLINK answers: No such process
Fri Jun 11 10:53:30 2021 user.info transparent-proxy-ipset[2184]: ipset_init
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: transparent-proxy-ipset[2184]: ipset_init
Fri Jun 11 10:53:30 2021 user.info transparent-proxy-ipset[2184]: gen_lan_host_ipset_entry
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: transparent-proxy-ipset[2184]: gen_lan_host_ipset_entry
Fri Jun 11 10:53:30 2021 user.info transparent-proxy-ipset[2184]: default gateway check 10.10.10.11
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: transparent-proxy-ipset[2184]: default gateway check 10.10.10.11
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: ipset v7.3: Missing second mandatory argument to command add
Fri Jun 11 10:53:30 2021 daemon.notice procd: /etc/rc.d/S30xray: Try `ipset help' for more information.
Fri Jun 11 10:53:30 2021 cron.info crond[2300]: crond (busybox 1.30.1) started, log level 5
Fri Jun 11 10:53:30 2021 daemon.info xray[2247]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Fri Jun 11 10:53:30 2021 daemon.info xray[2247]: A unified platform for anti-censorship.
Fri Jun 11 10:53:30 2021 daemon.info xray[2247]: 2021/06/11 02:53:30 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Fri Jun 11 10:53:30 2021 daemon.err xray[2247]: 2021/06/11 02:53:30 Using confdir from arg: /var/etc/xray
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/network reload dependency on /etc/config/dhcp
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/network reload dependency on /etc/config/radvd
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/wireless reload dependency on /etc/config/network
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/firewall reload dependency on /etc/config/luci-splash
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/firewall reload dependency on /etc/config/qos
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/firewall reload dependency on /etc/config/miniupnpd
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/dhcp reload dependency on /etc/config/odhcpd
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up non-init /etc/config/fstab reload handler: /sbin/block mount
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/system reload trigger for non-procd /etc/init.d/led
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/system reload dependency on /etc/config/luci_statistics
Fri Jun 11 10:53:30 2021 user.notice ucitrack: Setting up /etc/config/system reload dependency on /etc/config/dhcp
Fri Jun 11 10:53:30 2021 daemon.info procd: - init complete -
Fri Jun 11 10:53:30 2021 daemon.info xray[2247]: 2021/06/11 02:53:30 [Warning] core: Xray 1.4.2 started
Fri Jun 11 10:53:31 2021 kern.info kernel: [ 6.630042] IPv6: ADDRCONF(NETDEV_CHANGE): br-lan: link becomes ready
Fri Jun 11 10:53:31 2021 daemon.err odhcpd[2272]: Failed to send to ff02::1%lan@br-lan (Address not available)
Fri Jun 11 10:53:33 2021 daemon.info xray[2247]: 2021/06/11 02:53:33 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:53:37 2021 daemon.err uhttpd[2331]: luci: accepted login on /admin/status/syslog for root from 10.10.10.101
Fri Jun 11 10:53:43 2021 daemon.info xray[2247]: 2021/06/11 02:53:43 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:53:53 2021 daemon.info xray[2247]: 2021/06/11 02:53:53 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:54:03 2021 daemon.info xray[2247]: 2021/06/11 02:54:03 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:54:14 2021 daemon.info xray[2247]: 2021/06/11 02:54:14 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:54:25 2021 daemon.info xray[2247]: 2021/06/11 02:54:25 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46314->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36627->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:51336->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:47415->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:43219->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:54:25 2021 daemon.info xray[2247]: 2021/06/11 02:54:25 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46314->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36627->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:51336->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:47415->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:43219->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:54:25 2021 daemon.info xray[2247]: 2021/06/11 02:54:25 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46314->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36627->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:51336->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:47415->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:43219->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:54:26 2021 daemon.info xray[2247]: 2021/06/11 02:54:26 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:54:31 2021 authpriv.info dropbear[2646]: Child connection from 10.10.10.101:58184
Fri Jun 11 10:54:31 2021 authpriv.notice dropbear[2646]: Pubkey auth succeeded for 'root' with key sha1!! 29:e4:60:88:25:fb:78:66:d6:e6:a7:39:14:4f:55:da:f1:60:7b:85 from 10.10.10.101:58184
Fri Jun 11 10:54:36 2021 daemon.info xray[2247]: 2021/06/11 02:54:36 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:54:46 2021 daemon.info xray[2247]: 2021/06/11 02:54:46 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:54:56 2021 daemon.info xray[2247]: 2021/06/11 02:54:56 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:55:07 2021 daemon.info xray[2247]: 2021/06/11 02:55:07 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:55:17 2021 daemon.info xray[2247]: 2021/06/11 02:55:17 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:58487->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35783->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:40514->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:44190->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:54184->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:55:17 2021 daemon.info xray[2247]: 2021/06/11 02:55:17 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:58487->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35783->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:40514->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:44190->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:54184->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:55:17 2021 daemon.info xray[2247]: 2021/06/11 02:55:17 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:58487->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35783->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:40514->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:44190->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:54184->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:55:17 2021 daemon.info xray[2247]: 2021/06/11 02:55:17 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:58487->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35783->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:40514->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:44190->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:54184->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:55:17 2021 daemon.info xray[2247]: 2021/06/11 02:55:17 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:58487->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35783->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:40514->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:44190->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:54184->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:55:28 2021 daemon.info xray[2247]: 2021/06/11 02:55:28 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35783->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:40514->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:44190->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:54184->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:52411->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:55:45 2021 daemon.info xray[2247]: 2021/06/11 02:55:45 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:55:47 2021 daemon.info xray[2247]: 2021/06/11 02:55:47 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:55:49 2021 daemon.info xray[2247]: 2021/06/11 02:55:49 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:55:57 2021 daemon.info xray[2247]: 2021/06/11 02:55:57 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:55:57 2021 daemon.info xray[2247]: 2021/06/11 02:55:57 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:07 2021 daemon.info xray[2247]: 2021/06/11 02:56:07 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:08 2021 daemon.info xray[2247]: 2021/06/11 02:56:08 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:08 2021 daemon.info xray[2247]: 2021/06/11 02:56:08 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:52411->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:08 2021 daemon.info xray[2247]: 2021/06/11 02:56:08 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:52411->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:08 2021 daemon.info xray[2247]: 2021/06/11 02:56:08 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:52411->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:08 2021 daemon.info xray[2247]: 2021/06/11 02:56:08 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:52411->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36040->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36040->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36040->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:18 2021 daemon.info xray[2247]: 2021/06/11 02:56:18 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:41144->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36040->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:22 2021 daemon.info xray[2247]: 2021/06/11 02:56:22 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:26 2021 daemon.info xray[2247]: 2021/06/11 02:56:26 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:28 2021 daemon.info xray[2247]: 2021/06/11 02:56:28 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:28 2021 daemon.info xray[2247]: 2021/06/11 02:56:28 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:28 2021 daemon.info xray[2247]: 2021/06/11 02:56:28 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:28 2021 daemon.info xray[2247]: 2021/06/11 02:56:28 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:29 2021 daemon.info xray[2247]: 2021/06/11 02:56:29 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:59981->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36040->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46360->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:30 2021 daemon.info xray[2247]: 2021/06/11 02:56:30 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:38 2021 daemon.info xray[2247]: 2021/06/11 02:56:38 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:38 2021 daemon.info xray[2247]: 2021/06/11 02:56:38 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:38 2021 daemon.info xray[2247]: 2021/06/11 02:56:38 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:38 2021 daemon.info xray[2247]: 2021/06/11 02:56:38 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:39 2021 daemon.info xray[2247]: 2021/06/11 02:56:39 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:55791->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:42201->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36040->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46360->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36319->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:56:48 2021 daemon.info xray[2247]: 2021/06/11 02:56:48 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:48 2021 daemon.info xray[2247]: 2021/06/11 02:56:48 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:48 2021 daemon.info xray[2247]: 2021/06/11 02:56:48 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:48 2021 daemon.info xray[2247]: 2021/06/11 02:56:48 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:58 2021 daemon.info xray[2247]: 2021/06/11 02:56:58 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:58 2021 daemon.info xray[2247]: 2021/06/11 02:56:58 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:58 2021 daemon.info xray[2247]: 2021/06/11 02:56:58 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:56:58 2021 daemon.info xray[2247]: 2021/06/11 02:56:58 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:57:08 2021 daemon.info xray[2247]: 2021/06/11 02:57:08 [Error] transport/internet: infinite loop detected
Fri Jun 11 10:57:09 2021 daemon.info xray[2247]: 2021/06/11 02:57:09 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46360->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36319->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:09 2021 daemon.info xray[2247]: 2021/06/11 02:57:09 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46360->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36319->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:09 2021 daemon.info xray[2247]: 2021/06/11 02:57:09 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:46360->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36319->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:19 2021 daemon.info xray[2247]: 2021/06/11 02:57:19 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36319->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35337->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:19 2021 daemon.info xray[2247]: 2021/06/11 02:57:19 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36319->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35337->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:29 2021 daemon.info xray[2247]: 2021/06/11 02:57:29 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35337->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:47711->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:29 2021 daemon.info xray[2247]: 2021/06/11 02:57:29 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35337->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:47711->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
Fri Jun 11 10:57:29 2021 daemon.info xray[2247]: 2021/06/11 02:57:29 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:36610->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:48263->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:56701->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:35337->127.0.0.1:53: i/o timeout dial tcp: lookup mydomain.tk on 127.0.0.1:53: read udp 127.0.0.1:47711->127.0.0.1:53: i/o timeout] > common/retry: all retry attempts failed
from luci-app-xray.
yichya
commented on June 26, 2024
看了几个类似 case,目前看通过域名连接到服务端的方式可能还是有些不稳定(解析的时候可能出现死循环)。
非常离谱的是我个人就没遇到过这种问题。。。
可以试试不通过域名改为通过 ip 连接上去,域名解析死循环的问题我再想想有没有一劳永逸的办法解决掉。
from luci-app-xray.
3xpert
commented on June 26, 2024
直接用IP还是上不了外网,现像跟上次一样,log里死循环倒是没了。
Fri Jun 11 22:50:44 2021 user.info transparent-proxy-ipset[19125]: flush_ipset_rules
Fri Jun 11 22:50:44 2021 user.info transparent-proxy-ipset[19125]: ipset_init
Fri Jun 11 22:50:44 2021 user.info transparent-proxy-ipset[19125]: gen_lan_host_ipset_entry
Fri Jun 11 22:50:44 2021 user.info transparent-proxy-ipset[19125]: default gateway check 10.10.10.11
Fri Jun 11 22:50:44 2021 daemon.info xray[19196]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Fri Jun 11 22:50:44 2021 daemon.info xray[19196]: A unified platform for anti-censorship.
Fri Jun 11 22:50:44 2021 daemon.err xray[19196]: 2021/06/11 14:50:44 Using confdir from arg: /var/etc/xray
Fri Jun 11 22:50:44 2021 daemon.info xray[19196]: 2021/06/11 14:50:44 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Fri Jun 11 22:50:44 2021 daemon.info xray[19196]: 2021/06/11 14:50:44 [Warning] core: Xray 1.4.2 started
Fri Jun 11 22:51:59 2021 daemon.info xray[19196]: 2021/06/11 14:51:59 [Error] app/dns: UDP:114.114.114.114:53 cannot find the pending request
Fri Jun 11 22:51:59 2021 daemon.info xray[19196]: 2021/06/11 14:51:59 [Error] app/dns: UDP:114.114.114.114:53 cannot find the pending request
from luci-app-xray.
yichya
commented on June 26, 2024
你有没有装一些其他的会改 iptables 或者 dnsmasq 的配置的东西?
方便的话贴一下 iptables-save 的内容。
from luci-app-xray.
3xpert
commented on June 26, 2024
没有啊,重新做的系统,没装其它东西,除了网络,其它没改过
root@xray:~# iptables -nv -L
Chain INPUT (policy ACCEPT 37 packets, 1924 bytes)
pkts bytes target prot opt in out source destination
574 33336 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 /* !fw3 /
620 61098 input_rule all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3: Custom input rule chain /
551 44238 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED / !fw3 /
4 240 syn_flood tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 / !fw3 /
69 16860 zone_lan_input all -- br-lan * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 forwarding_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom forwarding rule chain /
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED / !fw3 /
0 0 zone_lan_forward all -- br-lan * 0.0.0.0/0 0.0.0.0/0 / !fw3 /
0 0 reject all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
250 15564 ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0 /* !fw3 /
750 283K output_rule all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3: Custom output rule chain /
653 277K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED / !fw3 /
97 5270 zone_lan_output all -- * br-lan 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain forwarding_lan_rule (1 references)
pkts bytes target prot opt in out source destination
Chain forwarding_rule (1 references)
pkts bytes target prot opt in out source destination
Chain forwarding_wan_rule (1 references)
pkts bytes target prot opt in out source destination
Chain input_lan_rule (1 references)
pkts bytes target prot opt in out source destination
Chain input_rule (1 references)
pkts bytes target prot opt in out source destination
Chain input_wan_rule (1 references)
pkts bytes target prot opt in out source destination
Chain output_lan_rule (1 references)
pkts bytes target prot opt in out source destination
Chain output_rule (1 references)
pkts bytes target prot opt in out source destination
Chain output_wan_rule (1 references)
pkts bytes target prot opt in out source destination
Chain reject (1 references)
pkts bytes target prot opt in out source destination
0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3 / reject-with tcp-reset
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */ reject-with icmp-port-unreachable
Chain syn_flood (1 references)
pkts bytes target prot opt in out source destination
4 240 RETURN tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 25/sec burst 50 /* !fw3 /
0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_lan_dest_ACCEPT (4 references)
pkts bytes target prot opt in out source destination
97 5270 ACCEPT all -- * br-lan 0.0.0.0/0 0.0.0.0/0 /* !fw3 */
Chain zone_lan_forward (1 references)
pkts bytes target prot opt in out source destination
0 0 forwarding_lan_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan forwarding rule chain /
0 0 zone_wan_dest_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3: Zone lan to wan forwarding policy /
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate DNAT / !fw3: Accept port forwards /
0 0 zone_lan_dest_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_lan_input (1 references)
pkts bytes target prot opt in out source destination
69 16860 input_lan_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan input rule chain /
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate DNAT / !fw3: Accept port redirections /
69 16860 zone_lan_src_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_lan_output (1 references)
pkts bytes target prot opt in out source destination
97 5270 output_lan_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom lan output rule chain /
97 5270 zone_lan_dest_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_lan_src_ACCEPT (1 references)
pkts bytes target prot opt in out source destination
32 14936 ACCEPT all -- br-lan * 0.0.0.0/0 0.0.0.0/0 ctstate NEW,UNTRACKED /* !fw3 */
Chain zone_wan_dest_ACCEPT (2 references)
pkts bytes target prot opt in out source destination
Chain zone_wan_dest_REJECT (1 references)
pkts bytes target prot opt in out source destination
Chain zone_wan_forward (0 references)
pkts bytes target prot opt in out source destination
0 0 forwarding_wan_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan forwarding rule chain /
0 0 zone_lan_dest_ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3: Allow-IPSec-ESP /
0 0 zone_lan_dest_ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:500 / !fw3: Allow-ISAKMP /
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate DNAT / !fw3: Accept port forwards /
0 0 zone_wan_dest_REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_wan_input (0 references)
pkts bytes target prot opt in out source destination
0 0 input_wan_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan input rule chain /
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:68 / !fw3: Allow-DHCP-Renew /
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmptype 8 / !fw3: Allow-Ping /
0 0 ACCEPT 2 -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3: Allow-IGMP /
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 ctstate DNAT / !fw3: Accept port redirections /
0 0 zone_wan_src_REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_wan_output (0 references)
pkts bytes target prot opt in out source destination
0 0 output_wan_rule all -- * * 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom wan output rule chain /
0 0 zone_wan_dest_ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 / !fw3 */
Chain zone_wan_src_REJECT (1 references)
pkts bytes target prot opt in out source destination
root@xray:~#
from luci-app-xray.
yichya
commented on June 26, 2024
我想看一下主要是 mangle 和 nat 两个表的配置。。。需要 iptables-save
from luci-app-xray.
3xpert
commented on June 26, 2024
openwrt里这个命令要怎用?要安装什么包?
from luci-app-xray.
yichya
commented on June 26, 2024
就,打进去这个命令,回车就行了,啥也不用装啊
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:# iptable-save > iptable.bak#
-ash: iptable-save: not found
root@xray:
from luci-app-xray.
yichya
commented on June 26, 2024
-ash: iptable-save: not found
iptables-save
from luci-app-xray.
3xpert
commented on June 26, 2024
不好意思 :P
root@xray:~# cat iptables.bak
Generated by iptables-save v1.8.3 on Fri Jun 11 23:22:16 2021
*nat
:PREROUTING ACCEPT [181:30254]
:INPUT ACCEPT [4:790]
:OUTPUT ACCEPT [35:2380]
:POSTROUTING ACCEPT [35:2380]
:postrouting_lan_rule - [0:0]
:postrouting_rule - [0:0]
:postrouting_wan_rule - [0:0]
:prerouting_lan_rule - [0:0]
:prerouting_rule - [0:0]
:prerouting_wan_rule - [0:0]
:zone_lan_postrouting - [0:0]
:zone_lan_prerouting - [0:0]
:zone_wan_postrouting - [0:0]
:zone_wan_prerouting - [0:0]
-A PREROUTING -m comment --comment "!fw3: Custom prerouting rule chain" -j prerouting_rule
-A PREROUTING -i br-lan -m comment --comment "!fw3" -j zone_lan_prerouting
-A POSTROUTING -m comment --comment "!fw3: Custom postrouting rule chain" -j postrouting_rule
-A POSTROUTING -o br-lan -m comment --comment "!fw3" -j zone_lan_postrouting
-A zone_lan_postrouting -m comment --comment "!fw3: Custom lan postrouting rule chain" -j postrouting_lan_rule
-A zone_lan_prerouting -m comment --comment "!fw3: Custom lan prerouting rule chain" -j prerouting_lan_rule
-A zone_wan_postrouting -m comment --comment "!fw3: Custom wan postrouting rule chain" -j postrouting_wan_rule
-A zone_wan_postrouting -m comment --comment "!fw3" -j MASQUERADE
-A zone_wan_prerouting -m comment --comment "!fw3: Custom wan prerouting rule chain" -j prerouting_wan_rule
COMMIT
Completed on Fri Jun 11 23:22:16 2021
Generated by iptables-save v1.8.3 on Fri Jun 11 23:22:16 2021
*mangle
:PREROUTING ACCEPT [1023:856687]
:INPUT ACCEPT [846:827223]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [670:59462]
:POSTROUTING ACCEPT [670:59462]
COMMIT
Completed on Fri Jun 11 23:22:16 2021
Generated by iptables-save v1.8.3 on Fri Jun 11 23:22:16 2021
*filter
:INPUT ACCEPT [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_dest_REJECT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_REJECT - [0:0]
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -m comment --comment "!fw3" -j reject
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp-port-unreachable
-A syn_flood -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_REJECT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -p udp -m udp --dport 68 -m comment --comment "!fw3: Allow-DHCP-Renew" -j ACCEPT
-A zone_wan_input -p icmp -m icmp --icmp-type 8 -m comment --comment "!fw3: Allow-Ping" -j ACCEPT
-A zone_wan_input -p igmp -m comment --comment "!fw3: Allow-IGMP" -j ACCEPT
-A zone_wan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_REJECT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
COMMIT
Completed on Fri Jun 11 23:22:16 2021
root@xray:~#
from luci-app-xray.
yichya
commented on June 26, 2024
为什么你的 mangle 表完全是空的,这肯定会有问题。。。
上面这个 iptables-save 的结果是在启动了 xray 之后上不了网的情况下打出来的嘛,如果是的话麻烦贴一下 /etc/config/firewall
from luci-app-xray.
3xpert
commented on June 26, 2024
是这样的,xray启动后
root@xray:~# cat /etc/config/firewall
config defaults
option syn_flood '1'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'REJECT'
config zone
option name 'lan'
list network 'lan'
option input 'ACCEPT'
option output 'ACCEPT'
option forward 'ACCEPT'
config zone
option name 'wan'
list network 'wan'
list network 'wan6'
option input 'REJECT'
option output 'ACCEPT'
option forward 'REJECT'
option masq '1'
option mtu_fix '1'
config forwarding
option src 'lan'
option dest 'wan'
config rule
option name 'Allow-DHCP-Renew'
option src 'wan'
option proto 'udp'
option dest_port '68'
option target 'ACCEPT'
option family 'ipv4'
config rule
option name 'Allow-Ping'
option src 'wan'
option proto 'icmp'
option icmp_type 'echo-request'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-IGMP'
option src 'wan'
option proto 'igmp'
option family 'ipv4'
option target 'ACCEPT'
config rule
option name 'Allow-DHCPv6'
option src 'wan'
option proto 'udp'
option src_ip 'fc00::/6'
option dest_ip 'fc00::/6'
option dest_port '546'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-MLD'
option src 'wan'
option proto 'icmp'
option src_ip 'fe80::/10'
list icmp_type '130/0'
list icmp_type '131/0'
list icmp_type '132/0'
list icmp_type '143/0'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Input'
option src 'wan'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
list icmp_type 'router-solicitation'
list icmp_type 'neighbour-solicitation'
list icmp_type 'router-advertisement'
list icmp_type 'neighbour-advertisement'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-ICMPv6-Forward'
option src 'wan'
option dest '*'
option proto 'icmp'
list icmp_type 'echo-request'
list icmp_type 'echo-reply'
list icmp_type 'destination-unreachable'
list icmp_type 'packet-too-big'
list icmp_type 'time-exceeded'
list icmp_type 'bad-header'
list icmp_type 'unknown-header-type'
option limit '1000/sec'
option family 'ipv6'
option target 'ACCEPT'
config rule
option name 'Allow-IPSec-ESP'
option src 'wan'
option dest 'lan'
option proto 'esp'
option target 'ACCEPT'
config rule
option name 'Allow-ISAKMP'
option src 'wan'
option dest 'lan'
option dest_port '500'
option proto 'udp'
option target 'ACCEPT'
config include
option path '/etc/firewall.user'
config include 'xray'
option type 'script'
option path '/var/etc/xray.include'
option reload '1'
root@xray:~#
from luci-app-xray.
yichya
commented on June 26, 2024
这,include 有啊,mangle 表咋会是空的呢。。。
你试试 service firewall restart 重启防火墙,然后看一下 mangle 表会不会多一些东西出来
from luci-app-xray.
yichya
commented on June 26, 2024
顺便打这个命令 lua /usr/share/xray/firewall_include.lua enable 贴一下输出好了
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:~# cat iptables.bak
Generated by iptables-save v1.8.3 on Fri Jun 11 23:35:39 2021
*nat
:PREROUTING ACCEPT [3:822]
:INPUT ACCEPT [2:437]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:postrouting_lan_rule - [0:0]
:postrouting_rule - [0:0]
:postrouting_wan_rule - [0:0]
:prerouting_lan_rule - [0:0]
:prerouting_rule - [0:0]
:prerouting_wan_rule - [0:0]
:zone_lan_postrouting - [0:0]
:zone_lan_prerouting - [0:0]
:zone_wan_postrouting - [0:0]
:zone_wan_prerouting - [0:0]
-A PREROUTING -m comment --comment "!fw3: Custom prerouting rule chain" -j prerouting_rule
-A PREROUTING -i br-lan -m comment --comment "!fw3" -j zone_lan_prerouting
-A POSTROUTING -m comment --comment "!fw3: Custom postrouting rule chain" -j postrouting_rule
-A POSTROUTING -o br-lan -m comment --comment "!fw3" -j zone_lan_postrouting
-A zone_lan_postrouting -m comment --comment "!fw3: Custom lan postrouting rule chain" -j postrouting_lan_rule
-A zone_lan_prerouting -m comment --comment "!fw3: Custom lan prerouting rule chain" -j prerouting_lan_rule
-A zone_wan_postrouting -m comment --comment "!fw3: Custom wan postrouting rule chain" -j postrouting_wan_rule
-A zone_wan_postrouting -m comment --comment "!fw3" -j MASQUERADE
-A zone_wan_prerouting -m comment --comment "!fw3: Custom wan prerouting rule chain" -j prerouting_wan_rule
COMMIT
Completed on Fri Jun 11 23:35:39 2021
Generated by iptables-save v1.8.3 on Fri Jun 11 23:35:39 2021
*mangle
:PREROUTING ACCEPT [24:2945]
:INPUT ACCEPT [23:2560]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [8:7280]
:POSTROUTING ACCEPT [8:7280]
COMMIT
Completed on Fri Jun 11 23:35:39 2021
Generated by iptables-save v1.8.3 on Fri Jun 11 23:35:39 2021
*filter
:INPUT ACCEPT [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
:forwarding_lan_rule - [0:0]
:forwarding_rule - [0:0]
:forwarding_wan_rule - [0:0]
:input_lan_rule - [0:0]
:input_rule - [0:0]
:input_wan_rule - [0:0]
:output_lan_rule - [0:0]
:output_rule - [0:0]
:output_wan_rule - [0:0]
:reject - [0:0]
:syn_flood - [0:0]
:zone_lan_dest_ACCEPT - [0:0]
:zone_lan_forward - [0:0]
:zone_lan_input - [0:0]
:zone_lan_output - [0:0]
:zone_lan_src_ACCEPT - [0:0]
:zone_wan_dest_ACCEPT - [0:0]
:zone_wan_dest_REJECT - [0:0]
:zone_wan_forward - [0:0]
:zone_wan_input - [0:0]
:zone_wan_output - [0:0]
:zone_wan_src_REJECT - [0:0]
-A INPUT -i lo -m comment --comment "!fw3" -j ACCEPT
-A INPUT -m comment --comment "!fw3: Custom input rule chain" -j input_rule
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m comment --comment "!fw3" -j syn_flood
-A INPUT -i br-lan -m comment --comment "!fw3" -j zone_lan_input
-A FORWARD -m comment --comment "!fw3: Custom forwarding rule chain" -j forwarding_rule
-A FORWARD -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A FORWARD -i br-lan -m comment --comment "!fw3" -j zone_lan_forward
-A FORWARD -m comment --comment "!fw3" -j reject
-A OUTPUT -o lo -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -m comment --comment "!fw3: Custom output rule chain" -j output_rule
-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -m comment --comment "!fw3" -j ACCEPT
-A OUTPUT -o br-lan -m comment --comment "!fw3" -j zone_lan_output
-A reject -p tcp -m comment --comment "!fw3" -j REJECT --reject-with tcp-reset
-A reject -m comment --comment "!fw3" -j REJECT --reject-with icmp-port-unreachable
-A syn_flood -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m limit --limit 25/sec --limit-burst 50 -m comment --comment "!fw3" -j RETURN
-A syn_flood -m comment --comment "!fw3" -j DROP
-A zone_lan_dest_ACCEPT -o br-lan -m comment --comment "!fw3" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3: Custom lan forwarding rule chain" -j forwarding_lan_rule
-A zone_lan_forward -m comment --comment "!fw3: Zone lan to wan forwarding policy" -j zone_wan_dest_ACCEPT
-A zone_lan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_lan_forward -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_input -m comment --comment "!fw3: Custom lan input rule chain" -j input_lan_rule
-A zone_lan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_lan_input -m comment --comment "!fw3" -j zone_lan_src_ACCEPT
-A zone_lan_output -m comment --comment "!fw3: Custom lan output rule chain" -j output_lan_rule
-A zone_lan_output -m comment --comment "!fw3" -j zone_lan_dest_ACCEPT
-A zone_lan_src_ACCEPT -i br-lan -m conntrack --ctstate NEW,UNTRACKED -m comment --comment "!fw3" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3: Custom wan forwarding rule chain" -j forwarding_wan_rule
-A zone_wan_forward -p esp -m comment --comment "!fw3: Allow-IPSec-ESP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -p udp -m udp --dport 500 -m comment --comment "!fw3: Allow-ISAKMP" -j zone_lan_dest_ACCEPT
-A zone_wan_forward -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port forwards" -j ACCEPT
-A zone_wan_forward -m comment --comment "!fw3" -j zone_wan_dest_REJECT
-A zone_wan_input -m comment --comment "!fw3: Custom wan input rule chain" -j input_wan_rule
-A zone_wan_input -p udp -m udp --dport 68 -m comment --comment "!fw3: Allow-DHCP-Renew" -j ACCEPT
-A zone_wan_input -p icmp -m icmp --icmp-type 8 -m comment --comment "!fw3: Allow-Ping" -j ACCEPT
-A zone_wan_input -p igmp -m comment --comment "!fw3: Allow-IGMP" -j ACCEPT
-A zone_wan_input -m conntrack --ctstate DNAT -m comment --comment "!fw3: Accept port redirections" -j ACCEPT
-A zone_wan_input -m comment --comment "!fw3" -j zone_wan_src_REJECT
-A zone_wan_output -m comment --comment "!fw3: Custom wan output rule chain" -j output_wan_rule
-A zone_wan_output -m comment --comment "!fw3" -j zone_wan_dest_ACCEPT
COMMIT
Completed on Fri Jun 11 23:35:39 2021
root@xray:~# lua /usr/share/xray/firewall_include.lua enable
lua: cannot open /usr/share/xray/firewall_include.lua: No such file or directory
from luci-app-xray.
yichya
commented on June 26, 2024
lua: cannot open /usr/share/xray/firewall_include.lua: No such file or directory
emmmmmmm 为什么会没有这个文件的。。。如果你之前能用的话这个文件是被莫名其妙删掉了么
你看看 /usr/share/xray 下面是不是有 https://github.com/yichya/luci-app-xray/tree/master/root/usr/share/xray 这里面的所有文件加上 geoip.dat 和 geosite.dat
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:~# ls /usr/share/xray/ -l
-rw-r--r-- 1 root root 5504276 Jun 11 21:20 geoip.dat
-rw-r--r-- 1 root root 4515144 Jun 11 21:30 geosite.dat
只有这两个,是我拷进去的
之前能用的那个有另外那三个文
今天这个是不能用后,我重新做了openwrt,然后重新安装openwrt-xray luci-app-xray
from luci-app-xray.
yichya
commented on June 26, 2024
opkg 还能把文件装丢了的么。。。。。。
你试试按 https://github.com/yichya/luci-app-xray/tree/master/root 这个目录结构把几个脚本文件都恢复一下。。。
from luci-app-xray.
3xpert
commented on June 26, 2024
是啊,只有opkg,没有其它动作。
这些脚本文件要怎么恢复?
或是我重新opkg install?
from luci-app-xray.
yichya
commented on June 26, 2024
重新 opkg install 或者缺什么就 wget 什么就好了
from luci-app-xray.
3xpert
commented on June 26, 2024
root@xray:~# opkg install luci-app-xray_1.0.9-1_x86_64.ipk
Installing luci-app-xray (1.0.9-1) to root...
Configuring luci-app-xray.
transparent-proxy-ipset[27633]: Generating Xray configuration files...
transparent-proxy-ipset[27737]: flush_ipset_rules
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such process
ip: RTNETLINK answers: No such process
transparent-proxy-ipset[27737]: ipset_init
ip: RTNETLINK answers: File exists
transparent-proxy-ipset[27737]: gen_lan_host_ipset_entry
transparent-proxy-ipset[27737]: default gateway check 10.10.10.11
ipset v7.3: Missing second mandatory argument to command add
Try `ipset help' for more information.
Collected errors:
- resolve_conffiles: Existing conffile /etc/config/xray is different from the conffile in the new package. The new conffile will be placed at /etc/config/xray-opkg.
root@xray:# ls /usr/share/xray/# ls /usr/share/xray/ -l
firewall_include.lua gen_config.lua geoip.dat geosite.dat
root@xray:
-rwxr-xr-x 1 root root 2154 Jun 6 17:05 firewall_include.lua
-rwxr-xr-x 1 root root 18544 Jun 6 17:05 gen_config.lua
-rw-r--r-- 1 root root 5504276 Jun 11 21:20 geoip.dat
-rw-r--r-- 1 root root 4515144 Jun 11 21:30 geosite.dat
还少一个文件
from luci-app-xray.
yichya
commented on June 26, 2024
infinite_retry 那个应该不碍事,或者 touch 一个空的就行了。那个其实是编译的时候通过一个开关控制的 #46 (comment)
from luci-app-xray.
3xpert
commented on June 26, 2024
Fri Jun 11 23:59:22 2021 daemon.info procd: - init complete -
Fri Jun 11 23:59:22 2021 daemon.info xray[2248]: 2021/06/11 15:59:22 [Warning] core: Xray 1.4.2 started
Fri Jun 11 23:59:27 2021 daemon.info xray[2248]: 2021/06/11 15:59:27 [Warning] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: connection ends > proxy/vless/outbound: failed to write A request payload > tls: either ServerName or InsecureSkipVerify must be specified in the tls.Config
Fri Jun 11 23:59:31 2021 daemon.err uhttpd[2331]: luci: accepted login on /admin/status/syslog for root from 10.10.10.101
from luci-app-xray.
yichya
commented on June 26, 2024
看起来正常了,你用 ip 连接的话需要把 tls 那个 insecure 勾上,或者也可以换回之前的域名
from luci-app-xray.
3xpert
commented on June 26, 2024
是的,用IP地址可以了,但用域名仍不行
Sat Jun 12 00:03:17 2021 daemon.info xray[3227]: 2021/06/11 16:03:17 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sat Jun 12 00:03:17 2021 daemon.info xray[3227]: 2021/06/11 16:03:17 [Warning] core: Xray 1.4.2 started
Sat Jun 12 00:03:38 2021 daemon.info xray[3227]: 2021/06/11 16:03:38 [Error] transport/internet: infinite loop detected
from luci-app-xray.
yichya
commented on June 26, 2024
域名的问题我这边之后再想想怎么处理,现在是把那几个域名写到 xray 的配置里面走直连,之后我看看能不能在 dnsmasq 里面也多写一个应该就能解决这个 infinite loop 了。
至于你那边莫名其妙丢了脚本文件这个。。。我大概只能在 init.d 里面加点日志,你那个为啥丢了可能还得你自己看
from luci-app-xray.
3xpert
commented on June 26, 2024
恢复正常了。
因为莫名其妙,早上用着好好的,过一会就不能用了,也因为是全新做的系统,也没动过其它的,只装了这两个需要的ipk。我自己看那能力有限了,哈哈。
太感谢你了!晚安!
from luci-app-xray.
wazzx
commented on June 26, 2024
恢复正常了。
因为莫名其妙,早上用着好好的,过一会就不能用了,也因为是全新做的系统,也没动过其它的,只装了这两个需要的ipk。我自己看那能力有限了,哈哈。
太感谢你了!晚安!
问一下大佬是安装了哪2个ipk,我完好像也没有看懂是哪个
from luci-app-xray.
3xpert
commented on June 26, 2024
恢复正常了。
因为莫名其妙,早上用着好好的,过一会就不能用了,也因为是全新做的系统,也没动过其它的,只装了这两个需要的ipk。我自己看那能力有限了,哈哈。
太感谢你了!晚安!问一下大佬是安装了哪2个ipk,我完好像也没有看懂是哪个
替大佬回复你 :)
一个是本项目的luci-app-xray(这个根据自己的情况自行编译),另一个是openwrt-xray
from luci-app-xray.
wazzx
commented on June 26, 2024
恢复正常了。
因为莫名其妙,早上用着好好的,过一会就不能用了,也因为是全新做的系统,也没动过其它的,只装了这两个需要的ipk。我自己看那能力有限了,哈哈。
太感谢你了!晚安!问一下大佬是安装了哪2个ipk,我完好像也没有看懂是哪个
替大佬回复你 :)
一个是本项目的luci-app-xray(这个根据自己的情况自行编译),另一个是openwrt-xray
我也是编译好了,但是也是你的问题链接不了外网,我的ip改成192.168.2.1
from luci-app-xray.
3xpert
commented on June 26, 2024
建议你新开一个issue,贴上相关的log,版主会帮你的
from luci-app-xray.
Related Issues (20)
- Please add import via URL HOT 5
- Version 3.2.1 feedback
- I was confued on how to setting up routing HOT 4
- Version 3.3.0 feedback HOT 7
- 如何正确的使用FakeDNS分流? HOT 2
- Version 3.3.1 feedback
- 仅使用FakeDNS分流会存在缺陷 HOT 2
- Version 3.4.0 feedback HOT 12
- XTLS Reality can't establish connection with hostname like example.domain.ru:443 HOT 3
- Version 3.4.1 feedback HOT 3
- Passthrough DNS queries via local dnsmasq HOT 1
- lucy-app-xray: "Forwarded domain rules" doesnt work HOT 2
- config.json HOT 11
- Configuration hook HOT 8
- Fragment
- SDK has changed from xz to zst. Script tar unzip is not workable. HOT 1
- Xray startup failure with configuration deserialization error HOT 1
- 手机连接WiFi叹号 HOT 1
- 请问这个luci怎么在openwrt的sdk里面编译? HOT 1
- Grpc HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from luci-app-xray.