[ xray ] 优化clash节点的dns配置
This commit is contained in:
zeaslity
@@ -48,4 +48,6 @@ tailscale up --login-server=http://tailscale.107421.xyz --accept-routes=false --
|
|||||||
|
|
||||||
headscale -n wdd-net nodes register --key
|
headscale -n wdd-net nodes register --key
|
||||||
|
|
||||||
systemctl status tailscaled
|
systemctl status tailscaled
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
4
temp.sh
4
temp.sh
@@ -169,4 +169,6 @@ umount /var
|
|||||||
sed -i "s/\/var/\/var\/lib\/docker/g" /etc/fstab
|
sed -i "s/\/var/\/var\/lib\/docker/g" /etc/fstab
|
||||||
mount -a
|
mount -a
|
||||||
|
|
||||||
sed -i "s/\/data/\/var\/lib\/docker/g" /etc/fstab
|
sed -i "s/\/data/\/var\/lib\/docker/g" /etc/fstab
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
@@ -16,33 +16,41 @@ dns:
|
|||||||
enable: true
|
enable: true
|
||||||
listen: 0.0.0.0:53
|
listen: 0.0.0.0:53
|
||||||
ipv6: true
|
ipv6: true
|
||||||
default-nameserver:
|
# 如果用“nameservers”中的服务器解析的IP地址在下面指定的子网中,则这些地址被视为无效,而使用“回退”服务器的结果。
|
||||||
- 1.1.1.1
|
# 当“fallback-filter.geoip”为true并且IP地址的geoip为“CN”时,使用“nameserver”中服务器解析的IP地址。
|
||||||
|
# 如果“fallback-filter.geoip”为false,则如果与“fallbback-filter.ipcidr”不匹配,则始终使用“nameserver”名称服务器的结果。
|
||||||
|
#这是针对DNS污染攻击的对策。
|
||||||
|
nameserver: # 解析国内的网址
|
||||||
- 223.5.5.5
|
- 223.5.5.5
|
||||||
- 192.168.78.39
|
- 114.114.114.114
|
||||||
nameserver:
|
- 1.1.1.1
|
||||||
- https://1.1.1.1/dns-query
|
- 8.8.8.8
|
||||||
- https://1.0.0.2/dns-query
|
|
||||||
- https://9.9.9.9/dns-query
|
|
||||||
fallback:
|
|
||||||
- 192.168.78.39
|
- 192.168.78.39
|
||||||
- 192.168.34.40
|
- 192.168.34.40
|
||||||
- https://dns.alidns.com/dns-query
|
fallback: # 解析国外的网址
|
||||||
|
- 1.1.1.1
|
||||||
|
- 8.8.8.8
|
||||||
|
- 223.5.5.5
|
||||||
|
- https://1.1.1.1/dns-query
|
||||||
- https://doh.pub/dns-query
|
- https://doh.pub/dns-query
|
||||||
fallback-filter:
|
fallback-filter:
|
||||||
geoip: true
|
geoip: true
|
||||||
geoip-code: CN
|
geoip-code: CN # 如果是国内的网址,使用nameserver解析到的地址
|
||||||
domain:
|
domain:
|
||||||
- oa.cdcyy.cn
|
- '+.google.com'
|
||||||
- ir.hq.cmcc
|
- '+.facebook.com'
|
||||||
- ywzc.cdcyy.cn
|
- '+.youtube.com'
|
||||||
- "*.hq.cmcc"
|
|
||||||
- cps.hq.cmcc
|
|
||||||
ipcidr:
|
ipcidr:
|
||||||
- 240.0.0.0/4
|
- 240.0.0.0/8
|
||||||
- 192.168.78.0/24
|
# Lookup domains via specific nameservers
|
||||||
- 192.168.34.0/24
|
nameserver-policy:
|
||||||
- 192.168.35.0/24
|
'oa.cdcyy.cn': '192.168.78.39'
|
||||||
|
'+.hq.cmcc': '192.168.78.39'
|
||||||
|
'ir.hq.cmcc': '192.168.78.39'
|
||||||
|
'+.cdcyy.cn': '192.168.78.39'
|
||||||
|
'+.uavcmlc.com': '192.168.34.40'
|
||||||
|
'+.ops.uavcmlc.com': '192.168.34.40'
|
||||||
|
|
||||||
proxies:
|
proxies:
|
||||||
- {"type":"vmess","name":"us-central-free","ws-opts":{"path":"/vmess"},"server":"northflank.107421.xyz","port":443,"uuid":"de04add9-5c68-8bab-950c-08cd5320df18","alterId":0,"cipher":"auto","network":"ws","tls":true}
|
- {"type":"vmess","name":"us-central-free","ws-opts":{"path":"/vmess"},"server":"northflank.107421.xyz","port":443,"uuid":"de04add9-5c68-8bab-950c-08cd5320df18","alterId":0,"cipher":"auto","network":"ws","tls":true}
|
||||||
- {"type":"trojan","name":"LosAngels-BanH-Trojan","server":"89.208.251.209","port":443,"password":"V2ryStr0ngP0ss","udp":true,"skip-cert-verify":false,"sni":"xx.l4.cc.nn.107421.xyz","network":"tcp","ws-opts":{"headers":{"host":"xx.l4.cc.nn.107421.xyzh2,http/1.1"}}}
|
- {"type":"trojan","name":"LosAngels-BanH-Trojan","server":"89.208.251.209","port":443,"password":"V2ryStr0ngP0ss","udp":true,"skip-cert-verify":false,"sni":"xx.l4.cc.nn.107421.xyz","network":"tcp","ws-opts":{"headers":{"host":"xx.l4.cc.nn.107421.xyzh2,http/1.1"}}}
|
||||||
|
|||||||
@@ -36,4 +36,4 @@
|
|||||||
"protocol": "freedom"
|
"protocol": "freedom"
|
||||||
}
|
}
|
||||||
]
|
]
|
||||||
}
|
}
|
||||||
|
|||||||
Reference in New Issue
Block a user