[Bug] v0.46.014-beta 之后新的版本dns转发是不是有问题，新版本无法通过VPN流量自动分流

[gygy]

Verify Steps

• Tracker 我已经在 Issue Tracker 中找过我要提出的问题
• Branch 我知道 OpenClash 的 Dev 分支切换开关位于插件设置-版本更新中，或者我会手动下载并安装 Dev 分支的 OpenClash
• Latest 我已经使用最新 Dev 版本测试过，问题依旧存在
• Relevant 我知道 OpenClash 与 内核(Core)、控制面板(Dashboard)、在线订阅转换(Subconverter)等项目之间无直接关系，仅相互调用
• Definite 这确实是 OpenClash 出现的问题
• Contributors 我有能力协助 OpenClash 开发并解决此问题
• Meaningless 我提交的是无意义的催促更新或修复请求

OpenClash Version

v0.46.014-beta

Bug on Environment

Immortalwrt

OpenWrt Version

ImmortalWrt 23.05.3 r27917

Bug on Platform

Linux-amd64(x86-64)

Describe the Bug

使用情况描述：
v0.46.014-beta是最后一版支持 TUN 内核的版本，往后一版的 v0.46.031-beta版本开始移除 Dev 和 TUN 内核的支持。
v0.46.014-beta 是目前我自己使用最稳定，速度最快的版本，前面一直升级到v0.46.014-beta也没有任何问题。
使用环境：
1、ros+ImmortalWrt 23.05.3 r27917(虚拟机，旁路由)
2、内网由ros分配dhcp 及 分配dns、网关。
3、旁路由只安装了openclash。需要走特殊流量的客户端 由 ros控制 才走旁路由。旁路由挂了，会秒切换到主路由的dns、网关（无感知，不会断网）。
4、手机上，通过vpn回来，流量自动通过旁路由 自动走特殊流量。
以上模式，在v0.46.014-beta及更前的版本一直非常正常及稳定。 但v0.46.014-beta 之后的版本，尝试升级了几次，通过VPN回来流量自动通过旁路由 自动走特殊流量这个一直有问题。

To Reproduce

1. 配置不动，升级到v0.46.014-beta 之后的新版本 (包括最新版本v0.46.064、开发版本)。一旦升级到v0.46.014-beta 之后的新版本，都会复现此问题(VPN回来不会自动特殊走流量)。
2. 只要回退到v0.46.014-beta 版本，问题就解决了。
3. v0.46.014-beta 之后的版本，尝试升级了几次（包括反复测试修改不同的配置，都无法解决问题），通过VPN回来流量自动通过旁路由 自动走特殊流量这个一直有问题。

OpenClash Log

升级到最新版本的调式日志
OpenClash 调试日志

生成时间: 2025-01-30 11:00:52
插件版本: 0.46.064
隐私提示: 上传此日志前请注意检查、屏蔽公网IP、节点、密码等相关敏感信息



#===================== 系统信息 =====================#

主机型号: QEMU Standard PC (i440FX + PIIX, 1996)
固件版本: ImmortalWrt 23.05.3 r27917-81a1f98d5b
LuCI版本: git-23.051.66410-a505bb1
内核版本: 5.15.162
处理器架构: x86_64

#此项有值时,如不使用IPv6,建议到网络-接口-lan的设置中禁用IPV6的DHCP
IPV6-DHCP: 

DNS劫持: Dnsmasq 转发
#DNS劫持为Dnsmasq时，此项结果应仅有配置文件的DNS监听地址
Dnsmasq转发设置: 127.0.*.*#7874

#===================== 依赖检查 =====================#

dnsmasq-full: 已安装
dnsmasq-full(ipset): 未安装
dnsmasq-full(nftset): 已安装
coreutils: 已安装
coreutils-nohup: 已安装
bash: 已安装
curl: 已安装
ca-certificates: 已安装
ipset: 已安装
ip-full: 已安装
libcap: 已安装
libcap-bin: 已安装
ruby: 已安装
ruby-yaml: 已安装
ruby-psych: 已安装
ruby-pstore: 已安装
kmod-tun(TUN模式): 已安装
luci-compat(Luci >= 19.07): 已安装
kmod-inet-diag(PROCESS-NAME): 已安装
unzip: 已安装
kmod-nft-tproxy: 已安装

#===================== 内核检查 =====================#

运行状态: 运行中
运行内核：Meta
进程pid: 32221
运行权限: 32221: cap_dac_override,cap_net_bind_service,cap_net_admin,cap_net_raw,cap_sys_ptrace,cap_sys_admin,cap_sys_resource=eip
运行用户: nobody
已选择的架构: linux-amd64

#下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限

Meta内核版本: alpha-g368b1e1
Meta内核文件: 存在
Meta内核运行权限: 正常

#===================== 插件设置 =====================#

当前配置文件: /etc/openclash/config/fapfog-new.yaml
启动配置文件: /etc/openclash/fapfog-new.yaml
运行模式: fake-ip-mix
默认代理模式: rule
UDP流量转发(tproxy): 停用
自定义DNS: 启用
IPV6代理: 停用
IPV6-DNS解析: 停用
禁用Dnsmasq缓存: 启用
自定义规则: 停用
仅允许内网: 停用
仅代理命中规则流量: 停用
仅允许常用端口流量: 停用
绕过中国大陆IP: 启用
路由本机代理: 启用

#启动异常时建议关闭此项后重试
混合节点: 停用
保留配置: 停用

#启动异常时建议关闭此项后重试
第三方规则: 停用

#===================== 配置文件 =====================#

port: 7890
socks-port: 7891
allow-lan: true
mode: rule
log-level: info
external-controller: 0.0.*.*:9090
proxy-groups:
- name: "\U0001F680 节点选择"
  type: select
  proxies:
  - "♻️ 自动选择"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F680 手动切换"
  type: select
  proxies:
  - 距离下次重置剩余：3 天
  - "【永久域名Tafog.com】"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-BGP-01"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-Lite-02"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-HGC-03"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-HGC-04"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-BGP-05"
  - "\U0001F1F0\U0001F1F7 Bronze-韩国-Cloud-01"
  - "\U0001F1EF\U0001F1F5 Bronze-日本-onep-01"
  - "\U0001F1E8\U0001F1F3 Bronze-台湾-Hinet-01"
  - "\U0001F1F8\U0001F1EC Bronze-新加坡-onep-01"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-onep-01"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-onep-02"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-Los-03"
  - "\U0001F1ED\U0001F1F0 Silver-香港-HKG-01"
  - "\U0001F1ED\U0001F1F0 Silver-香港-HKG-02"
  - "\U0001F1ED\U0001F1F0 Silver-香港-BGP-03"
  - "\U0001F1ED\U0001F1F0 Silver-香港-LMT-04"
  - "\U0001F1ED\U0001F1F0 Silver-香港-BGPZ-05"
  - "\U0001F1F0\U0001F1F7 Silver-韩国-商宽-01"
  - "\U0001F1E8\U0001F1F3 Silver-台湾-商宽-01"
  - "\U0001F1FA\U0001F1F8 Silver-美国-Host-01"
  - "\U0001F1FA\U0001F1F8 Silver-美国-BGP-02"
  - "\U0001F1FA\U0001F1F8 Silver-美国-CN2-03"
  - "\U0001F1FA\U0001F1F8 Silver-美国-Vegas-04"
  - "\U0001F1F9\U0001F1ED Silver-泰国-商宽-01"
  - "\U0001F1F2\U0001F1FE Silver-马来西亚-01"
  - "\U0001F1EF\U0001F1F5 Silver-日本-商宽-01"
  - "\U0001F1EF\U0001F1F5 Silver-日本-商宽-02"
  - "\U0001F1F8\U0001F1EC Silver-新加坡-01"
  - "\U0001F1F8\U0001F1EC Silver-新加坡-02"
  - "\U0001F1EF\U0001F1F5 Gold-日本-家宽-01"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BGP-01"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BGP-02"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BN-03"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BN-04"
  - "\U0001F1ED\U0001F1F0 Gold-香港-Pro-05"
  - "\U0001F1ED\U0001F1F0 Gold-香港-Pro-06"
  - "\U0001F1ED\U0001F1F0 Gold-香港-HEHIK-07"
  - "\U0001F1ED\U0001F1F0 Gold-香港-HEHIK-08"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Gost-01"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Cn2-02"
  - "\U0001F1FA\U0001F1F8 Gold-美国-原生-03"
  - "\U0001F1FA\U0001F1F8 Gold-美国-原生-04"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Vegas-05"
  - "\U0001F1E8\U0001F1F3 Gold-台湾-Hinet-01"
  - "\U0001F1F8\U0001F1EC Gold-新加坡-01"
  - "\U0001F1F8\U0001F1EC Gold-新加坡-02"
  - "\U0001F1F0\U0001F1F7 Gold-韩国-KR-01"
  - "\U0001F1EE\U0001F1F3 Gold-印度-Ind-01"
  - "\U0001F1FB\U0001F1F3 Gold-越南-Vie-01"
  - "\U0001F1F9\U0001F1ED Gold-泰国-Tha-01"
  - "\U0001F1EC\U0001F1E7 Gold-英国-Gbr-01"
  - "\U0001F1E9\U0001F1EA Gold-德国-Ger-01"
  - "\U0001F1F7\U0001F1FA Gold-俄罗斯-RUM-01"
  - "\U0001F1F2\U0001F1FE Gold-马来西亚-01"
  - "\U0001F1E8\U0001F1E6 Gold-加拿大-ProCA"
  - "\U0001F1F9\U0001F1F7 Gold-土耳其-Tr-01"
- name: "♻️ 自动选择"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - 距离下次重置剩余：3 天
  - "【永久域名Tafog.com】"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-BGP-01"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-Lite-02"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-HGC-03"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-HGC-04"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-BGP-05"
  - "\U0001F1F0\U0001F1F7 Bronze-韩国-Cloud-01"
  - "\U0001F1EF\U0001F1F5 Bronze-日本-onep-01"
  - "\U0001F1E8\U0001F1F3 Bronze-台湾-Hinet-01"
  - "\U0001F1F8\U0001F1EC Bronze-新加坡-onep-01"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-onep-01"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-onep-02"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-Los-03"
  - "\U0001F1ED\U0001F1F0 Silver-香港-HKG-01"
  - "\U0001F1ED\U0001F1F0 Silver-香港-HKG-02"
  - "\U0001F1ED\U0001F1F0 Silver-香港-BGP-03"
  - "\U0001F1ED\U0001F1F0 Silver-香港-LMT-04"
  - "\U0001F1ED\U0001F1F0 Silver-香港-BGPZ-05"
  - "\U0001F1F0\U0001F1F7 Silver-韩国-商宽-01"
  - "\U0001F1E8\U0001F1F3 Silver-台湾-商宽-01"
  - "\U0001F1FA\U0001F1F8 Silver-美国-Host-01"
  - "\U0001F1FA\U0001F1F8 Silver-美国-BGP-02"
  - "\U0001F1FA\U0001F1F8 Silver-美国-CN2-03"
  - "\U0001F1FA\U0001F1F8 Silver-美国-Vegas-04"
  - "\U0001F1F9\U0001F1ED Silver-泰国-商宽-01"
  - "\U0001F1F2\U0001F1FE Silver-马来西亚-01"
  - "\U0001F1EF\U0001F1F5 Silver-日本-商宽-01"
  - "\U0001F1EF\U0001F1F5 Silver-日本-商宽-02"
  - "\U0001F1F8\U0001F1EC Silver-新加坡-01"
  - "\U0001F1F8\U0001F1EC Silver-新加坡-02"
  - "\U0001F1EF\U0001F1F5 Gold-日本-家宽-01"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BGP-01"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BGP-02"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BN-03"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BN-04"
  - "\U0001F1ED\U0001F1F0 Gold-香港-Pro-05"
  - "\U0001F1ED\U0001F1F0 Gold-香港-Pro-06"
  - "\U0001F1ED\U0001F1F0 Gold-香港-HEHIK-07"
  - "\U0001F1ED\U0001F1F0 Gold-香港-HEHIK-08"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Gost-01"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Cn2-02"
  - "\U0001F1FA\U0001F1F8 Gold-美国-原生-03"
  - "\U0001F1FA\U0001F1F8 Gold-美国-原生-04"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Vegas-05"
  - "\U0001F1E8\U0001F1F3 Gold-台湾-Hinet-01"
  - "\U0001F1F8\U0001F1EC Gold-新加坡-01"
  - "\U0001F1F8\U0001F1EC Gold-新加坡-02"
  - "\U0001F1F0\U0001F1F7 Gold-韩国-KR-01"
  - "\U0001F1EE\U0001F1F3 Gold-印度-Ind-01"
  - "\U0001F1FB\U0001F1F3 Gold-越南-Vie-01"
  - "\U0001F1F9\U0001F1ED Gold-泰国-Tha-01"
  - "\U0001F1EC\U0001F1E7 Gold-英国-Gbr-01"
  - "\U0001F1E9\U0001F1EA Gold-德国-Ger-01"
  - "\U0001F1F7\U0001F1FA Gold-俄罗斯-RUM-01"
  - "\U0001F1F2\U0001F1FE Gold-马来西亚-01"
  - "\U0001F1E8\U0001F1E6 Gold-加拿大-ProCA"
  - "\U0001F1F9\U0001F1F7 Gold-土耳其-Tr-01"
- name: "\U0001F4F2 电报消息"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4AC OpenAi"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4F9 油管视频"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F3A5 奈飞视频"
  type: select
  proxies:
  - "\U0001F3A5 奈飞节点"
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4FA 巴哈姆特"
  type: select
  proxies:
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F680 节点选择"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F4FA 哔哩哔哩"
  type: select
  proxies:
  - "\U0001F3AF 全球直连"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
- name: "\U0001F30D 国外媒体"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
  - DIRECT
- name: "\U0001F30F 国内媒体"
  type: select
  proxies:
  - DIRECT
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F680 手动切换"
- name: "\U0001F4E2 谷歌FCM"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: Ⓜ️ 微软Bing
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: Ⓜ️ 微软云盘
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: Ⓜ️ 微软服务
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F34E 苹果服务"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F3AE 游戏平台"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F3B6 网易音乐"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
- name: "\U0001F3AF 全球直连"
  type: select
  proxies:
  - DIRECT
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
- name: "\U0001F6D1 广告拦截"
  type: select
  proxies:
  - REJECT
  - DIRECT
- name: "\U0001F343 应用净化"
  type: select
  proxies:
  - REJECT
  - DIRECT
- name: "\U0001F41F 漏网之鱼"
  type: select
  proxies:
  - "\U0001F680 节点选择"
  - "♻️ 自动选择"
  - DIRECT
  - "\U0001F1ED\U0001F1F0 香港节点"
  - "\U0001F1E8\U0001F1F3 台湾节点"
  - "\U0001F1F8\U0001F1EC 狮城节点"
  - "\U0001F1EF\U0001F1F5 日本节点"
  - "\U0001F1FA\U0001F1F2 美国节点"
  - "\U0001F1F0\U0001F1F7 韩国节点"
  - "\U0001F680 手动切换"
- name: "\U0001F1ED\U0001F1F0 香港节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1ED\U0001F1F0 Bronze-香港-BGP-01"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-Lite-02"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-HGC-03"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-HGC-04"
  - "\U0001F1ED\U0001F1F0 Bronze-香港-BGP-05"
  - "\U0001F1ED\U0001F1F0 Silver-香港-HKG-01"
  - "\U0001F1ED\U0001F1F0 Silver-香港-HKG-02"
  - "\U0001F1ED\U0001F1F0 Silver-香港-BGP-03"
  - "\U0001F1ED\U0001F1F0 Silver-香港-LMT-04"
  - "\U0001F1ED\U0001F1F0 Silver-香港-BGPZ-05"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BGP-01"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BGP-02"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BN-03"
  - "\U0001F1ED\U0001F1F0 Gold-香港-BN-04"
  - "\U0001F1ED\U0001F1F0 Gold-香港-Pro-05"
  - "\U0001F1ED\U0001F1F0 Gold-香港-Pro-06"
  - "\U0001F1ED\U0001F1F0 Gold-香港-HEHIK-07"
  - "\U0001F1ED\U0001F1F0 Gold-香港-HEHIK-08"
- name: "\U0001F1EF\U0001F1F5 日本节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1EF\U0001F1F5 Bronze-日本-onep-01"
  - "\U0001F1EF\U0001F1F5 Silver-日本-商宽-01"
  - "\U0001F1EF\U0001F1F5 Silver-日本-商宽-02"
  - "\U0001F1EF\U0001F1F5 Gold-日本-家宽-01"
- name: "\U0001F1FA\U0001F1F2 美国节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 150
  proxies:
  - "\U0001F1FA\U0001F1F8 Bronze-美国-onep-01"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-onep-02"
  - "\U0001F1FA\U0001F1F8 Bronze-美国-Los-03"
  - "\U0001F1FA\U0001F1F8 Silver-美国-Host-01"
  - "\U0001F1FA\U0001F1F8 Silver-美国-BGP-02"
  - "\U0001F1FA\U0001F1F8 Silver-美国-CN2-03"
  - "\U0001F1FA\U0001F1F8 Silver-美国-Vegas-04"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Gost-01"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Cn2-02"
  - "\U0001F1FA\U0001F1F8 Gold-美国-原生-03"
  - "\U0001F1FA\U0001F1F8 Gold-美国-原生-04"
  - "\U0001F1FA\U0001F1F8 Gold-美国-Vegas-05"
- name: "\U0001F1E8\U0001F1F3 台湾节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1E8\U0001F1F3 Bronze-台湾-Hinet-01"
  - "\U0001F1E8\U0001F1F3 Silver-台湾-商宽-01"
  - "\U0001F1E8\U0001F1F3 Gold-台湾-Hinet-01"
- name: "\U0001F1F8\U0001F1EC 狮城节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1F8\U0001F1EC Bronze-新加坡-onep-01"
  - "\U0001F1F8\U0001F1EC Silver-新加坡-01"
  - "\U0001F1F8\U0001F1EC Silver-新加坡-02"
  - "\U0001F1F8\U0001F1EC Gold-新加坡-01"
  - "\U0001F1F8\U0001F1EC Gold-新加坡-02"
- name: "\U0001F1F0\U0001F1F7 韩国节点"
  type: url-test
  url: http://www.gstatic.com/generate_204
  interval: 300
  tolerance: 50
  proxies:
  - "\U0001F1F0\U0001F1F7 Bronze-韩国-Cloud-01"
  - "\U0001F1F0\U0001F1F7 Silver-韩国-商宽-01"
  - "\U0001F1F0\U0001F1F7 Gold-韩国-KR-01"
- name: "\U0001F3A5 奈飞节点"
  type: select
  proxies:
  - DIRECT
rules:
- "RULE-SET,LocalAreaNetwork,\U0001F3AF 全球直连"
- "RULE-SET,UnBan,\U0001F3AF 全球直连"
- "RULE-SET,BanAD,\U0001F6D1 广告拦截"
- "RULE-SET,BanProgramAD,\U0001F343 应用净化"
- "RULE-SET,GoogleFCM,\U0001F4E2 谷歌FCM"
- "RULE-SET,GoogleCN,\U0001F3AF 全球直连"
- "RULE-SET,SteamCN,\U0001F3AF 全球直连"
- RULE-SET,Bing,Ⓜ️ 微软Bing
- RULE-SET,OneDrive,Ⓜ️ 微软云盘
- RULE-SET,Microsoft,Ⓜ️ 微软服务
- "RULE-SET,Apple,\U0001F34E 苹果服务"
- "RULE-SET,Telegram,\U0001F4F2 电报消息"
- "RULE-SET,OpenAI,\U0001F4AC OpenAi"
- "RULE-SET,NetEaseMusic,\U0001F3B6 网易音乐"
- "RULE-SET,Epic,\U0001F3AE 游戏平台"
- "RULE-SET,Origin,\U0001F3AE 游戏平台"
- "RULE-SET,Sony,\U0001F3AE 游戏平台"
- "RULE-SET,Steam,\U0001F3AE 游戏平台"
- "RULE-SET,Nintendo,\U0001F3AE 游戏平台"
- "RULE-SET,YouTube,\U0001F4F9 油管视频"
- "RULE-SET,Netflix,\U0001F3A5 奈飞视频"
- "RULE-SET,Bahamut,\U0001F4FA 巴哈姆特"
- "RULE-SET,BiliBiliIntl,\U0001F4FA 哔哩哔哩"
- "RULE-SET,BiliBili,\U0001F4FA 哔哩哔哩"
- "RULE-SET,ChinaMedia,\U0001F30F 国内媒体"
- "RULE-SET,ProxyMedia,\U0001F30D 国外媒体"
- "RULE-SET,ProxyGFWlist,\U0001F680 节点选择"
- "RULE-SET,ChinaDomain,\U0001F3AF 全球直连"
- "RULE-SET,ChinaCompanyIp,\U0001F3AF 全球直连"
- "RULE-SET,Download,\U0001F3AF 全球直连"
- "GEOIP,CN,\U0001F3AF 全球直连"
- "MATCH,\U0001F41F 漏网之鱼"
rule-providers:
  LocalAreaNetwork:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvTG9jYWxBcmVhTmV0d29yay5saXN0
    path: "./rule_provider/rule-provider_LocalAreaNetwork.yaml"
    interval: 86400
  UnBan:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvVW5CYW4ubGlzdA
    path: "./rule_provider/rule-provider_UnBan.yaml"
    interval: 86400
  BanAD:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvQmFuQUQubGlzdA
    path: "./rule_provider/rule-provider_BanAD.yaml"
    interval: 86400
  BanProgramAD:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvQmFuUHJvZ3JhbUFELmxpc3Q
    path: "./rule_provider/rule-provider_BanProgramAD.yaml"
    interval: 86400
  GoogleFCM:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3MMUvU3VyZ2UvR29vZ2xlRkNNL0dvb2dsZUZDTS5saXN0
    path: "./rule_provider/rule-provider_GoogleFCM.yaml"
    interval: 86400
  GoogleCN:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvR29vZ2xlQ04ubGlzdA
    path: "./rule_provider/rule-provider_GoogleCN.yaml"
    interval: 86400
  SteamCN:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU88888HM6Ly9999999999UNOLmxpc3Q
    path: "./rule_provider/rule-provider_SteamCN.yaml"
    interval: 86400
  Bing:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvQmluZy9CaW5nLmxpc3Q
    path: "./rule_provider/rule-provider_Bing.yaml"
    interval: 86400
  OneDrive:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvT25lRHJpdmUvT25lRHJpdmUubGlzdA
    path: "./rule_provider/rule-provider_OneDrive.yaml"
    interval: 86400
  Microsoft:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvTWljcm9zb2Z0L01pY3Jvc29mdC5saXN0
    path: "./rule_provider/rule-provider_Microsoft.yaml"
    interval: 86400
  Apple:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvQXBwbGUvQXBwbGUubGlzdA
    path: "./rule_provider/rule-provider_Apple.yaml"
    interval: 86400
  Telegram:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvVGVsZWdyYW0vVGVsZWdyYW0ubGlzdA
    path: "./rule_provider/rule-provider_Telegram.yaml"
    interval: 86400
  OpenAI:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvT3BlbkFJL09wZW5BSS5saXN0
    path: "./rule_provider/rule-provider_OpenAI.yaml"
    interval: 86400
  NetEaseMusic:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvTmV0RWFzZU11c2ljL05ldEVhc2VNdXNpYy5saXN0
    path: "./rule_provider/rule-provider_NetEaseMusic.yaml"
    interval: 86400
  Epic:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvRXBpYy9FcGljLmxpc3Q
    path: "./rule_provider/rule-provider_Epic.yaml"
    interval: 86400
  Origin:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvT3JpZ2luL09yaWdpbi5saXN0
    path: "./rule_provider/rule-provider_Origin.yaml"
    interval: 86400
  Sony:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvU29ueS9Tb255Lmxpc3Q
    path: "./rule_provider/rule-provider_Sony.yaml"
    interval: 86400
  Steam:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvU3RlYW0vU3RlYW0ubGlzdA
    path: "./rule_provider/rule-provider_Steam.yaml"
    interval: 86400
  Nintendo:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvTmludGVuZG8vTmludGVuZG8ubGlzdA
    path: "./rule_provider/rule-provider_Nintendo.yaml"
    interval: 86400
  YouTube:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvWW91VHViZS9Zb3VUdWJlLmxpc3Q
    path: "./rule_provider/rule-provider_YouTube.yaml"
    interval: 86400
  Netflix:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvTmV0ZmxpeC9OZXRmbGl4Lmxpc3Q
    path: "./rule_provider/rule-provider_Netflix.yaml"
    interval: 86400
  Bahamut:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvQmFoYW11dC9CYWhhbXV0Lmxpc3Q
    path: "./rule_provider/rule-provider_Bahamut.yaml"
    interval: 86400
  BiliBiliIntl:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvQmlsaUJpbGlJbnRsL0JpbGlCaWxpSW50bC5saXN0
    path: "./rule_provider/rule-provider_BiliBiliIntl.yaml"
    interval: 86400
  BiliBili:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvQmlsaUJpbGkvQmlsaUJpbGkubGlzdA
    path: "./rule_provider/rule-provider_BiliBili.yaml"
    interval: 86400
  ChinaMedia:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvQ2hpbmFNZWRpYS9DaGluYU1lZGlhLmxpc3Q
    path: "./rule_provider/rule-provider_ChinaMedia.yaml"
    interval: 86400
  ProxyMedia:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvUHJveHlNZWRp55555555
    path: "./rule_provider/rule-provider_ProxyMedia.yaml"
    interval: 86400
  ProxyGFWlist:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvUHJveHlHRldsaXN0Lmxpc3Q
    path: "./rule_provider/rule-provider_ProxyGFWlist.yaml"
    interval: 86400
  ChinaDomain:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvQ2hpbmFEb21haW4ubGlzdA
    path: "./rule_provider/rule-provider_ChinaDomain.yaml"
    interval: 86400
  ChinaCompanyIp:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL088888HM6Ly9999999999ZXIvQ2xhc2gvQ2hpbmFDb21wYW55SXAubGlzdA
    path: "./rule_provider/rule-provider_ChinaCompanyIp.yaml"
    interval: 86400
  Download:
    type: http
    behavior: classical
    url: http://127.0.*.*:25500/getruleset?type=6&url=88888HM6Ly9999999999aHVidXNlcmNvbnRlbnQuY29tL2JsYWNrbWF0cml4Ny9pb3NfcnVsZV9zY3JpcHQvbWFzdGVyL3J1bGUvU3VyZ2UvRG93bmxvYWQvRG93bmxvYWQubGlzdA
    path: "./rule_provider/rule-provider_Download.yaml"
    interval: 86400
dns:
  enable: true
  ipv6: false
  enhanced-mode: fake-ip
  fake-ip-range: 198.18.*.*/16
  listen: 0.0.*.*:7874
  nameserver:
  - 192.168.*.*
  default-nameserver:
  - 192.168.*.*
  fake-ip-filter-mode: blacklist
  fake-ip-filter:
  - "*.lan"
  - "*.localdomain"
  - "*.example"
  - "*.invalid"
  - "*.localhost"
  - "*.test"
  - "*.local"
  - "*.home.arpa"
  - time.*.com
  - time.*.gov
  - time.*.edu.cn
  - time.*.apple.com
  - time-ios.apple.com
  - time1.*.com
  - time2.*.com
  - time3.*.com
  - time4.*.com
  - time5.*.com
  - time6.*.com
  - time7.*.com
  - ntp.*.com
  - ntp1.*.com
  - ntp2.*.com
  - ntp3.*.com
  - ntp4.*.com
  - ntp5.*.com
  - ntp6.*.com
  - ntp7.*.com
  - "*.time.edu.cn"
  - "*.ntp.org.cn"
  - "+.pool.ntp.org"
  - time1.cloud.tencent.com
  - music.163.com
  - "*.music.163.com"
  - "*.126.net"
  - musicapi.taihe.com
  - music.taihe.com
  - songsearch.kugou.com
  - trackercdn.kugou.com
  - "*.kuwo.cn"
  - api-jooxtt.sanook.com
  - api.joox.com
  - joox.com
  - y.qq.com
  - "*.y.qq.com"
  - streamoc.music.tc.qq.com
  - mobileoc.music.tc.qq.com
  - isure.stream.qqmusic.qq.com
  - dl.stream.qqmusic.qq.com
  - aqqmusic.tc.qq.com
  - amobile.music.tc.qq.com
  - "*.xiami.com"
  - "*.music.migu.cn"
  - music.migu.cn
  - "+.msftconnecttest.com"
  - "+.msftncsi.com"
  - localhost.ptlogin2.qq.com
  - localhost.sec.qq.com
  - "+.qq.com"
  - "+.tencent.com"
  - "+.srv.nintendo.net"
  - "*.n.n.srv.nintendo.net"
  - "+.stun.playstation.net"
  - xbox.*.*.microsoft.com
  - "*.*.xboxlive.com"
  - xbox.*.microsoft.com
  - xnotify.xboxlive.com
  - "+.battlenet.com.cn"
  - "+.wotgame.cn"
  - "+.wggames.cn"
  - "+.wowsgame.cn"
  - "+.wargaming.net"
  - proxy.golang.org
  - stun.*.*
  - stun.*.*.*
  - "+.stun.*.*"
  - "+.stun.*.*.*"
  - "+.stun.*.*.*.*"
  - "+.stun.*.*.*.*.*"
  - heartbeat.belkin.com
  - "*.linksys.com"
  - "*.linksyssmartwifi.com"
  - "*.router.asus.com"
  - mesu.apple.com
  - swscan.apple.com
  - swquery.apple.com
  - swdownload.apple.com
  - swcdn.apple.com
  - swdist.apple.com
  - lens.l.google.com
  - stun.l.google.com
  - na.b.g-tun.com
  - "+.nflxvideo.net"
  - "*.square-enix.com"
  - "*.finalfantasyxiv.com"
  - "*.ffxiv.com"
  - "*.ff14.sdo.com"
  - ff.dorado.sdo.com
  - "*.mcdn.bilivideo.cn"
  - "+.media.dssott.com"
  - shark007.net
  - Mijia Cloud
  - "+.cmbchina.com"
  - "+.cmbimg.com"
  - local.adguard.org
  - "+.sandai.net"
  - "+.n0808.com"
  - "+.services.googleapis.cn"
  - geosite:cn
redir-port: 7892
tproxy-port: 7895
mixed-port: 7893
bind-address: "*"
external-ui: "/usr/share/openclash/ui"
keep-alive-interval: 15
keep-alive-idle: 600
ipv6: false
sniffer:
  enable: true
  parse-pure-ip: true
tun:
  enable: true
  stack: system
  device: utun
  dns-hijack:
  - tcp://any:53
  endpoint-independent-nat: true
  auto-route: false
  auto-detect-interface: false
  auto-redirect: false
  strict-route: false
profile:
  store-selected: true
routing-mark: 6666
authentication:
- Clash:cHr8VMIu

#===================== 自定义覆写设置 =====================#

#!/bin/sh
. /usr/share/openclash/ruby.sh
. /usr/share/openclash/log.sh
. /lib/functions.sh

# This script is called by /etc/init.d/openclash
# Add your custom overwrite scripts here, they will be take effict after the OpenClash own srcipts

LOG_OUT "Tip: Start Running Custom Overwrite Scripts..."
LOGTIME=$(echo $(date "+%Y-%m-%d %H:%M:%S"))
LOG_FILE="/tmp/openclash.log"
CONFIG_FILE="$1" #config path

#Simple Demo:
    #General Demo
    #1--config path
    #2--key name
    #3--value
    #ruby_edit "$CONFIG_FILE" "['redir-port']" "7892"
    #ruby_edit "$CONFIG_FILE" "['secret']" "123456"
    #ruby_edit "$CONFIG_FILE" "['dns']['enable']" "true"

    #Hash Demo
    #1--config path
    #2--key name
    #3--hash type value
    #ruby_edit "$CONFIG_FILE" "['experimental']" "{'sniff-tls-sni'=>true}"
    #ruby_edit "$CONFIG_FILE" "['sniffer']" "{'sniffing'=>['tls','http']}"

    #Array Demo:
    #1--config path
    #2--key name
    #3--position(start from 0, end with -1)
    #4--value
    #ruby_arr_insert "$CONFIG_FILE" "['dns']['nameserver']" "0" "114.114.*.*"

    #Array Add From Yaml File Demo:
    #1--config path
    #2--key name
    #3--position(start from 0, end with -1)
    #4--value file path
    #5--value key name in #4 file
    #ruby_arr_add_file "$CONFIG_FILE" "['dns']['fallback-filter']['ipcidr']" "0" "/etc/openclash/custom/openclash_custom_fallback_filter.yaml" "['fallback-filter']['ipcidr']"

#Ruby Script Demo:
    #ruby -ryaml -rYAML -I "/usr/share/openclash" -E UTF-8 -e "
    #   begin
    #      Value = YAML.load_file('$CONFIG_FILE');
    #   rescue Exception => e
    #      puts '${LOGTIME} Error: Load File Failed,【' + e.message + '】';
    #   end;

        #General
    #   begin
    #   Thread.new{
    #      Value['redir-port']=7892;
    #      Value['tproxy-port']=7895;
    #      Value['port']=7890;
    #      Value['socks-port']=7891;
    #      Value['mixed-port']=7893;
    #   }.join;

    #   rescue Exception => e
    #      puts '${LOGTIME} Error: Set General Failed,【' + e.message + '】';
    #   ensure
    #      File.open('$CONFIG_FILE','w') {|f| YAML.dump(Value, f)};
    #   end" 2>/dev/null >> $LOG_FILE

exit 0
#===================== 自定义防火墙设置 =====================#

#!/bin/sh
. /usr/share/openclash/log.sh
. /lib/functions.sh

# This script is called by /etc/init.d/openclash
# Add your custom firewall rules here, they will be added after the end of the OpenClash iptables rules

LOG_OUT "Tip: Start Add Custom Firewall Rules..."

exit 0
#===================== IPTABLES 防火墙设置 =====================#

#IPv4 NAT chain


#IPv4 Mangle chain


#IPv4 Filter chain


#IPv6 NAT chain


#IPv6 Mangle chain


#IPv6 Filter chain


#===================== NFTABLES 防火墙设置 =====================#

table inet fw4 {
	chain input {
		type filter hook input priority filter; policy drop;
		meta l4proto { tcp, udp } iifname "utun" counter packets 0 bytes 0 accept comment "OpenClash TUN Input"
		iifname "lo" accept comment "!fw4: Accept traffic from loopback"
		ct state established,related accept comment "!fw4: Allow inbound established and related flows"
		iifname "br-lan" jump input_lan comment "!fw4: Handle lan IPv4/IPv6 input traffic"
		jump handle_reject
	}
}
table inet fw4 {
	chain forward {
		type filter hook forward priority filter; policy drop;
		oifname "utun" udp dport 443 ip daddr != @china_ip_route counter packets 21 bytes 23493 reject with icmp port-unreachable comment "OpenClash QUIC REJECT"
		meta l4proto { tcp, udp } iifname "utun" counter packets 7 bytes 652 accept comment "OpenClash TUN Forward"
		meta l4proto { tcp, udp } oifname "utun" counter packets 8 bytes 693 accept comment "OpenClash TUN Forward"
		meta l4proto { tcp, udp } flow add @ft
		ct state established,related accept comment "!fw4: Allow forwarded established and related flows"
		iifname "br-lan" jump forward_lan comment "!fw4: Handle lan IPv4/IPv6 forward traffic"
		jump handle_reject
	}
}
table inet fw4 {
	chain dstnat {
		type nat hook prerouting priority dstnat; policy accept;
		udp dport 53 counter packets 0 bytes 0 redirect to :53 comment "OpenClash DNS Hijack"
		tcp dport 53 counter packets 0 bytes 0 accept comment "OpenClash DNS Hijack"
		ip protocol tcp counter packets 113 bytes 6220 jump openclash
	}
}
table inet fw4 {
	chain srcnat {
		type nat hook postrouting priority srcnat; policy accept;
		meta nfproto ipv4 oifname "utun" counter packets 8 bytes 693 return comment "OpenClash TUN Postrouting"
		oifname "br-lan" jump srcnat_lan comment "!fw4: Handle lan IPv4/IPv6 srcnat traffic"
	}
}
table inet fw4 {
	chain nat_output {
		type nat hook output priority filter - 1; policy accept;
		meta skuid != 65534 udp dport 53 ip daddr 127.0.*.* counter packets 27 bytes 1716 redirect to :53 comment "OpenClash DNS Hijack"
		meta skuid != 65534 tcp dport 53 ip daddr 127.0.*.* counter packets 0 bytes 0 accept comment "OpenClash DNS Hijack"
		ip protocol tcp counter packets 241 bytes 14460 jump openclash_output
	}
}
table inet fw4 {
	chain mangle_prerouting {
		type filter hook prerouting priority mangle; policy accept;
		meta nfproto ipv4 tcp dport 53 counter packets 0 bytes 0 jump openclash_dns_hijack
		ip protocol udp counter packets 666 bytes 93957 jump openclash_mangle
	}
}
table inet fw4 {
	chain mangle_output {
		type route hook output priority mangle; policy accept;
		meta nfproto ipv4 meta l4proto { tcp, udp } counter packets 6958 bytes 4772098 jump openclash_mangle_output
	}
}
table inet fw4 {
	chain openclash {
		ip daddr @localnetwork counter packets 13 bytes 676 return
		ip daddr @wan_ac_black_ips counter packets 0 bytes 0 return
		ip daddr @china_ip_route ip daddr != @china_ip_route_pass counter packets 7 bytes 364 return
		ip protocol tcp counter packets 93 bytes 5180 redirect to :7892
	}
}
table inet fw4 {
	chain openclash_mangle {
		meta nfproto ipv4 udp sport 500 counter packets 0 bytes 0 return
		meta nfproto ipv4 udp sport 68 counter packets 10 bytes 3281 return
		meta l4proto { tcp, udp } iifname "utun" counter packets 7 bytes 652 return
		ip daddr @localnetwork counter packets 620 bytes 65838 return
		ip daddr @wan_ac_black_ips counter packets 0 bytes 0 return
		ip daddr @china_ip_route ip daddr != @china_ip_route_pass counter packets 0 bytes 0 return
		ip protocol udp counter packets 29 bytes 24186 jump openclash_upnp
		meta l4proto { tcp, udp } th dport 0-65535 meta mark set 0x00000162 counter packets 29 bytes 24186
	}
}
table inet fw4 {
	chain openclash_mangle_output {
		meta nfproto ipv4 udp sport 500 counter packets 0 bytes 0 return
		meta nfproto ipv4 udp sport 68 counter packets 0 bytes 0 return
		tcp dport 53 meta skuid != 65534 meta mark set 0x00000162 counter packets 0 bytes 0
		ip daddr @localnetwork counter packets 2815 bytes 4217701 return
		meta skuid != 65534 udp dport 0-65535 ip daddr 198.18.*.*/16 meta mark set 0x00000162 counter packets 0 bytes 0
	}
}
table inet fw4 {
	chain openclash_output {
		ip daddr @localnetwork counter packets 17 bytes 1020 return
		ip protocol tcp ip daddr 198.18.*.*/16 meta skuid != 65534 counter packets 20 bytes 1200 redirect to :7892
		meta skuid != 65534 ip daddr @wan_ac_black_ips counter packets 0 bytes 0 return
		meta skuid != 65534 ip daddr @china_ip_route ip daddr != @china_ip_route_pass counter packets 7 bytes 420 return
		ip protocol tcp meta skuid != 65534 counter packets 0 bytes 0 redirect to :7892
	}
}
table inet fw4 {
	chain openclash_dns_hijack {
	}
}

#===================== IPSET状态 =====================#


#===================== 路由表状态 =====================#

#IPv4

#route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
0.0.*.*         192.168.*.*    0.0.*.*         UG    0      0        0 br-lan
192.168.*.*    0.0.*.*         255.255.*.*   U     0      0        0 br-lan
198.18.*.*      0.0.*.*         255.255.*.* U     0      0        0 utun

#ip route list
default via 192.168.*.* dev br-lan proto static 
192.168.*.*/24 dev br-lan proto kernel scope link src 192.168.*.* 
198.18.*.*/30 dev utun proto kernel scope link src 198.18.*.* 

#ip rule show
0:	from all lookup local
8000:	from all fwmark 0x162 ipproto icmp lookup main
8001:	from all fwmark 0x162 lookup 354
32766:	from all lookup main
32767:	from all lookup default

#IPv6

#route -A inet6
Kernel IPv6 routing table
Destination                                 Next Hop                                Flags Metric Ref    Use Iface
fd2d:8357:225a::/48                         ::                                      !n    2147483647 2        0 lo      
fe80::/64                                   ::                                      U     256    1        0 br-lan  
fe80::/64                                   ::                                      U     256    1        0 utun    
::/0                                        ::                                      !n    -1     1        0 lo      
::1/128                                     ::                                      Un    0      4        0 lo      
fe80::/128                                  ::                                      Un    0      5        0 br-lan  
fe80::/128                                  ::                                      Un    0      3        0 utun    
fe80::*:*:*:225a/128               ::                                      Un    0      2        0 utun    
fe80::*:*:*:462/128                ::                                      Un    0      2        0 br-lan  
ff00::/8                                    ::                                      U     256    4        0 br-lan  
ff00::/8                                    ::                                      U     256    3        0 utun    
::/0                                        ::                                      !n    -1     1        0 lo      

#ip -6 route list
unreachable fd2d:8357:225a::/48 dev lo proto static metric 2147483647 pref medium
fe80::/64 dev br-lan proto kernel metric 256 pref medium
fe80::/64 dev utun proto kernel metric 256 pref medium

#ip -6 rule show
0:	from all lookup local
32766:	from all lookup main

#===================== Tun设备状态 =====================#

utun: tun

#===================== 端口占用状态 =====================#

tcp        0      0 198.18.*.*:41309        0.0.*.*:*               LISTEN      32221/clash
tcp        0      0 :::9090                 :::*                    LISTEN      32221/clash
tcp        0      0 :::7895                 :::*                    LISTEN      32221/clash
tcp        0      0 :::7892                 :::*                    LISTEN      32221/clash
tcp        0      0 :::7893                 :::*                    LISTEN      32221/clash
tcp        0      0 :::7890                 :::*                    LISTEN      32221/clash
tcp        0      0 :::7891                 :::*                    LISTEN      32221/clash
udp        0      0 :::55913                :::*                                32221/clash
udp        0      0 :::60025                :::*                                32221/clash
udp        0      0 :::7874                 :::*                                32221/clash
udp        0      0 :::7891                 :::*                                32221/clash
udp        0      0 :::7892                 :::*                                32221/clash
udp        0      0 :::7893                 :::*                                32221/clash
udp        0      0 :::7895                 :::*                                32221/clash
udp        0      0 :::51248                :::*                                32221/clash

#===================== 测试本机DNS查询(www.baidu.com) =====================#

Server:		127.0.*.*
Address:	127.0.*.*:53

www.baidu.com	canonical name = www.a.shifen.com
Name:	www.a.shifen.com
Address: 183.2.*.*
Name:	www.a.shifen.com
Address: 183.2.*.*



#===================== 测试内核DNS查询(www.instagram.com) =====================#

Status: 0
TC: false
RD: true
RA: true
AD: false
CD: false

Question: 
  Name: www.instagram.com.
  Qtype: 1
  Qclass: 1

Answer: 
  TTL: 600
  data: z-p42-instagram.c10r.instagram.com.
  name: www.instagram.com.
  type: 5

  TTL: 600
  data: 57.144.*.*
  name: z-p42-instagram.c10r.instagram.com.
  type: 1

Additional: 
  TTL: 283
  data: 185.89.*.*
  name: c.ns.instagram.com.
  type: 1

  TTL: 283
  data: 185.89.*.*
  name: d.ns.instagram.com.
  type: 1

  TTL: 484
  data: 129.134.*.*
  name: b.ns.instagram.com.
  type: 1

  TTL: 116
  data: 129.134.*.*
  name: a.ns.instagram.com.
  type: 1

Authority: 
  TTL: 484
  data: c.ns.instagram.com.
  name: instagram.com.
  type: 2

  TTL: 484
  data: d.ns.instagram.com.
  name: instagram.com.
  type: 2

  TTL: 484
  data: b.ns.instagram.com.
  name: instagram.com.
  type: 2

  TTL: 484
  data: a.ns.instagram.com.
  name: instagram.com.
  type: 2

Status: 0
TC: false
RD: true
RA: true
AD: false
CD: false

Question: 
  Name: www.instagram.com.
  Qtype: 28
  Qclass: 1

Answer: 
  TTL: 600
  data: z-p42-instagram.c10r.instagram.com.
  name: www.instagram.com.
  type: 5

  TTL: 600
  data: 2a03:*:*:*:face:b00c:0:4420
  name: z-p42-instagram.c10r.instagram.com.
  type: 28

Additional: 
  TTL: 600
  data: 57.144.*.*
  name: z-p42-instagram.c10r.instagram.com.
  type: 1

  TTL: 283
  data: 185.89.*.*
  name: d.ns.instagram.com.
  type: 1

  TTL: 484
  data: 129.134.*.*
  name: b.ns.instagram.com.
  type: 1

  TTL: 572
  data: 129.134.*.*
  name: a.ns.instagram.com.
  type: 1

  TTL: 283
  data: 185.89.*.*
  name: c.ns.instagram.com.
  type: 1

Authority: 
  TTL: 484
  data: d.ns.instagram.com.
  name: instagram.com.
  type: 2

  TTL: 484
  data: b.ns.instagram.com.
  name: instagram.com.
  type: 2

  TTL: 484
  data: a.ns.instagram.com.
  name: instagram.com.
  type: 2

  TTL: 484
  data: c.ns.instagram.com.
  name: instagram.com.
  type: 2


Dnsmasq 当前默认 resolv 文件：/tmp/resolv.conf.d/resolv.conf.auto

#===================== /tmp/resolv.conf.auto =====================#

# Interface lan
nameserver 119.29.*.*
nameserver 8.8.*.*

#===================== /tmp/resolv.conf.d/resolv.conf.auto =====================#

# Interface lan
nameserver 119.29.*.*
nameserver 8.8.*.*

#===================== 测试本机网络连接(www.baidu.com) =====================#

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform
Connection: keep-alive
Content-Length: 277
Content-Type: text/html
Date: Thu, 30 Jan 2025 03:00:54 GMT
Etag: "575e1f71-115"
Last-Modified: Mon, 13 Jun 2016 02:50:25 GMT
Pragma: no-cache
Server: bfe/1.0.*.*


#===================== 测试本机网络下载(raw.githubusercontent.com) =====================#

HTTP/2 200 
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: "f6037a93c68519d7041a3b4df325b61c424ec255b45dfeb063371319e39b0d96"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 4780:342E0D:E2A96:1685BC:679AEB65
accept-ranges: bytes
date: Thu, 30 Jan 2025 03:00:54 GMT
via: 1.1 varnish
x-served-by: cache-hkg17927-HKG
x-cache: MISS
x-cache-hits: 0
x-timer: S1738206054.306950,VS0,VE525
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 163a5a597872cd8144d86197e48ce72d37e1da3b
expires: Thu, 30 Jan 2025 03:05:54 GMT
source-age: 0
content-length: 1071


#===================== 最近运行日志(自动切换为Debug模式) =====================#

time="2025-01-30T03:00:58.428531261Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:00:58.428580872Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:00:58.516060503Z" level=info msg="[TCP] 192.168.*.*:51328 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:00:58.602017453Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:00:58.775011343Z" level=info msg="[TCP] 192.168.*.*:35612 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:00:59.189606277Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:00:59.190664024Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:00:59.193094398Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:00:59.194445283Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:00:59.194481344Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:00:59.194529775Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:00:59.358962169Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:00:59.460851125Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:00:59.461931163Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:00:59.464498150Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:00:59.465780854Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:00:59.465803615Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:00:59.465871006Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:00:59.524228584Z" level=info msg="[TCP] 192.168.*.*:51332 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:00:59.618923762Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:00:59.772295625Z" level=info msg="[TCP] 192.168.*.*:35624 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:00.194312547Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:00.195056477Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:00.196976497Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:00.198327183Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:00.198387164Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:00.198520428Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:00.367552829Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:00.435092976Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:00.436206185Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:00.438359631Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:00.439343127Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:00.439366657Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:00.439422059Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:00.537263738Z" level=info msg="[TCP] 192.168.*.*:51342 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:00.612342432Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:00.785493601Z" level=info msg="[TCP] 192.168.*.*:35636 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:01.214837350Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:01.215706253Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:01.217819128Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:01.219043530Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:01.219124152Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:01.219227784Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:01.388525060Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:01.468815240Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:01.470045932Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:01.473252266Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:01.474601821Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:01.474700913Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:01.474816326Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:01.559555602Z" level=info msg="[TCP] 192.168.*.*:51274 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:01.645483759Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:01.817686882Z" level=info msg="[TCP] 192.168.*.*:55546 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:02.236911129Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:02.237627358Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:02.239387874Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:02.240830342Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:02.240855382Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:02.240911464Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:02.413223277Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:02.495764124Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:02.496711799Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:02.498203068Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:02.499501912Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:02.499587124Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:02.499678136Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:02.589139224Z" level=info msg="[TCP] 192.168.*.*:51276 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:02.672834181Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:02.847156437Z" level=info msg="[TCP] 192.168.*.*:55554 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:03.270729412Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:03.271576074Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:03.273895045Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:03.279982044Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:03.280024245Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:03.280100437Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:03.456409922Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:03.525641720Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:03.526206015Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:03.527542990Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:03.528779852Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:03.528821123Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:03.528906836Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:03.684464829Z" level=info msg="[TCP] 192.168.*.*:51286 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:03.718810306Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:03.886493276Z" level=info msg="[TCP] 192.168.*.*:55570 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:04.344626587Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:04.345566132Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:04.347152153Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:04.348611581Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:04.348633202Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:04.348676393Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:04.501352209Z" level=debug msg="use specified fingerprint:Chrome"
time="2025-01-30T03:01:04.564459626Z" level=debug msg="[Rule] use default rules"
time="2025-01-30T03:01:04.565357140Z" level=debug msg="[Process] find process error for mongodb.192.168.*.*: process not found"
time="2025-01-30T03:01:04.567001002Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* A from udp://192.168.*.*:53"
time="2025-01-30T03:01:04.568315677Z" level=debug msg="[DNS] mongodb.192.168.*.* --> [] A from udp://192.168.*.*:53"
time="2025-01-30T03:01:04.568396539Z" level=debug msg="[DNS] resolve mongodb.192.168.*.* error: couldn't find ip"
time="2025-01-30T03:01:04.568485821Z" level=debug msg="[DNS] cache hit zz.usa01.fogvip-zz.uk --> [125.88.*.*] A, expire at 2025-01-30 03:03:16"
time="2025-01-30T03:01:04.654103976Z" level=info msg="[TCP] 192.168.*.*:51298 --> mongodb.192.168.*.*:27017 match Match using 🐟 漏网之鱼[🇺🇸 Silver-美国-Host-01]"
time="2025-01-30T03:01:04.734820654Z" level=debug msg="use specified fingerprint:Chrome"

#===================== 最近运行日志获取完成(自动切换为silent模式) =====================#


#===================== 活动连接信息 =====================#

1. SourceIP:【192.168.*.*】 - Host:【avatars0.githubusercontent.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
2. SourceIP:【192.168.*.*】 - Host:【avatars3.githubusercontent.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
3. SourceIP:【192.168.*.*】 - Host:【browser.translate.yandex.net】 - DestinationIP:【87.250.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
4. SourceIP:【192.168.*.*】 - Host:【mail.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
5. SourceIP:【192.168.*.*】 - Host:【avatars1.githubusercontent.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
6. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【17.253.*.*】 - Network:【udp】 - RulePayload:【Apple】 - Lastchain:【DIRECT】
7. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【17.253.*.*】 - Network:【udp】 - RulePayload:【Apple】 - Lastchain:【DIRECT】
8. SourceIP:【192.168.*.*】 - Host:【github.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
9. SourceIP:【192.168.*.*】 - Host:【api.ipify.org】 - DestinationIP:【172.67.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
10. SourceIP:【192.168.*.*】 - Host:【www.ozon.ru】 - DestinationIP:【185.73.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
11. SourceIP:【192.168.*.*】 - Host:【yandex.ru】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
12. SourceIP:【192.168.*.*】 - Host:【api.browser.yandex.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
13. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【140.82.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
14. SourceIP:【192.168.*.*】 - Host:【api.ip.sb】 - DestinationIP:【104.26.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
15. SourceIP:【192.168.*.*】 - Host:【app.spacedrive.com】 - DestinationIP:【76.76.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
16. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【17.57.*.*】 - Network:【tcp】 - RulePayload:【Apple】 - Lastchain:【DIRECT】
17. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【17.253.*.*】 - Network:【udp】 - RulePayload:【Apple】 - Lastchain:【DIRECT】
18. SourceIP:【192.168.*.*】 - Host:【avatars.githubusercontent.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
19. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【20.197.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
20. SourceIP:【192.168.*.*】 - Host:【rr1---sn-i3bssn7e.googlevideo.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【YouTube】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
21. SourceIP:【192.168.*.*】 - Host:【qqwry.api.skk.moe】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
22. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【91.108.*.*】 - Network:【tcp】 - RulePayload:【Telegram】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
23. SourceIP:【192.168.*.*】 - Host:【www.youtube.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【YouTube】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
24. SourceIP:【192.168.*.*】 - Host:【api-ipv4.ip.sb】 - DestinationIP:【104.26.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
25. SourceIP:【192.168.*.*】 - Host:【play.google.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
26. SourceIP:【192.168.*.*】 - Host:【mongodb.192.168.*.*】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
27. SourceIP:【192.168.*.*】 - Host:【Empty】 - DestinationIP:【24.135.*.*】 - Network:【udp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】
28. SourceIP:【192.168.*.*】 - Host:【d.skk.moe】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
29. SourceIP:【192.168.*.*】 - Host:【raw.githubusercontent.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
30. SourceIP:【192.168.*.*】 - Host:【avatars2.githubusercontent.com】 - DestinationIP:【】 - Network:【tcp】 - RulePayload:【ProxyGFWlist】 - Lastchain:【🇭🇰 Gold-香港-BGP-02】
31. SourceIP:【192.168.*.*】 - Host:【api.ipify.org】 - DestinationIP:【172.67.*.*】 - Network:【tcp】 - RulePayload:【】 - Lastchain:【🇺🇸 Silver-美国-Host-01】

OpenClash Config

Expected Behavior

确认是不是新版本的dns转发有问题，期望修复Meta 内核因 DNS 转发问题，导致vpn流量无法正常走特殊流量上网

Additional Context

No response

[missing233]

我这里还出现了一部分网站DNS直接无法解析的情况

[vernesong]

你现在连接vpn回来是dns问题还是所有链接都不行

[gygy]

你现在连接vpn回来是dns问题还是所有链接都不行

局域网可以访问正常。VPN流量都不正常，即所有连接都不行。

[vernesong]

无法复现，信息太少，我自己的wireguard和tailscale一切正常

[gygy]

无法复现，信息太少，我自己的wireguard和tailscale一切正常

可以提供你的配置文件，我测试一下？ 我有问题的配置文件，其后也发你一下

[vernesong]

客户端使用vpn连接时的DNS情况，clash内核的连接日志

[gygy]

客户端使用vpn连接时的DNS情况，clash内核的连接日志

下午测试结果：
v0.46.014-beta 版本内核日志：
2025-02-03 17:40:36 INF [TCP] connected lAddr=192.168.80.1:57338 rAddr=www.youtube.com:443 mode=rule rule=DomainSuffix(youtube.com) proxy=📹 YouTube[🇸🇬 Gold-新加坡-01] ruleGroup=YouTube

192.168.80.1 是主路由IP。VPN客户端通过VPN流量访问了YouTube

使用最新版本，内核日志：
没有在内核日志中，查询到 vpn客户端任何IP 及 访问YouTube记录