yichya / luci-app-xray Goto Github PK

看到大版本更新了，
作为参与者，
准备做第一个吃螃蟹的人，
结果彻底无法上网了，
下面把症状详细描述下：

1.准备工作
为了控制变量，
彻底重装系统，
防止出现残留问题。
因此，
安装的是 openwrt-21.02.1-x86-64-generic-ext4-combined-efi 原版系统
插件仅安装最新的 luci-app-xray_1.2.0-1_all.ipk
系统仅设置了拨号上网和系统更新，
其他插件一概未装

2.插件安装
安装插件后，
自动安装了内置的xray，
然后仅设置了Xray Servers,添加了geoip和geosite至指定文件夹，设置了geoip为cn，routing domain为IPIfNonMatch，
其他未动，
具体config.json如下（已脱敏）：

{
"outbounds": [
{
"streamSettings": {
"network": "tcp",
"xtlsSettings": {
"alpn": [
"h2",
"http/1.1"
],
"allowInsecure": false
},
"tcpSettings": {
"header": {
"type": "none"
}
},
"sockopt": {
"mark": 255,
"domainStrategy": "UseIP"
},
"security": "xtls"
},
"settings": {
"vnext": [
{
"port": 443,
"users": [
{
"id": "xxx-xxx-xxx-xxx-xxx",
"flow": "xtls-rprx-direct",
"encryption": "none"
}
],
"address": "xxx-xxx-xxx-xxx-xxx"
}
]
},
"protocol": "vless",
"tag": "tcp_outbound"
},
{
"streamSettings": {
"network": "tcp",
"xtlsSettings": {
"alpn": [
"h2",
"http/1.1"
],
"allowInsecure": false
},
"tcpSettings": {
"header": {
"type": "none"
}
},
"sockopt": {
"mark": 255,
"domainStrategy": "UseIP"
},
"security": "xtls"
},
"settings": {
"vnext": [
{
"port": 443,
"users": [
{
"id": "xxx-xxx-xxx-xxx-xxx",
"flow": "xtls-rprx-direct",
"encryption": "none"
}
],
"address": "xxx-xxx-xxx-xxx-xxx"
}
]
},
"protocol": "vless",
"tag": "udp_outbound"
},
{
"streamSettings": {
"sockopt": {
"mark": 255
}
},
"protocol": "freedom",
"tag": "direct"
},
{
"tag": "dns_server_outbound",
"protocol": "dns",
"streamSettings": {
"sockopt": {
"mark": 255
}
}
}
],
"log": {
"loglevel": "debug",
"access": "none",
"dnsLog": false
},
"dns": {
"servers": [
{
"port": 53,
"domains": [
"xxx-xxx-xxx-xxx-xxx"
],
"address": "114.114.114.114"
},
{
"port": 53,
"domains": [
"geosite:geolocation-!cn"
],
"address": "8.8.8.8"
},
{
"port": 53,
"domains": [
"geosite:cn"
],
"address": "114.114.114.114"
},
{
"port": 53,
"address": "1.1.1.1"
}
],
"tag": "dns_conf_inbound"
},
"api": {
"services": [
"HandlerService",
"LoggerService",
"StatsService"
],
"tag": "api"
},
"routing": {
"rules": [
{
"domain": [
"geosite:cn"
],
"type": "field",
"inboundTag": [
"tproxy_tcp_inbound",
"tproxy_udp_inbound",
"dns_conf_inbound",
"https_inbound",
"http_inbound"
],
"outboundTag": "direct"
},
{
"domain": [
"geosite:geolocation-!cn"
],
"type": "field",
"inboundTag": [
"tproxy_tcp_inbound",
"tproxy_udp_inbound",
"dns_conf_inbound"
],
"outboundTag": "tcp_outbound"
},
{
"domain": [
"geosite:geolocation-!cn"
],
"type": "field",
"inboundTag": [
"tproxy_udp_inbound"
],
"outboundTag": "udp_outbound"
},
{
"ip": [
"geoip:private"
],
"type": "field",
"inboundTag": [
"tproxy_tcp_inbound",
"tproxy_udp_inbound",
"dns_conf_inbound",
"socks_inbound",
"https_inbound",
"http_inbound"
],
"outboundTag": "direct"
},
{
"ip": [
"geoip:cn"
],
"type": "field",
"inboundTag": [
"tproxy_tcp_inbound",
"tproxy_udp_inbound",
"dns_conf_inbound"
],
"outboundTag": "direct"
},
{
"type": "field",
"inboundTag": [
"tproxy_tcp_inbound",
"dns_conf_inbound",
"socks_inbound",
"https_inbound",
"http_inbound"
],
"outboundTag": "tcp_outbound"
},
{
"type": "field",
"inboundTag": [
"tproxy_udp_inbound"
],
"outboundTag": "udp_outbound"
},
{
"type": "field",
"inboundTag": [
"dns_server_inbound_5300",
"dns_server_inbound_5301",
"dns_server_inbound_5302",
"dns_server_inbound_5303"
],
"outboundTag": "dns_server_outbound"
},
{
"type": "field",
"inboundTag": [
"api"
],
"outboundTag": "api"
}
],
"domainStrategy": "IPIfNonMatch"
},
"policy": {
"system": {
"statsInboundDownlink": false,
"statsOutboundDownlink": false,
"statsOutboundUplink": false,
"statsInboundUplink": false
},
"levels": {
"0": {
"uplinkOnly": 0,
"statsUserDownlink": false,
"statsUserUplink": false,
"connIdle": 0,
"bufferSize": 0,
"handshake": 0,
"downlinkOnly": 0
}
}
},
"inbounds": [
{
"settings": {
"allowTransparent": false
},
"port": "1083",
"protocol": "http",
"tag": "http_inbound"
},
{
"port": "1080",
"protocol": "dokodemo-door",
"streamSettings": {
"sockopt": {
"tproxy": "tproxy",
"mark": 255
}
},
"settings": {
"network": "tcp",
"followRedirect": true
},
"sniffing": {
"enabled": true,
"destOverride": [
"http",
"tls"
],
"metadataOnly": false
},
"tag": "tproxy_tcp_inbound"
},
{
"port": "1081",
"protocol": "dokodemo-door",
"streamSettings": {
"sockopt": {
"tproxy": "tproxy",
"mark": 255
}
},
"settings": {
"network": "udp",
"followRedirect": true
},
"tag": "tproxy_udp_inbound"
},
{
"settings": {
"udp": true
},
"port": "1082",
"protocol": "socks",
"tag": "socks_inbound"
},
{
"settings": {
"port": 53,
"network": "tcp,udp",
"address": "1.1.1.1"
},
"port": 5300,
"protocol": "dokodemo-door",
"tag": "dns_server_inbound_5300"
},
{
"settings": {
"port": 53,
"network": "tcp,udp",
"address": "1.1.1.1"
},
"port": 5301,
"protocol": "dokodemo-door",
"tag": "dns_server_inbound_5301"
},
{
"settings": {
"port": 53,
"network": "tcp,udp",
"address": "1.1.1.1"
},
"port": 5302,
"protocol": "dokodemo-door",
"tag": "dns_server_inbound_5302"
},
{
"settings": {
"port": 53,
"network": "tcp,udp",
"address": "1.1.1.1"
},
"port": 5303,
"protocol": "dokodemo-door",
"tag": "dns_server_inbound_5303"
},
{
"port": 8080,
"protocol": "dokodemo-door",
"tag": "api",
"settings": {
"address": "127.0.0.1"
},
"listen": "127.0.0.1"
}
]
}

3.症状
启动xray后，
整个网络无法使用，
无论是国内还是国外均无法打开，
使用内置网络诊断显示

ping: bad address 'openwrt.org'
nslokup;; connection timed out; no servers could be reached

而关闭xray后
则国内网站可以访问，
使用内置网络诊断显示

PING openwrt.org (139.59.209.225): 56 data bytes
64 bytes from 139.59.209.225: seq=0 ttl=53 time=243.199 ms
64 bytes from 139.59.209.225: seq=1 ttl=53 time=243.675 ms
64 bytes from 139.59.209.225: seq=2 ttl=53 time=243.078 ms
64 bytes from 139.59.209.225: seq=3 ttl=53 time=242.920 ms
64 bytes from 139.59.209.225: seq=4 ttl=53 time=243.514 ms

--- openwrt.org ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 242.920/243.277/243.675 ms

nslokup
Server: 127.0.0.1
Address: 127.0.0.1#53

Name: openwrt.org
Address 1: 139.59.209.225
Address 2: 2a03:b0c0:3:d0::1af1:1

因此，
貌似有较大问题，
不清楚是哪个环节出了问题。

目前在dns设置里面已有根据site的分流，

可否增加“黑洞”Reject的分流，

在 https://github.com/Loyalsoldier/v2ray-rules-dat 中可以看到，

已有 geosite:category-ads-all、geosite:win-spy等标注，

如果增加该功能，

则可以省去与adbolck或者adguard home等的适配，

目前这类屏蔽插件很容易与dns解析或者端口引发冲突。

有谁知道哪里有 IPk file ? 我需要用树莓派来做 Xray ， Vless 服务器呢 。

谢谢

编译时报错,提示bash proxychains: command not found
必须安装 proxychains-ng吗？我记得proxychains-ng是个代理软件啊，我本地电脑已经科学了的（用Qv2ray）
本地已经安装了libproxychains-{dev,3,4}这三个包

本地编译环境：

Ubuntu 20.04 LTS
Python 3.8
...

我完整配置了 xray, 已正常成功运作。但有一个 tab 设置页 - https server - 没明白主要用在什么场景下。
可否指点一二？ 感谢。

1. 安装 luci-app-xray 过程中会出现 RTNETLINK 错误提示。

ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such process
ip: RTNETLINK answers: No such process

2. 配置好 Xray Servers 后，luci-app-xray 运作正常，可科学上网。

(Server Hostname 设置为 server ip 才能正常使用)

3. 但运行 service xray restart 命令，可复现安装过程中的 RTNETLINK 的 issue。输出如下：

root@OpenWrt:~# service xray restart
xray[6467]: Resetting dnsmasq and firewall configurations...
transparent-proxy-ipset[6586]: flush_ipset_rules (ignore any errors from RTNETLINK)
ip: RTNETLINK answers: No such process
xray[6467]: (Re)generationg Xray configuration files...
xray[6467]: Setting dnsmasq and firewall for transparent proxy...
xray[6467]: # Generated dnsmasq configurations by luci-app-xray server=/203.135.249.213/114.114.114.114 server=/203.135.249.213/114.114.114.114 server=/#/127.0.0.1#5353
transparent-proxy-ipset[6746]: flush_ipset_rules (ignore any errors from RTNETLINK)
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such process
ip: RTNETLINK answers: No such process
transparent-proxy-ipset[6746]: ipset_init (ignore any errors from RTNETLINK)
ip: RTNETLINK answers: File exists
transparent-proxy-ipset[6746]: gen_lan_host_ipset_entry
transparent-proxy-ipset[6746]: default gateway check 192.168.1.1

虽然使用正常，仍然对此 issue 不放心。请问如何修复？

OP19.07.7 官方SDK 编译好luci和xray，从今年2月份起一直就是访问不了网络。我也不想吐槽了。大哥测试一下或者写一个教程，这样搞我们真的很难。

play商店app更新一直显示等待中
{
"dns": {
"hosts": {
"domain:googleapis.cn": "googleapis.com"
}
}
}
Custom Configurations里加入以上不行，请问有什么解决办法

Hello，there is only “Will not enable transparent proxy for these MAC addresses” option (Allow all except listed) in access control.
Can you add an Allow listed only option so that i can only proxy specific devices and all others will be directly connected.
Thank you in advance.

编译好，上传固件，路由器http://192.168.0.250无法访问
可以进ssh

在OpenWrt 19.07-x86_64上是正常的

OpenWrt 21.02-x86_64上网速异常，日志里没有异常信息

上述现像除了OpenWrt的版本不同外，其它的配置都是相同的

#52
@yichya 引述你的话如下：

看了几个类似 case，目前看通过域名连接到服务端的方式可能还是有些不稳定（解析的时候可能出现死循环）。
非常离谱的是我个人就没遇到过这种问题。。。
可以试试不通过域名改为通过 ip 连接上去，域名解析死循环的问题我再想想有没有一劳永逸的办法解决掉。

我遇到同样的问题。想问下，

1. 使用 ip 会不会有性能上的损失？
2. 抑或会不会有被 Wall 更易特征侦测的可能？

感谢。

xray & this Luci app both installed successfully, but nothing is visible via the Luci UI. I was expecting to see a services menu appear in Luci. The steps I followed were as below, and both completed successfully:

1. Install xray:
   opkg install xray-core xray-geodata
2. followed by install luci-app-xray
   opkg install luci-app-xray_1.5.2-1_all.ipk

Is there any troubleshooting that can be done to find the problem, or any additional steps I should follow?

安装完最新版后，无法上网。

关闭sniffing时xray路由可以正确处理ip规则

# disable sniffing
$ uci set xray.cfg01f223.tproxy_sniffing='0'
$ uci commit
$ /etc/init.d/xray restart
$ echo "" > /tmp/xray_access.log
$ curl https://www.baidu.com
$ cat /tmp/xray_access.log

2021/10/10 03:55:43 127.0.0.1:56230 accepted udp:1.1.1.1:53 [dns_server_inbound_5353 -> dns_server_outbound]
2021/10/10 03:55:43 DNS accepted udp:114.114.114.114:53 [dns_conf_inbound -> direct]
2021/10/10 03:55:43 127.0.0.1:59979 accepted udp:1.1.1.1:53 [dns_server_inbound_5353 -> dns_server_outbound]
2021/10/10 03:55:43 UDP:114.114.114.114:53 got answer: www.baidu.com -> [163.177.151.109, 163.177.151.110] 7.965574ms
2021/10/10 03:55:43 UDP:114.114.114.114:53 got answer: www.baidu.com -> [] 15.963177ms <empty response>
2021/10/10 03:55:43 172.24.91.216:56336 accepted tcp:163.177.151.109:443 [tproxy_tcp_inbound -> direct]

开启sniffing后xray路由失效, 将所有流量导入tcp_outbound

# enable sniffing
$ uci set xray.cfg01f223.tproxy_sniffing='1'
$ uci commit
$ /etc/init.d/xray restart
$ echo "" > /tmp/xray_access.log
$ curl https://www.baidu.com
$ cat /tmp/xray_access.log

2021/10/10 03:57:04 127.0.0.1:45548 accepted udp:1.1.1.1:53 [dns_server_inbound_5353 -> dns_server_outbound]
2021/10/10 03:57:04 UDP:114.114.114.114:53 got answer: www.baidu.com -> [163.177.151.110, 163.177.151.109] 6.499717ms
2021/10/10 03:57:04 127.0.0.1:43179 accepted udp:1.1.1.1:53 [dns_server_inbound_5353 -> dns_server_outbound]
2021/10/10 03:57:04 UDP:114.114.114.114:53 got answer: www.baidu.com -> [] 29.241255ms <empty response>
2021/10/10 03:57:04 172.24.91.216:49996 accepted tcp:163.177.151.110:443 [tproxy_tcp_inbound -> tcp_outbound]

用IP地址可以，就是没法用CDN了
Thu Jul 1 17:29:42 2021 daemon.info xray[26515]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Thu Jul 1 17:29:42 2021 daemon.info xray[26515]: A unified platform for anti-censorship.
Thu Jul 1 17:29:42 2021 daemon.err xray[26515]: 2021/07/01 09:29:42 Using confdir from arg: /var/etc/xray
Thu Jul 1 17:29:42 2021 daemon.info xray[26515]: 2021/07/01 09:29:42 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Thu Jul 1 17:29:43 2021 daemon.info xray[26515]: 2021/07/01 09:29:43 [Warning] core: Xray 1.4.2 started
Thu Jul 1 17:29:48 2021 daemon.info xray[26515]: 2021/07/01 09:29:48 [Warning] [2881973896] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Canceled desc = context canceled] > common/retry: all retry attempts failed
Thu Jul 1 17:29:48 2021 daemon.info xray[26515]: 2021/07/01 09:29:48 [Warning] [2821008468] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Canceled desc = context canceled] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [763116330] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [3728363101] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [1818778841] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [366616993] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [3355821010] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [3509810396] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:30 2021 daemon.info xray[26515]: 2021/07/01 09:30:30 [Warning] [4180591674] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [2369408987] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [918285807] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [192476369] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [912033422] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [3892498450] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [3354535149] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:31 2021 daemon.info xray[26515]: 2021/07/01 09:30:31 [Warning] [3553588940] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:32 2021 daemon.info xray[26515]: 2021/07/01 09:30:32 [Warning] [392634192] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:32 2021 daemon.info xray[26515]: 2021/07/01 09:30:32 [Warning] [1305324350] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:32 2021 daemon.info xray[26515]: 2021/07/01 09:30:32 [Warning] [2601932659] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:32 2021 daemon.info xray[26515]: 2021/07/01 09:30:32 [Warning] [2230652889] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed
Thu Jul 1 17:30:32 2021 daemon.info xray[26515]: 2021/07/01 09:30:32 [Warning] [3486877939] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [transport/internet/grpc: failed to dial gRPC > transport/internet/grpc: Cannot dial gRPC > rpc error: code = Unavailable desc = connection error: desc = "transport: Error while dialing dial tcp: i/o timeout"] > common/retry: all retry attempts failed

OpenWrt R21.10.1 / LuCI Master (git-21.280.14233-9b796b1)

lean的固件 编译后 在软件包里有
但是没有luci的界面

基于lean 最新的源码编译，已经安装成功，但luci却找不到菜单入口，是我操作方法不对吗？

看警告不是很明白，低版本的不支持。那是只支持19.07吗，更新的支持吗？

使用浏览器访问部分网站时会出现 ERR_CONNECTION_ABORTED 错误，比如 v2ex.com, www.pixiv.net
通过其他代理工具可以正常访问上述网站，尝试关闭sniffing后依然无法访问，不知道问题出在哪里.......

就是这样还是我编译出错了？

1. 出现以下 issue，可能需要设置 hosts，哪里可以设置呢？
[Error] app/dns: DOH//dns.dns-over-https.top tries to resolve itself! Use IP or set "hosts" instead.

2. 以下 warning 是否是由 ipv6 引起，我尝试将 ipv6 关闭后，仍然有此提示，请问可以怎么消除？
Thu Sep 9 08:14:12 2021 daemon.info xray[5253]: 2021/09/09 00:14:12 [Warning] proxy/dns: failed to dial outbound connection > address https://dns.dns-over-https.top/dns-query:53: too many colons in address

As a openWRT newber, I searched the installation guides for serval days,I found a installation document for expert, but I cannot find a step to step installation guide for this luci-app.
Is it possible to have a step-to-step guide?

root@OpenWrt:/tmp# opkg install luci-app-xray_1.0.3-1_aarch64_cortex-a53.ipk
Installing luci-app-xray (1.0.3-1) to root...
Collected errors:

• check_data_file_clashes: Package luci-app-xray wants to install file /etc/init.d/xray
  But that file is already provided by package * xray-core
• opkg_install_cmd: Cannot install package luci-app-xray.
  另外我还装了passwall
  软件是否无法同时与其他软件并存

目前的封堵已经越来越针对 dns 部分，是否可以在 DNS Settings 部分的 Fast DNS / Secure DNS
/ Default DNS 增加对 dns over https (DOH) 的支持？

目前无法在 DNS 中填入 doh 地址，默认不支持。

syslog里没有相应的错误信息，xray是issue #108 后编译的

今天下载BT，
发现国外的流量全部走服务器了，
服务器流量一下子暴涨，
然后发现

https://github.com/Loyalsoldier/v2ray-rules-dat

“BT 流量统统直连（实测依然会有部分 BT 流量走代理，如果服务商禁止 BT 下载，请不要为下载软件设置代理）”

    "type": "field",
    "outboundTag": "Direct",
    "protocol": ["bittorrent"]

请问，
现在办法可以设置吗？

目前使用1.6.4版本一段时间了，
功能已经很完善了，
而且可以用过官方渠道更新geoip和geosite，
并且增加了黑洞功能，
默认增加了广告屏蔽功能。

但是，
默认的官方geoip和geosite个性化设置不足，
因此，
能否增加 https://github.com/Loyalsoldier/v2ray-rules-dat 等这类第三方geoip和geosite下载，
它们都有国内、国外两个地址可供选择，
可以默认设置为国内地址，
避免网络问题无法下载。

另外，
如果允许的话，
也可以通过自定义添加下载地址，
满足一些人添加私有库地址下载。

How can I create ipk file to be installed on OpenWRT?

Fri Jul 23 22:07:10 2021 daemon.info xray[16292]: 2021/07/23 14:07:10 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:10 2021 daemon.info xray[16292]: 2021/07/23 14:07:10 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:11 2021 daemon.info xray[16292]: 2021/07/23 14:07:11 [Warning] [3841621821] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.com on 127.0.0.1:53: dial udp 127.0.0.1:53: socket: too many open files dial tcp: operation was canceled] > common/retry: all retry attempts failed
Fri Jul 23 22:07:11 2021 daemon.info xray[16292]: 2021/07/23 14:07:11 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:11 2021 daemon.info xray[16292]: 2021/07/23 14:07:11 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:12 2021 daemon.info xray[16292]: 2021/07/23 14:07:12 [Warning] proxy/dns: failed to dial outbound connection > listen udp 0.0.0.0:0: socket: too many open files
Fri Jul 23 22:07:12 2021 daemon.info xray[16292]: 2021/07/23 14:07:12 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:12 2021 daemon.info xray[16292]: 2021/07/23 14:07:12 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:12 2021 daemon.info xray[16292]: 2021/07/23 14:07:12 [Warning] [3577707651] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.com on 127.0.0.1:53: dial udp 127.0.0.1:53: socket: too many open files dial tcp: operation was canceled] > common/retry: all retry attempts failed
Fri Jul 23 22:07:13 2021 daemon.info xray[16292]: 2021/07/23 14:07:13 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:13 2021 daemon.info xray[16292]: 2021/07/23 14:07:13 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:13 2021 daemon.info xray[16292]: 2021/07/23 14:07:13 [Warning] [4064023648] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.com on 127.0.0.1:53: dial udp 127.0.0.1:53: socket: too many open files] > common/retry: all retry attempts failed
Fri Jul 23 22:07:14 2021 daemon.info xray[16292]: 2021/07/23 14:07:14 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:14 2021 daemon.info xray[16292]: 2021/07/23 14:07:14 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:15 2021 daemon.info xray[16292]: 2021/07/23 14:07:15 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:15 2021 daemon.info xray[16292]: 2021/07/23 14:07:15 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:16 2021 daemon.info xray[16292]: 2021/07/23 14:07:16 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:16 2021 daemon.info xray[16292]: 2021/07/23 14:07:16 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:17 2021 daemon.info xray[16292]: 2021/07/23 14:07:17 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:17 2021 daemon.info xray[16292]: 2021/07/23 14:07:17 [Warning] [3847464710] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.com on 127.0.0.1:53: dial udp 127.0.0.1:53: socket: too many open files] > common/retry: all retry attempts failed
Fri Jul 23 22:07:17 2021 daemon.info xray[16292]: 2021/07/23 14:07:17 [Warning] [177433344] app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: failed to find an available destination > common/retry: [dial tcp: lookup mydomain.com on 127.0.0.1:53: dial udp 127.0.0.1:53: socket: too many open files] > common/retry: all retry attempts failed
Fri Jul 23 22:07:17 2021 daemon.info xray[16292]: 2021/07/23 14:07:17 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files
Fri Jul 23 22:07:18 2021 daemon.info xray[16292]: 2021/07/23 14:07:18 [Warning] transport/internet/tcp: failed to accepted raw connections > accept tcp [::]:1080: accept4: too many open files

This project may need a version to use firewall4 in the coming months.

openwrt/luci#5409

openwrt/luci@48599d8

看到仓库https://github.com/yichya/luci-app-v2ray 中是包含这个子文件夹的，并且下面的编译步骤中也需要这个。另外在https://github.com/honwen/luci-app-xray 这个仓库中看到也是需要这个文件的。

我將下載好的luci-app-xray放到openwrt源碼下的feeds/luci/applications目錄下，運行./scripts/feeds update -a ;./scripts/feeds install -a之後，運行make menuconfig，但是在打開的luci->applications菜單中找不到luci-app-xray。按照上述步驟放入其他任何luci源代碼都是可以識別的，唯獨不顯示luci-app-xray。另外，當退出menuconfig之後會顯示以下報錯：
tmp/.config-package.in:5937:error: recursive dependency detected!
tmp/.config-package.in:5937: symbol PACKAGE_luci-app-xray depends on PACKAGE_luci-app-xray
For a resolution refer to Documentation/kbuild/kconfig-language.rst
subsection "Kconfig recursive dependency limitations"
上述問題該如何解決，望指點。

先前的issue已有讨论。 #20 (comment)

对比 kuoruan/luci-app-v2ray 的 iptables 规则，主要区别在于，本项目将所有路由规则写在 mangles 链下，相比之下，v2ray 、OpenClash （印象里 shadowsocks 项目也是）等大部分类似的项目都将 TCP 的转发规则放到了 nat 链下面，我认为这个可能是问题所在。 但是原理我还是不懂

参考：

• Linux netfilter Hacking HOWTO: Netfilter Architecture
• linux - iptables REDIRECT works only for first packet - Server Fault

This table (NAT) is slightly different from the `filter' table, in that only the first packet of a new connection will traverse the table: the result of this traversal is then applied to all future packets in the same connection.

update: 不光是链不同，原理也不一样。其他项目用的是 REDIRECT ，本项目用的是 TPROXY。这东西文档和用例太少了……

./scripts/feeds update -a的时候报错：
Create index file './feeds/xray.index'
/home/a/openwrt/feeds/xray.tmp/info/.files-packageinfo.mk:1: *** 目標模式不含有「%」。 停止。

Thanks for your very good program. It was really necessary.
Can you please tell me how I can with the official RaspberryPi 3B SDK (19.7.6)Compile this package?
I have already compiled other packages with SDK and I am familiar with it.
But I do not know why this package is not added to the "make" menu?
Please tell me the instructions I need to enter in the terminal so that other people like me can solve this problem.
Thanks ;-)

Log eror

https://github.com/xtls/xray-core/releases/download/v1.1.5/xray-linux-mipsle.zip Resolving github.com (github.com)... 13.250.177.223 Connecting to github.com (github.com)|13.250.177.223|:443... connected. HTTP request sent, awaiting response... 404 Not Found 2020-12-26 10:27:03 ERROR 404: Not Found.

一直卡在这，没下文了

类似issue

部分一键脚本搭建的xray服务在使用grpc时需要手动指定alpn为h2，不知道开发者能否给grpc加上指定alpn的选项呢？

官方OpenWrt 19.07.7
安装的信息：
transparent-proxy-ipset[12967]: Generating Xray configuration files...
transparent-proxy-ipset[13081]: flush_ipset_rules
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such file or directory
ip: RTNETLINK answers: No such process
ip: RTNETLINK answers: No such process
transparent-proxy-ipset[13081]: ipset_init
ip: RTNETLINK answers: File exists
transparent-proxy-ipset[13081]: gen_lan_host_ipset_entry
transparent-proxy-ipset[13081]: default gateway check 10.10.10.11
ipset v7.3: Missing second mandatory argument to command add
Try `ipset help' for more information.

log信息
Sun Jun 6 18:39:18 2021 user.info transparent-proxy-ipset[13081]: flush_ipset_rules
Sun Jun 6 18:39:18 2021 user.info transparent-proxy-ipset[13081]: ipset_init
Sun Jun 6 18:39:18 2021 user.info transparent-proxy-ipset[13081]: gen_lan_host_ipset_entry
Sun Jun 6 18:39:18 2021 user.info transparent-proxy-ipset[13081]: default gateway check 10.10.10.11
Sun Jun 6 18:39:18 2021 daemon.info xray[13146]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Sun Jun 6 18:39:18 2021 daemon.info xray[13146]: A unified platform for anti-censorship.
Sun Jun 6 18:39:18 2021 daemon.err xray[13146]: 2021/06/06 10:39:18 Using confdir from arg: /var/etc/xray
Sun Jun 6 18:39:18 2021 daemon.info xray[13146]: 2021/06/06 10:39:18 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sun Jun 6 18:39:18 2021 daemon.info xray[13146]: Failed to start: main: failed to load config files: [/var/etc/xray/config.json] > infra/conf: failed to parse DNS config > infra/conf: failed to build nameserver > infra/conf: invalid domain rule: geosite:cn > infra/conf: failed to load geosite: CN > infra/conf: failed to load file: geosite.dat > infra/conf: failed to open file: geosite.dat > open /usr/share/xray/geosite.dat: no such file or directory
Sun Jun 6 18:39:23 2021 daemon.info xray[13168]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Sun Jun 6 18:39:23 2021 daemon.info xray[13168]: A unified platform for anti-censorship.
Sun Jun 6 18:39:23 2021 daemon.err xray[13168]: 2021/06/06 10:39:23 Using confdir from arg: /var/etc/xray
Sun Jun 6 18:39:23 2021 daemon.info xray[13168]: 2021/06/06 10:39:23 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sun Jun 6 18:39:23 2021 daemon.info xray[13168]: Failed to start: main: failed to load config files: [/var/etc/xray/config.json] > infra/conf: failed to parse DNS config > infra/conf: failed to build nameserver > infra/conf: invalid domain rule: geosite:cn > infra/conf: failed to load geosite: CN > infra/conf: failed to load file: geosite.dat > infra/conf: failed to open file: geosite.dat > open /usr/share/xray/geosite.dat: no such file or directory
Sun Jun 6 18:39:28 2021 daemon.info xray[13185]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Sun Jun 6 18:39:28 2021 daemon.info xray[13185]: A unified platform for anti-censorship.
Sun Jun 6 18:39:28 2021 daemon.err xray[13185]: 2021/06/06 10:39:28 Using confdir from arg: /var/etc/xray
Sun Jun 6 18:39:28 2021 daemon.info xray[13185]: 2021/06/06 10:39:28 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sun Jun 6 18:39:28 2021 daemon.info xray[13185]: Failed to start: main: failed to load config files: [/var/etc/xray/config.json] > infra/conf: failed to parse DNS config > infra/conf: failed to build nameserver > infra/conf: invalid domain rule: geosite:cn > infra/conf: failed to load geosite: CN > infra/conf: failed to load file: geosite.dat > infra/conf: failed to open file: geosite.dat > open /usr/share/xray/geosite.dat: no such file or directory
Sun Jun 6 18:39:33 2021 daemon.info xray[13201]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Sun Jun 6 18:39:33 2021 daemon.info xray[13201]: A unified platform for anti-censorship.
Sun Jun 6 18:39:33 2021 daemon.err xray[13201]: 2021/06/06 10:39:33 Using confdir from arg: /var/etc/xray
Sun Jun 6 18:39:33 2021 daemon.info xray[13201]: 2021/06/06 10:39:33 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sun Jun 6 18:39:33 2021 daemon.info xray[13201]: Failed to start: main: failed to load config files: [/var/etc/xray/config.json] > infra/conf: failed to parse DNS config > infra/conf: failed to build nameserver > infra/conf: invalid domain rule: geosite:cn > infra/conf: failed to load geosite: CN > infra/conf: failed to load file: geosite.dat > infra/conf: failed to open file: geosite.dat > open /usr/share/xray/geosite.dat: no such file or directory
Sun Jun 6 18:39:38 2021 daemon.info xray[13217]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Sun Jun 6 18:39:38 2021 daemon.info xray[13217]: A unified platform for anti-censorship.
Sun Jun 6 18:39:38 2021 daemon.err xray[13217]: 2021/06/06 10:39:38 Using confdir from arg: /var/etc/xray
Sun Jun 6 18:39:38 2021 daemon.info xray[13217]: 2021/06/06 10:39:38 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sun Jun 6 18:39:38 2021 daemon.info xray[13217]: Failed to start: main: failed to load config files: [/var/etc/xray/config.json] > infra/conf: failed to parse DNS config > infra/conf: failed to build nameserver > infra/conf: invalid domain rule: geosite:cn > infra/conf: failed to load geosite: CN > infra/conf: failed to load file: geosite.dat > infra/conf: failed to open file: geosite.dat > open /usr/share/xray/geosite.dat: no such file or directory
Sun Jun 6 18:39:43 2021 daemon.info xray[13241]: Xray 1.4.2 (Xray, Penetrates Everything.) Custom (go1.16 linux/amd64)
Sun Jun 6 18:39:43 2021 daemon.info xray[13241]: A unified platform for anti-censorship.
Sun Jun 6 18:39:43 2021 daemon.err xray[13241]: 2021/06/06 10:39:43 Using confdir from arg: /var/etc/xray
Sun Jun 6 18:39:43 2021 daemon.info xray[13241]: 2021/06/06 10:39:43 [Info] infra/conf/serial: Reading config: /var/etc/xray/config.json
Sun Jun 6 18:39:43 2021 daemon.info xray[13241]: Failed to start: main: failed to load config files: [/var/etc/xray/config.json] > infra/conf: failed to parse DNS config > infra/conf: failed to build nameserver > infra/conf: invalid domain rule: geosite:cn > infra/conf: failed to load geosite: CN > infra/conf: failed to load file: geosite.dat > infra/conf: failed to open file: geosite.dat > open /usr/share/xray/geosite.dat: no such file or directory
Sun Jun 6 18:39:43 2021 daemon.info procd: Instance xray::instance1 s in a crash loop 6 crashes, 0 seconds since last crash

卸载了luci-app-xray后外网就可以通了
该怎么解决？

安装以后，在网页端找不到xray的配置界面？

After I was able to compile the package with your help,
the next problem that occurred to me after installation is clear in the image:

The ipset package is installed, but it looks like there is a problem with the Config file.
I do not understand. Where can the problem be ?
I have to say that I am using the official precompiled version 19.7.6 for RaspberryPi 3B.

Thanks ;-)

作者你好，我阅读代码的时候发现 https://github.com/yichya/luci-app-xray/blob/master/root/usr/share/xray/geoip_list.pb 这个二进制文件似乎没有在代码任何一处被引用，请问这个文件是起什么作用的呢？如果是 protobuf 格式的geoip 的清单，我该怎样定制这个的清单呢？（比如，可以 run 个什么脚本来生成呢？）我看你有另一个 repo 是 lua-protbuf， 是用那个repo吗？
谢谢！

因为配置文件和 init 脚本的命名都跟 https://github.com/openwrt/packages/tree/master/net/xray-core 重复了，所以目前 luci-app-xray 没有办法跟它共存。

要解决这一问题的话可能有两个办法

• 推动上游 xray-core 主程序和 init 文件分离（可能会比较困难）
• luci-app-xray 自身做一些比较大的改动适应上游 xray-core 的 init 脚本（无法保证平滑升级，需要重新填配置）

这个 issue 算是一个意见收集，如果有比较强烈的需求的话会考虑通过上述方式之一解决这个问题。

觉得有必要解决这个问题的话可以在这条 issue 上点一个 +1（👍），没有必要的话可以点一个 -1（👎）

用lean大的源码
https://github.com/coolsnowwolf/lede
选择x86_64,并选中插件后
刷机发现插件的图形界面没有出现

按照教程自行编译后，在19.07上跑。
安装一切正常，但是打开xray页面一直提示错误。
后来经过大神指点，需要安装luci-compat包来提供lua支持。
希望后面和我一样的小白能够顺利用上。

Just want to make sure I can delete/reinstall etc...

尝试使用mosdns代替xray的dns服务，但是没找到禁用xray的dns选项，似乎必须指定一个端口？希望能添加通过udp请求dns的选项