sing-box ECH 使用笔记

博主： elden
发布时间：2023 年 10 月 26 日
1897 次浏览
3 条评论
9683字数
分类：科学上网

Youtube视频

生成ech keypair

# plain_server_name 自己填
# 会生成keys和confis，分别保存到文件，如ech.key、ech.config
singbox generate <plain_server_name> --pq-signature-schemes-enabled

格式化ech.config为单行

可用于移动客户端通过config文本来配置ech的密钥

awk 'NF {printf "%s\\n",$0}' ech.config

服务端测试配置

仅测试，以下为vless ws配置

{
  "log": {
    "disabled": false,
    "level": "info",
    "timestamp": true
  },
  "dns": {
    "servers": [
      {
        "tag": "cf",
        "address": "https://1.1.1.1/dns-query",
        "strategy": "ipv4_only",
        "detour": "direct"
      },
      {
        "tag": "block",
        "address": "rcode://success"
      }
    ],
    "rules": [
      {
        "geosite": [
          "category-ads-all"
        ],
        "server": "block",
        "disable_cache": true
      }
    ],
    "final": "cf",
    "strategy": "",
    "disable_cache": false,
    "disable_expire": false
  },
  "inbounds": [
    {
      "type": "vless",
      "tag": "vless-in",
      "listen": "::",
      "listen_port": 443,
      "tcp_fast_open": false,
      "tcp_multi_path": false,
      "udp_fragment": false,
      "sniff": false,
      "sniff_override_destination": false,
      "sniff_timeout": "300ms",
      "domain_strategy": "prefer_ipv6",
      "udp_timeout": 300,
      "proxy_protocol": false,
      "proxy_protocol_accept_no_header": false,
      "users": [
        {
          "name": "Elden",
          "uuid": "你的UUID",
          "flow": ""
        }
      ],
      "tls": {
        "enabled": true, 
        "server_name": "你的域名",
        "certificate_path": "你的证书文件路径",
        "key_path": "你的密钥文件路径",
        "ech": {
          "enabled": true,
          "pq_signature_schemes_enabled": true,
          "dynamic_record_sizing_disabled": false,
          "key_path": "你的ECH KEYS文件路径"
        }
      },
      "transport": {
        "type": "ws",
        "path": "你的PATH路径",
        "headers": {},
        "max_early_data": 0,
        "early_data_header_name": ""
      }
    }
  ],
  "outbounds": [
    {
      "type": "direct",
      "tag": "direct"
    },
    {
      "type": "block",
      "tag": "block"
    },
    {
      "type": "dns",
      "tag": "dns-out"
    }
  ],
  "route": {
    "geoip": {
      "path": "geoip.db",
      "download_url": "https://github.com/SagerNet/sing-geoip/releases/latest/download/geoip.db",
      "download_detour": "direct"
    },
    "geosite": {
      "path": "geosite.db",
      "download_url": "https://github.com/SagerNet/sing-geosite/releases/latest/download/geosite.db",
      "download_detour": "direct"
    },
    "rules": [
      {
        "protocol": "dns",
        "outbound": "dns-out"
      },
      {
        "geosite": [
          "category-ads-all"
        ],
        "outbound": "block"
      }
    ],
    "auto_detect_interface": true,
    "final": "direct"
  },
  "experimental": {}
}

服务端运行命令

# -c 指定配置文件路径，以下代表当前目录存在server.json
singbox run -c server.json

PC客户端测试配置

仅测试，以下为vless ws配置

{
  "dns": {
    "servers": [
      {
        "tag": "alidns",
        "address": "https://223.5.5.5/dns-query",
        "address_strategy": "prefer_ipv4",
        "strategy": "ipv4_only",
        "detour": "direct"
      },
      {
        "tag": "cf",
        "address": "https://1.1.1.1/dns-query",
        "strategy": "ipv4_only",
        "detour": "direct"
      },
      {
        "tag": "block",
        "address": "rcode://success"
      }
    ],
    "rules": [
      {
        "geosite": [
          "cn"
        ],
        "domain_suffix": [
          ".cn"
        ],
        "server": "alidns",
        "disable_cache": false
      },
      {
        "geosite": [
          "category-ads-all"
        ],
        "server": "block",
        "disable_cache": true
      }
    ],
    "final": "cf",
    "strategy": "",
    "disable_cache": false,
    "disable_expire": false
  },
  "inbounds": [
    {
      "type": "mixed",
      "tag": "mixed-in",
      "listen": "::",
      "listen_port": 5353,
      "tcp_fast_open": false,
      "tcp_multi_path": false,
      "udp_fragment": false,
      "sniff": true,
      "sniff_override_destination": false,
      "sniff_timeout": "300ms",
      "domain_strategy": "prefer_ipv4",
      "udp_timeout": 300,
      "proxy_protocol": false,
      "proxy_protocol_accept_no_header": false,
      "set_system_proxy": true
    }
  ],
  "outbounds": [
    {
      "type": "vless",
      "tag": "proxy",
      "server": "你的域名",
      "server_port": 443,
      "uuid": "你的UUID",
      "flow": "",
      "tls": {
        "enabled": true,
        "ech": {
          "enabled": true,
          "pq_signature_schemes_enabled": true,
          "dynamic_record_sizing_disabled": false,
          "config_path": "你的ech.config文件目录"
        }
      },
      "packet_encoding": "",
      "transport": {
        "type": "ws",
        "path": "你服务端配置的PATH路径",
        "headers": {},
        "max_early_data": 0,
        "early_data_header_name": ""
      }
    },
    {
      "type": "direct",
      "tag": "direct"
    },
    {
      "type": "block",
      "tag": "block"
    },
    {
      "type": "dns",
      "tag": "dns-out"
    }
  ],
  "route": {
    "geoip": {
      "path": "geoip.db",
      "download_url": "https://github.com/SagerNet/sing-geoip/releases/latest/download/geoip.db",
      "download_detour": "direct"
    },
    "geosite": {
      "path": "geosite.db",
      "download_url": "https://github.com/SagerNet/sing-geosite/releases/latest/download/geosite.db",
      "download_detour": "direct"
    },
    "rules": [
      {
        "protocol": "dns",
        "outbound": "dns-out"
      },
      {
        "geosite": [
          "cn",
          "private"
        ],
        "geoip": [
          "cn",
          "private"
        ],
        "domain_suffix": [
          ".cn"
        ],
        "outbound": "direct"
      },
      {
        "geosite": [
          "category-ads-all"
        ],
        "outbound": "block"
      }
    ],
    "auto_detect_interface": true,
    "final": "proxy"
  },
  "experimental": {}
}

IOS客户端测试配置

仅测试，以下是vless quic配置

{
  "dns": {
    "servers": [
      {
        "tag": "alidns",
        "address": "https://223.5.5.5/dns-query",
        "address_strategy": "prefer_ipv4",
        "strategy": "ipv4_only",
        "detour": "direct"
      },
      {
        "tag": "cf",
        "address": "https://1.1.1.1/dns-query",
        "strategy": "ipv4_only",
        "detour": "direct"
      },
      {
        "tag": "block",
        "address": "rcode://success"
      }
    ],
    "rules": [
      {
        "geosite": [
          "cn"
        ],
        "domain_suffix": [
          ".cn"
        ],
        "server": "alidns",
        "disable_cache": false
      },
      {
        "geosite": [
          "category-ads-all"
        ],
        "server": "block",
        "disable_cache": true
      }
    ],
    "final": "cf",
    "strategy": "",
    "disable_cache": false,
    "disable_expire": false
  },
  "inbounds": [
    {
      "tag": "tun-in",
      "type": "tun",
      "interface_name": "utun",
      "inet4_address": "172.19.0.1/30",
      "auto_route": true,
      "strict_route": true,
      "stack": "gvisor",
      "mtu": 9000,
      "sniff": true,
      "sniff_timeout": "300ms",
      "domain_strategy": "",
      "udp_timeout": 300
    }
  ],
  "outbounds": [
    {
      "type": "vless",
      "tag": "proxy",
      "server": "你的域名",
      "server_port": 443,
      "uuid": "你的UUID",
      "flow": "",
      "tls": {
        "enabled": true,
        "ech": {
          "enabled": true,
          "pq_signature_schemes_enabled": true,
          "dynamic_record_sizing_disabled": false,
          "config": "你的ECH CONFIGS文本，请参考格式化"
        }
      },
      "packet_encoding": "",
      "transport": {
        "type": "quic"
      }
    },
    {
      "type": "direct",
      "tag": "direct"
    },
    {
      "type": "block",
      "tag": "block"
    },
    {
      "type": "dns",
      "tag": "dns-out"
    }
  ],
  "route": {
    "geoip": {
      "path": "geoip.db",
      "download_url": "https://github.com/SagerNet/sing-geoip/releases/latest/download/geoip.db",
      "download_detour": "direct"
    },
    "geosite": {
      "path": "geosite.db",
      "download_url": "https://github.com/SagerNet/sing-geosite/releases/latest/download/geosite.db",
      "download_detour": "direct"
    },
    "rules": [
      {
        "protocol": "dns",
        "outbound": "dns-out"
      },
      {
        "geosite": [
          "cn",
          "private"
        ],
        "geoip": [
          "cn",
          "private"
        ],
        "domain_suffix": [
          ".cn"
        ],
        "outbound": "direct"
      },
      {
        "geosite": [
          "category-ads-all"
        ],
        "outbound": "block"
      }
    ],
    "auto_detect_interface": true,
    "final": "proxy"
  },
  "experimental": {}
}

如果觉得我的文章对你有用，请随意赞赏

3 条评论

bajei
January 17th, 2024 at 10:54 pm

该评论仅登录用户及评论双方可见

回复
Bao
November 10th, 2023 at 03:37 pm

ech和reality可以同时开启吗

回复
1. elden
  November 11th, 2023 at 03:08 pm
  
  @Bao
  
  当我两者都启用的时候，配置出现冲突
  
  回复

发表评论取消回复
使用cookie技术保留您的个人信息以便您下次快速评论，继续评论表示您已同意该条款

评论 *

私密评论

名称 *

🎲

邮箱 *

地址

茫茫
并且代理用起来不是太稳定，偶尔会卡顿的现象
茫茫
并且代理用起来不是太稳定，偶尔会卡顿的现象
茫茫
并且代理用起来不是太稳定，偶尔会卡顿的现象
茫茫
debian12.5环境，安装的宝塔，输入以上命令不行，必须要...
Aa
最后一步报错：=> ERROR [daed builde...

sing-box ECH 使用笔记

elden • 2023 年 10 月 26 日

<h1>Youtube视频</h1><div class="video-box"><iframe width="560" height="315" src="https://www.youtube.com/embed/-1bz8maYH2o?si=_IgDCFGTKu6h7g44" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen=""></iframe></div><style type="text/css">.video-box{position: relative;    width: 100%;    height: 0;    padding-bottom: 56.25%;}.video-box iframe{position: absolute;top: 0;left: 0;width: 100%;height: 100%;}@media screen and (max-width:800px){.video-box{width:100%;}}</style><br><h1>相关链接</h1><p><span class="external-link"><a class="no-external-link" href="https://sing-box.sagernet.org/configuration/" target="_blank"><i data-feather="external-link"></i>sing-box配置文档</a></span></p><h1>生成ech keypair</h1><pre><code class="lang-bash"># plain_server_name 自己填
# 会生成keys和confis，分别保存到文件，如ech.key、ech.config
singbox generate &lt;plain_server_name&gt; --pq-signature-schemes-enabled</code></pre><h1>格式化ech.config为单行</h1><blockquote>可用于移动客户端通过config文本来配置ech的密钥</blockquote><pre><code class="lang-bash">awk &#039;NF {printf &quot;%s\\n&quot;,$0}&#039; ech.config</code></pre><h1>服务端测试配置</h1><blockquote>仅测试，以下为vless ws配置</blockquote><pre><code class="lang-bash">{
  &quot;log&quot;: {
    &quot;disabled&quot;: false,
    &quot;level&quot;: &quot;info&quot;,
    &quot;timestamp&quot;: true
  },
  &quot;dns&quot;: {
    &quot;servers&quot;: [
      {
        &quot;tag&quot;: &quot;cf&quot;,
        &quot;address&quot;: &quot;https://1.1.1.1/dns-query&quot;,
        &quot;strategy&quot;: &quot;ipv4_only&quot;,
        &quot;detour&quot;: &quot;direct&quot;
      },
      {
        &quot;tag&quot;: &quot;block&quot;,
        &quot;address&quot;: &quot;rcode://success&quot;
      }
    ],
    &quot;rules&quot;: [
      {
        &quot;geosite&quot;: [
          &quot;category-ads-all&quot;
        ],
        &quot;server&quot;: &quot;block&quot;,
        &quot;disable_cache&quot;: true
      }
    ],
    &quot;final&quot;: &quot;cf&quot;,
    &quot;strategy&quot;: &quot;&quot;,
    &quot;disable_cache&quot;: false,
    &quot;disable_expire&quot;: false
  },
  &quot;inbounds&quot;: [
    {
      &quot;type&quot;: &quot;vless&quot;,
      &quot;tag&quot;: &quot;vless-in&quot;,
      &quot;listen&quot;: &quot;::&quot;,
      &quot;listen_port&quot;: 443,
      &quot;tcp_fast_open&quot;: false,
      &quot;tcp_multi_path&quot;: false,
      &quot;udp_fragment&quot;: false,
      &quot;sniff&quot;: false,
      &quot;sniff_override_destination&quot;: false,
      &quot;sniff_timeout&quot;: &quot;300ms&quot;,
      &quot;domain_strategy&quot;: &quot;prefer_ipv6&quot;,
      &quot;udp_timeout&quot;: 300,
      &quot;proxy_protocol&quot;: false,
      &quot;proxy_protocol_accept_no_header&quot;: false,
      &quot;users&quot;: [
        {
          &quot;name&quot;: &quot;Elden&quot;,
          &quot;uuid&quot;: &quot;你的UUID&quot;,
          &quot;flow&quot;: &quot;&quot;
        }
      ],
      &quot;tls&quot;: {
        &quot;enabled&quot;: true, 
        &quot;server_name&quot;: &quot;你的域名&quot;,
        &quot;certificate_path&quot;: &quot;你的证书文件路径&quot;,
        &quot;key_path&quot;: &quot;你的密钥文件路径&quot;,
        &quot;ech&quot;: {
          &quot;enabled&quot;: true,
          &quot;pq_signature_schemes_enabled&quot;: true,
          &quot;dynamic_record_sizing_disabled&quot;: false,
          &quot;key_path&quot;: &quot;你的ECH KEYS文件路径&quot;
        }
      },
      &quot;transport&quot;: {
        &quot;type&quot;: &quot;ws&quot;,
        &quot;path&quot;: &quot;你的PATH路径&quot;,
        &quot;headers&quot;: {},
        &quot;max_early_data&quot;: 0,
        &quot;early_data_header_name&quot;: &quot;&quot;
      }
    }
  ],
  &quot;outbounds&quot;: [
    {
      &quot;type&quot;: &quot;direct&quot;,
      &quot;tag&quot;: &quot;direct&quot;
    },
    {
      &quot;type&quot;: &quot;block&quot;,
      &quot;tag&quot;: &quot;block&quot;
    },
    {
      &quot;type&quot;: &quot;dns&quot;,
      &quot;tag&quot;: &quot;dns-out&quot;
    }
  ],
  &quot;route&quot;: {
    &quot;geoip&quot;: {
      &quot;path&quot;: &quot;geoip.db&quot;,
      &quot;download_url&quot;: &quot;https://github.com/SagerNet/sing-geoip/releases/latest/download/geoip.db&quot;,
      &quot;download_detour&quot;: &quot;direct&quot;
    },
    &quot;geosite&quot;: {
      &quot;path&quot;: &quot;geosite.db&quot;,
      &quot;download_url&quot;: &quot;https://github.com/SagerNet/sing-geosite/releases/latest/download/geosite.db&quot;,
      &quot;download_detour&quot;: &quot;direct&quot;
    },
    &quot;rules&quot;: [
      {
        &quot;protocol&quot;: &quot;dns&quot;,
        &quot;outbound&quot;: &quot;dns-out&quot;
      },
      {
        &quot;geosite&quot;: [
          &quot;category-ads-all&quot;
        ],
        &quot;outbound&quot;: &quot;block&quot;
      }
    ],
    &quot;auto_detect_interface&quot;: true,
    &quot;final&quot;: &quot;direct&quot;
  },
  &quot;experimental&quot;: {}
}</code></pre><h1>服务端运行命令</h1><pre><code class="lang-bash"># -c 指定配置文件路径，以下代表当前目录存在server.json
singbox run -c server.json</code></pre><h1>PC客户端测试配置</h1><blockquote>仅测试，以下为vless ws配置</blockquote><pre><code class="lang-json">{
  &quot;dns&quot;: {
    &quot;servers&quot;: [
      {
        &quot;tag&quot;: &quot;alidns&quot;,
        &quot;address&quot;: &quot;https://223.5.5.5/dns-query&quot;,
        &quot;address_strategy&quot;: &quot;prefer_ipv4&quot;,
        &quot;strategy&quot;: &quot;ipv4_only&quot;,
        &quot;detour&quot;: &quot;direct&quot;
      },
      {
        &quot;tag&quot;: &quot;cf&quot;,
        &quot;address&quot;: &quot;https://1.1.1.1/dns-query&quot;,
        &quot;strategy&quot;: &quot;ipv4_only&quot;,
        &quot;detour&quot;: &quot;direct&quot;
      },
      {
        &quot;tag&quot;: &quot;block&quot;,
        &quot;address&quot;: &quot;rcode://success&quot;
      }
    ],
    &quot;rules&quot;: [
      {
        &quot;geosite&quot;: [
          &quot;cn&quot;
        ],
        &quot;domain_suffix&quot;: [
          &quot;.cn&quot;
        ],
        &quot;server&quot;: &quot;alidns&quot;,
        &quot;disable_cache&quot;: false
      },
      {
        &quot;geosite&quot;: [
          &quot;category-ads-all&quot;
        ],
        &quot;server&quot;: &quot;block&quot;,
        &quot;disable_cache&quot;: true
      }
    ],
    &quot;final&quot;: &quot;cf&quot;,
    &quot;strategy&quot;: &quot;&quot;,
    &quot;disable_cache&quot;: false,
    &quot;disable_expire&quot;: false
  },
  &quot;inbounds&quot;: [
    {
      &quot;type&quot;: &quot;mixed&quot;,
      &quot;tag&quot;: &quot;mixed-in&quot;,
      &quot;listen&quot;: &quot;::&quot;,
      &quot;listen_port&quot;: 5353,
      &quot;tcp_fast_open&quot;: false,
      &quot;tcp_multi_path&quot;: false,
      &quot;udp_fragment&quot;: false,
      &quot;sniff&quot;: true,
      &quot;sniff_override_destination&quot;: false,
      &quot;sniff_timeout&quot;: &quot;300ms&quot;,
      &quot;domain_strategy&quot;: &quot;prefer_ipv4&quot;,
      &quot;udp_timeout&quot;: 300,
      &quot;proxy_protocol&quot;: false,
      &quot;proxy_protocol_accept_no_header&quot;: false,
      &quot;set_system_proxy&quot;: true
    }
  ],
  &quot;outbounds&quot;: [
    {
      &quot;type&quot;: &quot;vless&quot;,
      &quot;tag&quot;: &quot;proxy&quot;,
      &quot;server&quot;: &quot;你的域名&quot;,
      &quot;server_port&quot;: 443,
      &quot;uuid&quot;: &quot;你的UUID&quot;,
      &quot;flow&quot;: &quot;&quot;,
      &quot;tls&quot;: {
        &quot;enabled&quot;: true,
        &quot;ech&quot;: {
          &quot;enabled&quot;: true,
          &quot;pq_signature_schemes_enabled&quot;: true,
          &quot;dynamic_record_sizing_disabled&quot;: false,
          &quot;config_path&quot;: &quot;你的ech.config文件目录&quot;
        }
      },
      &quot;packet_encoding&quot;: &quot;&quot;,
      &quot;transport&quot;: {
        &quot;type&quot;: &quot;ws&quot;,
        &quot;path&quot;: &quot;你服务端配置的PATH路径&quot;,
        &quot;headers&quot;: {},
        &quot;max_early_data&quot;: 0,
        &quot;early_data_header_name&quot;: &quot;&quot;
      }
    },
    {
      &quot;type&quot;: &quot;direct&quot;,
      &quot;tag&quot;: &quot;direct&quot;
    },
    {
      &quot;type&quot;: &quot;block&quot;,
      &quot;tag&quot;: &quot;block&quot;
    },
    {
      &quot;type&quot;: &quot;dns&quot;,
      &quot;tag&quot;: &quot;dns-out&quot;
    }
  ],
  &quot;route&quot;: {
    &quot;geoip&quot;: {
      &quot;path&quot;: &quot;geoip.db&quot;,
      &quot;download_url&quot;: &quot;https://github.com/SagerNet/sing-geoip/releases/latest/download/geoip.db&quot;,
      &quot;download_detour&quot;: &quot;direct&quot;
    },
    &quot;geosite&quot;: {
      &quot;path&quot;: &quot;geosite.db&quot;,
      &quot;download_url&quot;: &quot;https://github.com/SagerNet/sing-geosite/releases/latest/download/geosite.db&quot;,
      &quot;download_detour&quot;: &quot;direct&quot;
    },
    &quot;rules&quot;: [
      {
        &quot;protocol&quot;: &quot;dns&quot;,
        &quot;outbound&quot;: &quot;dns-out&quot;
      },
      {
        &quot;geosite&quot;: [
          &quot;cn&quot;,
          &quot;private&quot;
        ],
        &quot;geoip&quot;: [
          &quot;cn&quot;,
          &quot;private&quot;
        ],
        &quot;domain_suffix&quot;: [
          &quot;.cn&quot;
        ],
        &quot;outbound&quot;: &quot;direct&quot;
      },
      {
        &quot;geosite&quot;: [
          &quot;category-ads-all&quot;
        ],
        &quot;outbound&quot;: &quot;block&quot;
      }
    ],
    &quot;auto_detect_interface&quot;: true,
    &quot;final&quot;: &quot;proxy&quot;
  },
  &quot;experimental&quot;: {}
}</code></pre><h1>IOS客户端测试配置</h1><blockquote>仅测试，以下是vless quic配置</blockquote><pre><code class="lang-json">{
  &quot;dns&quot;: {
    &quot;servers&quot;: [
      {
        &quot;tag&quot;: &quot;alidns&quot;,
        &quot;address&quot;: &quot;https://223.5.5.5/dns-query&quot;,
        &quot;address_strategy&quot;: &quot;prefer_ipv4&quot;,
        &quot;strategy&quot;: &quot;ipv4_only&quot;,
        &quot;detour&quot;: &quot;direct&quot;
      },
      {
        &quot;tag&quot;: &quot;cf&quot;,
        &quot;address&quot;: &quot;https://1.1.1.1/dns-query&quot;,
        &quot;strategy&quot;: &quot;ipv4_only&quot;,
        &quot;detour&quot;: &quot;direct&quot;
      },
      {
        &quot;tag&quot;: &quot;block&quot;,
        &quot;address&quot;: &quot;rcode://success&quot;
      }
    ],
    &quot;rules&quot;: [
      {
        &quot;geosite&quot;: [
          &quot;cn&quot;
        ],
        &quot;domain_suffix&quot;: [
          &quot;.cn&quot;
        ],
        &quot;server&quot;: &quot;alidns&quot;,
        &quot;disable_cache&quot;: false
      },
      {
        &quot;geosite&quot;: [
          &quot;category-ads-all&quot;
        ],
        &quot;server&quot;: &quot;block&quot;,
        &quot;disable_cache&quot;: true
      }
    ],
    &quot;final&quot;: &quot;cf&quot;,
    &quot;strategy&quot;: &quot;&quot;,
    &quot;disable_cache&quot;: false,
    &quot;disable_expire&quot;: false
  },
  &quot;inbounds&quot;: [
    {
      &quot;tag&quot;: &quot;tun-in&quot;,
      &quot;type&quot;: &quot;tun&quot;,
      &quot;interface_name&quot;: &quot;utun&quot;,
      &quot;inet4_address&quot;: &quot;172.19.0.1/30&quot;,
      &quot;auto_route&quot;: true,
      &quot;strict_route&quot;: true,
      &quot;stack&quot;: &quot;gvisor&quot;,
      &quot;mtu&quot;: 9000,
      &quot;sniff&quot;: true,
      &quot;sniff_timeout&quot;: &quot;300ms&quot;,
      &quot;domain_strategy&quot;: &quot;&quot;,
      &quot;udp_timeout&quot;: 300
    }
  ],
  &quot;outbounds&quot;: [
    {
      &quot;type&quot;: &quot;vless&quot;,
      &quot;tag&quot;: &quot;proxy&quot;,
      &quot;server&quot;: &quot;你的域名&quot;,
      &quot;server_port&quot;: 443,
      &quot;uuid&quot;: &quot;你的UUID&quot;,
      &quot;flow&quot;: &quot;&quot;,
      &quot;tls&quot;: {
        &quot;enabled&quot;: true,
        &quot;ech&quot;: {
          &quot;enabled&quot;: true,
          &quot;pq_signature_schemes_enabled&quot;: true,
          &quot;dynamic_record_sizing_disabled&quot;: false,
          &quot;config&quot;: &quot;你的ECH CONFIGS文本，请参考格式化&quot;
        }
      },
      &quot;packet_encoding&quot;: &quot;&quot;,
      &quot;transport&quot;: {
        &quot;type&quot;: &quot;quic&quot;
      }
    },
    {
      &quot;type&quot;: &quot;direct&quot;,
      &quot;tag&quot;: &quot;direct&quot;
    },
    {
      &quot;type&quot;: &quot;block&quot;,
      &quot;tag&quot;: &quot;block&quot;
    },
    {
      &quot;type&quot;: &quot;dns&quot;,
      &quot;tag&quot;: &quot;dns-out&quot;
    }
  ],
  &quot;route&quot;: {
    &quot;geoip&quot;: {
      &quot;path&quot;: &quot;geoip.db&quot;,
      &quot;download_url&quot;: &quot;https://github.com/SagerNet/sing-geoip/releases/latest/download/geoip.db&quot;,
      &quot;download_detour&quot;: &quot;direct&quot;
    },
    &quot;geosite&quot;: {
      &quot;path&quot;: &quot;geosite.db&quot;,
      &quot;download_url&quot;: &quot;https://github.com/SagerNet/sing-geosite/releases/latest/download/geosite.db&quot;,
      &quot;download_detour&quot;: &quot;direct&quot;
    },
    &quot;rules&quot;: [
      {
        &quot;protocol&quot;: &quot;dns&quot;,
        &quot;outbound&quot;: &quot;dns-out&quot;
      },
      {
        &quot;geosite&quot;: [
          &quot;cn&quot;,
          &quot;private&quot;
        ],
        &quot;geoip&quot;: [
          &quot;cn&quot;,
          &quot;private&quot;
        ],
        &quot;domain_suffix&quot;: [
          &quot;.cn&quot;
        ],
        &quot;outbound&quot;: &quot;direct&quot;
      },
      {
        &quot;geosite&quot;: [
          &quot;category-ads-all&quot;
        ],
        &quot;outbound&quot;: &quot;block&quot;
      }
    ],
    &quot;auto_detect_interface&quot;: true,
    &quot;final&quot;: &quot;proxy&quot;
  },
  &quot;experimental&quot;: {}
}</code></pre>

sing-box ECH 使用笔记

Youtube视频

相关链接

生成ech keypair

格式化ech.config为单行

服务端测试配置

服务端运行命令

PC客户端测试配置

IOS客户端测试配置

3 条评论

发表评论取消回复
使用cookie技术保留您的个人信息以便您下次快速评论，继续评论表示您已同意该条款

xxx-discord

sing-box透明代理笔记

sing-box(SFI)IOS客户端使用笔记 - xray

[Xray-Core] - [vless-h2-uTLS-REALITY]安装笔记

sing-box 1.8.0+版本迁移指南，Rule Set配置使用

dae(大鹅) 内核级高性能透明代理工具- 安装和基本配置笔记

hysteria2笔记

sing-box 解锁流媒体的DNS配置笔记

singbox配置Hysteria2笔记

sing-box(SFI)IOS客户端使用笔记 - xray

sing-box ECH 使用笔记

Youtube视频

相关链接

生成ech keypair

格式化ech.config为单行

服务端测试配置

服务端运行命令

PC客户端测试配置

IOS客户端测试配置

3 条评论

发表评论 取消回复 使用cookie技术保留您的个人信息以便您下次快速评论，继续评论表示您已同意该条款

sing-box ECH 使用笔记

发表评论取消回复
使用cookie技术保留您的个人信息以便您下次快速评论，继续评论表示您已同意该条款