VLESS+Reality and intermediate server configuration #4033
Description
Integrity requirements
- I confirm that I have read the documentation, understand the meaning of all the configuration items I wrote, and did not pile up seemingly useful options or default values.
- I provided the complete config and logs, rather than just providing the truncated parts based on my own judgment.
- I searched issues and did not find any similar issues.
- The problem can be successfully reproduced in the latest Release
Description
When using VLESS+Reality and a configuration with an intermediate server (XRay_Client <- VLESS+Reality -> XRay_Server1 <- VLESS+Reality -> XRay_Server2), some services work very inconsistently.
For example, https://console.firebase.google.com/ refuses to load, or parts of its functionality become unavailable.
Enabling or disabling sniffing, does not change the situation.
However, if the classic configuration with a single XRay server is used (XRay_Client <- VLESS+Reality -> XRay_Server2), such issues do not occur.
Reproduction Method
Create configuration: XRay_Client <- VLESS+Reality -> XRay_Server1 <- VLESS+Reality -> XRay_Server2
and go to https://console.firebase.google.com/
Client config
N/A
Server config
XRay_server1 conf
{
"inbounds": [
{
"listen": "0.0.0.0",
"port": 443,
"protocol": "vless",
"settings": {
"clients": [
{
"email": "client",
"flow": "xtls-rprx-vision",
"id": "<- UUID ->"
}
],
"decryption": "none"
},
"streamSettings": {
"network": "tcp",
"realitySettings": {
"dest": "<- dest domain:port ->",
"maxClient": "",
"maxTimediff": 0,
"minClient": "",
"privateKey": "<- private key ->",
"serverNames": [
"<- dest domain ->"
],
"shortIds": [
""
],
"show": true,
"xver": 0
},
"security": "reality"
},
"tag": "inbound-443"
}
],
"outbounds": [
{
"tag": "xray2",
"protocol": "vless",
"settings": {
"vnext": [
{
"address": "<- dest domain/IP ->",
"port": 443,
"users": [
{
"id": "<- UUID ->",
"flow": "xtls-rprx-vision",
"encryption": "none"
}
]
}
]
},
"streamSettings": {
"network": "tcp",
"security": "reality",
"realitySettings": {
"publicKey": "<- public key ->",
"fingerprint": "chrome",
"serverName": "<- dest domain ->",
"shortId": "",
"spiderX": "/"
}
}
}
]
}
XRay_server2 conf
{
"inbounds": [
{
"listen": "0.0.0.0",
"port": 443,
"protocol": "vless",
"settings": {
"clients": [
{
"email": "xray1",
"flow": "xtls-rprx-vision",
"id": "<- UUID ->"
},
{
"email": "client",
"flow": "xtls-rprx-vision",
"id": "<- UUID ->"
}
],
"decryption": "none"
},
"streamSettings": {
"network": "tcp",
"realitySettings": {
"dest": "<- dest domain:port ->",
"maxClient": "",
"maxTimediff": 0,
"minClient": "",
"privateKey": "<- private key ->",
"serverNames": [
"<- dest domain ->"
],
"shortIds": [
""
],
"show": true,
"xver": 0
},
"security": "reality"
},
"tag": "inbound-443"
}
],
"outbounds": [
{
"tag": "direct",
"protocol": "freedom"
}
]
}
Client log
N/A
Server log
N/A
Metadata
Metadata
Assignees
Labels
No labels