- path: /home/jkl/tutte.snailcdn.com.sock protocol: type: ws targets: # vmess for apple devices - matching_path: /WuJkpXZ/4cXiCuZ protocol: type: vmess cipher: any user_id: 2adf8363-d69e-4a49-a363-4ec71bec7708 force_aead: true override_rules: - mask: 217.158.49.130:26192 action: allow override_address: 127.0.0.1:57272 client_proxy: direct - block-all # shadowsocks 2022 for chromecast - matching_path: /M02CZ5/5Lx8KE protocol: type: shadowsocks cipher: 2022-blake3-aes-256-gcm password: 3e9bFeij0J2nlI1bQbQkbJsY0b3oeBFUIJ/e7/ceheE= override_rules: - internal - mask: 0.0.0.0/0 action: allow client_proxy: a1-direct - path: /home/jkl/direct-shoes.sock protocol: type: ws target: ping_type: disabled matching_path: /33f7d76d624a591 matching_headers: 525e5b7dd71arb: 68aa675934c69b3b f2a37829c2ab4b: bb95c4a231fe30f0 protocol: type: vmess cipher: aes-128-gcm user_id: ae45578d-b148-42c9-9718-fba0f436b2e5 force_aead: true rules: - mask: 139.247.85.250:57272 action: allow override_address: 127.0.0.1:57272 client_proxy: direct - block-all # snell for surge, used by connecting over vmess - address: 127.0.0.1:57272 transport: tcp protocol: type: snell cipher: aes-128-gcm password: D5BBtmg9OxZCsr5t0eIg3hUdTR rules: - internal - mask: 0.0.0.0/0 action: allow client_proxy: a1-direct # forward to the http proxy on a1, ramen, or tiger, # which gives working connection successful/failure # responses since we're forwarding. - address: 127.0.0.1:22222 protocol: type: http rules: - internal - mask: 0.0.0.0/0 action: allow client_proxy: a1-direct - address: 127.0.0.1:23333 protocol: type: http rules: - mask: 0.0.0.0/0 action: allow client_proxy: nordvpn-sg - address: 127.0.0.1:27777 protocol: type: http rules: - mask: 0.0.0.0/0 action: allow client_proxy: nordvpn-de - address: 127.0.0.1:37777 protocol: type: http rules: - mask: 0.0.0.0/0 action: allow client_proxy: nordvpn-nl - address: 127.0.0.1:27778 protocol: type: forward target: irc.torrentleech.org:7021 rules: - mask: 0.0.0.0/0 action: allow client_proxy: nordvpn-sg - address: 127.0.0.1:27779 protocol: type: forward target: irc.iptorrents.com:6697 rules: - mask: 0.0.0.0/0 action: allow client_proxy: nordvpn-sg - address: 127.0.0.1:27780 protocol: type: forward target: irc.p2p-network.net:6697 rules: - mask: 0.0.0.0/0 action: allow client_proxy: nordvpn-sg # nzbget forwarder - address: 127.0.0.1:58885 protocol: type: forward target: news.eweka.nl:563 # target: usenet.premiumize.me:563 rules: - mask: 0.0.0.0/0 action: allow client_proxy: ramen-http # tiger gitea ssh forwarder - address: 127.0.0.1:7777 protocol: type: forward target: 127.0.0.1:22 rules: - mask: 0.0.0.0/0 action: allow client_proxy: tiger-http - address: 127.0.0.1:32222 protocol: type: forward target: 127.0.0.1:11112 rules: - mask: 0.0.0.0/0 action: allow client_proxy: ramen - client_group: ramen-http client_proxy: address: 127.0.0.1:32222 protocol: type: http - address: 127.0.0.1:42222 protocol: type: forward target: 127.0.0.1:11112 rules: - mask: 0.0.0.0/0 action: allow client_proxy: tiger - client_group: tiger-http client_proxy: address: 127.0.0.1:42222 protocol: type: http - address: 127.0.0.1:52222 protocol: type: forward target: 127.0.0.1:11112 rules: - mask: 0.0.0.0/0 action: allow client_proxy: a1-direct - rule_group: internal rules: - mask: 5.5.5.5 action: allow override_address: 127.0.0.1 client_proxy: direct - mask: 172.168.0.2:22 action: allow override_address: 127.0.0.1:65375 client_proxy: direct - mask: 172.168.0.2 action: allow override_address: 127.0.0.1 client_proxy: direct - mask: 7.7.7.7 action: allow override_address: 127.0.0.1 client_proxy: tiger-http - mask: 9.9.9.9 action: allow override_address: 127.0.0.1 client_proxy: ramen-http # snell has working connection established response - client_group: a1-direct client_proxy: address: 207.148.105.24:443 protocol: type: tls verify: false sni_hostname: 46c09056644688b42aad8dd8f.local protocol: type: ws matching_path: /0235ae/f72ab matching_headers: 33a02a014883f2: ccbaa036390211 aa7fc8f1f9d1da: 2451b90156f5b9 ping_type: disabled protocol: type: snell cipher: chacha20-ietf-poly1305 password: 3PZqkbatf8hHUtCV2NBWfL545/cb - client_group: a1 client_proxies: - address: 104.21.38.43:443 protocol: type: tls verify: true sni_hostname: a1.moocdn.com protocol: type: ws matching_path: /0235ae/f72ab matching_headers: Host: a1.moocdn.com User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Firefox/102.0 ping_type: ping protocol: type: shadowsocks cipher: 2022-blake3-aes-256-gcm password: kv4cijC4/J+L5fKHf1YV8iISH8bcM2PUqAQfy1T4Ltg= - address: 172.67.218.198:443 protocol: type: tls verify: true sni_hostname: a1.moocdn.com protocol: type: ws matching_path: /0235ae/f72ab matching_headers: Host: a1.moocdn.com User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Firefox/102.0 ping_type: ping protocol: type: shadowsocks cipher: 2022-blake3-aes-256-gcm password: kv4cijC4/J+L5fKHf1YV8iISH8bcM2PUqAQfy1T4Ltg= - client_group: tiger client_proxy: address: 172.104.117.41:65183 protocol: type: tls sni_hostname: b6cf36a9d059ccb06d965f38c5f75230f5199c01b93dcc verify: false protocol: type: ws matching_path: /219d965b85a9a1cc8a716037c9 matching_headers: ea70be3bfe5d20e4db7562cd11: 89a538fc49210ad234752f501d 6d2de0f68ace0812bfde85bccf: f65ca495334958e265721a8c27 protocol: type: tls verify: false protocol: type: shadowsocks cipher: 2022-blake3-chacha20-ietf-poly1305 password: xF2semECj4uip5di9EZgQJbHy+FHXV7KFzoO1N5OhOs= - client_group: ramen client_proxy: # cloudflare causes some downloads to go at 300kb/s # address: 104.21.38.43:443 # address: 172.67.218.198:443 address: 168.119.172.92:443 protocol: type: tls # sni_hostname: ramen.moocdn.com sni_hostname: 9f8e2ec9a9cf7dc2fe78ac2 verify: false protocol: type: ws matching_path: /tUJwV5k/T0eguseT matching_headers: Host: ramen.moocdn.com X-App-Version: jXCVzvVh8lvuK2YEZP0EmtyXXyu protocol: type: tls verify: false sni_hostname: 4e1883eb975fe82a5e36f8 protocol: type: shadowsocks cipher: 2022-blake3-chacha20-ietf-poly1305 password: 0Qu5HTHARG+zoYO3C7BvpydrLaMk1+2+0g04OfAMM3k=