Upstream zapret improvements. #228

Closed
opened 2024-10-31 20:48:02 +03:00 by voronind · 3 comments
Owner
  1. Use nftables.
  2. ipv6 support.
  3. Full http mode.
  4. Udp support?
  5. New profiles?
  6. ipsets.
1. Use nftables. 2. ~~ipv6 support~~. 3. ~~Full http mode~~. 4. ~~Udp support?~~ 5. New profiles? 6. ipsets.
voronind added the
Roadmap
label 2024-10-31 20:48:02 +03:00
voronind pinned this 2024-10-31 20:48:07 +03:00
Author
Owner

Ping @roman3pm when draft pr ready.

Ping @roman3pm when draft pr ready.
Author
Owner
iptables -t mangle -A POSTROUTING -p udp -m multiport --dports 50000:50099 -m mark ! --mark 0x40000000/0x40000000 -m connbytes --connbytes 1:1 --connbytes-mode packets --connbytes-dir original -j NFQUEUE --queue-num 65400 --queue-bypass

nfqws --dpi-desync=disorder --dpi-desync-ttl=1 --dpi-desync-split-pos=3 --dpi-desync=split2 --dpi-desync=fake --dpi-desync-repeats=6 --dpi-desync-any-protocol --dpi-desync=fake --qnum=65400 --dpi-desync-fwmark=0x40000000

shell

iptables -t mangle -A POSTROUTING -p udp -m multiport --dports 50000:50099 -m mark ! --mark 0x40000000/0x40000000 -m connbytes --connbytes 1:1 --connbytes-mode packets --connbytes-dir original -j NFQUEUE --queue-num 200 --queue-bypass
``` iptables -t mangle -A POSTROUTING -p udp -m multiport --dports 50000:50099 -m mark ! --mark 0x40000000/0x40000000 -m connbytes --connbytes 1:1 --connbytes-mode packets --connbytes-dir original -j NFQUEUE --queue-num 65400 --queue-bypass nfqws --dpi-desync=disorder --dpi-desync-ttl=1 --dpi-desync-split-pos=3 --dpi-desync=split2 --dpi-desync=fake --dpi-desync-repeats=6 --dpi-desync-any-protocol --dpi-desync=fake --qnum=65400 --dpi-desync-fwmark=0x40000000 shell iptables -t mangle -A POSTROUTING -p udp -m multiport --dports 50000:50099 -m mark ! --mark 0x40000000/0x40000000 -m connbytes --connbytes 1:1 --connbytes-mode packets --connbytes-dir original -j NFQUEUE --queue-num 200 --queue-bypass ```
voronind unpinned this 2024-11-14 17:11:47 +03:00
voronind pinned this 2024-11-15 23:49:13 +03:00
Author
Owner
https://github.com/NixOS/nixpkgs/pull/356339
voronind unpinned this 2024-12-10 01:35:12 +03:00
Sign in to join this conversation.
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: voronind/nix#228
No description provided.