Iptables -t nat -A SHADOWSOCKS -d 240.0.0.0/4 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 224.0.0.0/4 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 192.168.0.0/16 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 172.16.0.0/12 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 169.254.0.0/16 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 127.0.0.0/8 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 10.0.0.0/8 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 0.0.0.0/8 -j RETURN Iptables -t nat -A SHADOWSOCKS -d 45.62.113.186 -j RETURN # Ignore these IPs, the IP of proxy server should be included here # if dnsmasq is start before the set is created, the site could not be open # we should restart dnsmasq to put add rules to the set Iptables -t nat -A OUTPUT -p tcp -m set -match-set gfwlist dst -j REDIRECT -to-port $ss_port Ipset create gfwlist hash:ip counters timeout 1200 Ss_config=/home/lance/.config/shadowsocks/s1_config.json # Shell scripts to control shadowsocks proxy on Linux Udpbufsize=1024 # Upper limit on the size of UDP messages. Timeout=10 # Global timeout option (10 seconds). Min_ttl=15m # Retain cached entries at least 15 minutes. # but may make pdnsd less efficient, unfortunately. # paranoid=on # This option reduces the chance of cache poisoning # machines on your network to query pdnsd. Server_ip = 127.0.0.1 # Use eth0 here if you want to allow other
0 kommentar(er)
