OpenClash 调试日志
生成时间: 2020-10-23 21:23:14 插件版本: v0.40.12-beta
#===================== 系统信息 =====================# 主机型号: Raspberry Pi 4 Model B Rev 1.2 固件版本: OpenWrt SNAPSHOT r0-a0ff7c0 LuCI版本: git-20.256.12360-1a54222-1 内核版本: 5.4.72 处理器架构: aarch64_cortex-a72 #此项在使用Tun模式时应为ACCEPT 防火墙转发: ACCEPT #此项有值时建议到网络-接口-lan的设置中禁用IPV6的DHCP IPV6-DHCP: #此项结果应仅有配置文件的DNS监听地址 Dnsmasq转发设置: #===================== 依赖检查 =====================# dnsmasq-full: 已安装 coreutils: 已安装 coreutils-nohup: 已安装 bash: 已安装 curl: 已安装 jsonfilter: 已安装 ca-certificates: 已安装 ipset: 已安装 ip-full: 已安装 iptables-mod-tproxy: 已安装 iptables-mod-extra: 已安装 libcap: 已安装 libcap-bin: 已安装 kmod-tun(TUN模式): 已安装 luci-compat(Luci-19.07): 已安装 #===================== 内核检查 =====================# 运行状态: 未运行 已选择的架构: linux-armv8 #下方无法显示内核版本号时请确认您的内核版本是否正确或者有无权限 Tun内核版本: Tun内核文件: 存在 Tun内核运行权限: 正常 Game内核版本: v0.17.0-214-g89f5710 Game内核文件: 存在 Game内核运行权限: 正常 Dev内核版本: v1.2.0-5-g2321e91 Dev内核文件: 存在 Dev内核运行权限: 正常 #===================== 插件设置 =====================# 当前配置文件: /etc/openclash/config/dlercloud.yaml 运行模式: redir-host 默认代理模式: rule UDP流量转发: 停用 DNS劫持: 启用 自定义DNS: 停用 IPV6-DNS解析: 停用 禁用Dnsmasq缓存: 停用 自定义规则: 启用 仅允许内网: 停用 仅代理命中规则流量: 停用 绕过中国大陆IP: 停用 #启动异常时建议关闭此项后重试 保留配置: 停用 #启动异常时建议关闭此项后重试 第三方规则: lhie1 第三方规则策略组设置: GlobalTV: GlobalTV AsianTV: AsianTV Proxy: Proxies Apple: Apple Netflix: Netflix Spotify: Spotify Steam: Steam AdBlock: AdBlock Netease Music: Speedtest: Speedtest Telegram: Telegram Microsoft: Microsoft PayPal: PayPal Domestic: Domestic Others: Proxies 读取的配置文件策略组: Proxies Domestic Scholar Others AdBlock Apple AsianTV GlobalTV Netflix Spotify Telegram Steam Speedtest PayPal Microsoft Netease Music Auto - UrlTest DIRECT REJECT #===================== 自定义规则 一 =====================# ##- DOMAIN-SUFFIX,google.com,Proxy 匹配域名后缀(交由Proxy代理服务器组) ##- DOMAIN-KEYWORD,google,Proxy 匹配域名关键字(交由Proxy代理服务器组) ##- DOMAIN,google.com,Proxy 匹配域名(交由Proxy代理服务器组) ##- DOMAIN-SUFFIX,ad.com,REJECT 匹配域名后缀(拒绝) ##- IP-CIDR,127.0.0.0/8,DIRECT 匹配数据目标IP(直连) ##- SRC-IP-CIDR,192.168.1.201/32,DIRECT 匹配数据发起IP(直连) ##- DST-PORT,80,DIRECT 匹配数据目标端口(直连) ##- SRC-PORT,7777,DIRECT 匹配数据源端口(直连) ##排序在上的规则优先生效,如添加(去除规则前的#号): ##IP段:192.168.1.2-192.168.1.200 直连 ##- SRC-IP-CIDR,192.168.1.2/31,DIRECT ##- SRC-IP-CIDR,192.168.1.4/30,DIRECT ##- SRC-IP-CIDR,192.168.1.8/29,DIRECT ##- SRC-IP-CIDR,192.168.1.16/28,DIRECT ##- SRC-IP-CIDR,192.168.1.32/27,DIRECT ##- SRC-IP-CIDR,192.168.1.64/26,DIRECT ##- SRC-IP-CIDR,192.168.1.128/26,DIRECT ##- SRC-IP-CIDR,192.168.1.192/29,DIRECT ##- SRC-IP-CIDR,192.168.1.200/32,DIRECT ##IP段:192.168.1.202-192.168.1.255 直连 ##- SRC-IP-CIDR,192.168.1.202/31,DIRECT ##- SRC-IP-CIDR,192.168.1.204/30,DIRECT ##- SRC-IP-CIDR,192.168.1.208/28,DIRECT ##- SRC-IP-CIDR,192.168.1.224/27,DIRECT ##此时IP为192.168.1.1和192.168.1.201的客户端流量走代理(策略),其余客户端不走代理 ##因为Fake-IP模式下,IP地址为192.168.1.1的路由器自身流量可走代理(策略),所以需要排除 ##仅设置路由器自身直连: ##- SRC-IP-CIDR,192.168.1.1/32,DIRECT ##- SRC-IP-CIDR,198.18.0.1/32,DIRECT ##在线IP段转CIDR地址:http://ip2cidr.com #===================== 自定义规则 二 =====================# ##- DOMAIN-SUFFIX,google.com,Proxy 匹配域名后缀(交由Proxy代理服务器组) ##- DOMAIN-KEYWORD,google,Proxy 匹配域名关键字(交由Proxy代理服务器组) ##- DOMAIN,google.com,Proxy 匹配域名(交由Proxy代理服务器组) ##- DOMAIN-SUFFIX,ad.com,REJECT 匹配域名后缀(拒绝) ##- IP-CIDR,127.0.0.0/8,DIRECT 匹配数据目标IP(直连) ##- SRC-IP-CIDR,192.168.1.201/32,DIRECT 匹配数据发起IP(直连) ##- DST-PORT,80,DIRECT 匹配数据目标端口(直连) ##- SRC-PORT,7777,DIRECT 匹配数据源端口(直连) #===================== 配置文件 =====================# port: 7890 socks-port: 7891 allow-lan: true mode: Rule log-level: info external-controller: 127.0.0.1:9090 #===================== 防火墙设置 =====================# #NAT chain Chain PREROUTING (policy ACCEPT) num target prot opt source destination 1 REDIRECT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 redir ports 53 2 REDIRECT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 redir ports 53 3 DOCKER all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type LOCAL 4 prerouting_rule all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3: Custom prerouting rule chain */ 5 zone_lan_prerouting all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */ 6 zone_vpn_prerouting all -- 0.0.0.0/0 0.0.0.0/0 /* !fw3 */ Chain OUTPUT (policy ACCEPT) num target prot opt source destination 1 DOCKER all -- 0.0.0.0/0 !127.0.0.0/8 ADDRTYPE match dst-type LOCAL #Mangle chain Chain PREROUTING (policy ACCEPT) num target prot opt source destination Chain OUTPUT (policy ACCEPT) num target prot opt source destination 1 RRDIPT_OUTPUT all -- 0.0.0.0/0 0.0.0.0/0 #===================== 路由表状态 =====================# #route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 br-lan 11.11.11.11 192.168.0.1 255.255.255.255 UGH 0 0 0 br-lan 172.17.0.0 0.0.0.0 255.255.0.0 U 0 0 0 docker0 192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 br-lan #ip route list default via 192.168.0.1 dev br-lan proto static 11.11.11.11 via 192.168.0.1 dev br-lan 172.17.0.0/16 dev docker0 proto kernel scope link src 172.17.0.1 linkdown 192.168.0.0/24 dev br-lan proto kernel scope link src 192.168.0.100 #ip rule show 0: from all lookup local 32766: from all lookup main 32767: from all lookup default #===================== 端口占用状态 =====================# #===================== 测试本机DNS查询 =====================# Server: 127.0.0.1 Address: 127.0.0.1#53 Name: www.baidu.com www.baidu.com canonical name = www.a.shifen.com Name: www.a.shifen.com Address 1: 180.101.49.11 Address 2: 180.101.49.12 *** Can't find www.baidu.com: No answer #===================== resolv.conf.d =====================# # Interface lan nameserver 192.168.0.1 #===================== 测试本机网络连接 =====================# HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform Connection: keep-alive Content-Length: 277 Content-Type: text/html Date: Fri, 23 Oct 2020 13:23:17 GMT Etag: "575e1f60-115" Last-Modified: Mon, 13 Jun 2016 02:50:08 GMT Pragma: no-cache Server: bfe/1.0.8.18 #===================== 测试本机网络下载 =====================# #===================== 最近运行日志 =====================# 2020-10-23 21:22:29 Nameserver Option Must Be Setted, Auto Completed 2020-10-23 21:22:29 Error: OpenClash Can Not Start, Try Use Backup Rules Start Again 2020-10-23 21:22:29 Error: OpenClash Can Not Start, Try Use Raw Config Restart Again 2020-10-23 21:22:29 Error: Get DNS 'listen' Option Error, OpenClash Can Not Start With Raw Config File 2020-10-23 21:22:29 Error: Get DNS 'enhanced-mode' Option Error, OpenClash Can Not Start With Raw Config File 2020-10-23 21:22:29 Error: Get General 'redir-port' Option Error, OpenClash Can Not Start With Raw Config File