Comments (95)
Asteroids89
commented on August 27, 2024
I1001 19:36:37.315405 8072 dialer2.go:262] MULTIDIALER DialQuic("clients3.google.com:443") with good_addrs=126, bad_addrs=36
I1001 19:37:05.420859 8072 dialer2.go:262] MULTIDIALER DialQuic("clients3.google.com:443") with good_addrs=135, bad_addrs=37
貌似 浙江移动还可以
from goproxy.
wz7465
commented on August 27, 2024
from goproxy.
commented on August 27, 2024
@dou4cc
你那里能用香港sni么
from goproxy.
dou4cc
commented on August 27, 2024
@candy2107 一个月前我这儿就只剩一两个香港sni了,本着不给香港添麻烦的原则,我把那两个sni删了。
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 南京移动,tls和quic都连不上了。你的GotoX还好吗?
from goproxy.
jyuan15
commented on August 27, 2024
成都电信,TLS一个IP都扫不到,quic则表现良好,720P视频流畅。
from goproxy.
dou4cc
commented on August 27, 2024
@xxnet 之前goproxy讨论isp/gfw套路的帖子你究竟看了多少?你别光忙着写代码啊?!
from goproxy.
masktao
commented on August 27, 2024
问一下大家,用gscan quic扫出来的ip可以直接用吗?还是要粘贴到mofuckf里面测试下,发觉放到mff里面测试后,可以用的寥寥无几
from goproxy.
dou4cc
commented on August 27, 2024
@masktao 重新拨号后直接用。
from goproxy.
xxnet
commented on August 27, 2024
有一些不太明白, sniproxy 跟突破封锁有什么关系
from goproxy.
dou4cc
commented on August 27, 2024
@xxnet sniproxy好歹也是proxy呀,咋就跟突破封锁无关了?
from goproxy.
xxnet
commented on August 27, 2024
sniproxy 只是解析连接中TLS握手时的SNI,避免替换证书而知道要访问什么目的host,只是一种手段。
使用时, sniproxy 部署在墙外,客户端把需要代理的host指向这个ip,就可以。
若理解有误请指正。
from goproxy.
masktao
commented on August 27, 2024
@dou4cc 不明白缘由,刚才试着拨号,发现Ip成了固定的,是不是被监控了?听说固定Ip是很贵的,重拨几次都是固定的
from goproxy.
dou4cc
commented on August 27, 2024
@xxnet sniproxy握手时通过servername得知目标网站,之后就是个反代了。sniproxy会把目标网站的证书原样返回给client。
from goproxy.
dou4cc
commented on August 27, 2024
@masktao 你讲话太含糊,我不好判断你是不是被监控了。不过**的监控名单很长,一个城市就能有上千人被监视。
from goproxy.
dou4cc
commented on August 27, 2024
@xxnet sniproxy不能绕过证书封锁。墙内sniproxy也是有意义的。isp会在晚间限制出国带宽,部分isp全天限出国带宽,走sniproxy能提速。
from goproxy.
masktao
commented on August 27, 2024
@dou4cc 电信拨号用户,刚才按照你说的重新拨号,发现每次重新拨号,ip并没有变。一般来说固定ip地址费用是很贵的,为啥重拨4-5次,Ip不变,除了监控或者ip地址资源不够,想不出其他理由了,也许是黄金时段,深夜再看看
from goproxy.
dou4cc
commented on August 27, 2024
@masktao 公网还是内网?
from goproxy.
masktao
commented on August 27, 2024
@dou4cc 应该是ip资源不够把,现在重拨ip换了,问题是你说重拨gscan搜出的ip能用?如何实现?还需不需要粘贴到mff里面测试?
from goproxy.
SeaHOH
commented on August 27, 2024
没更新过 IP,现在唯一能用的就是俄罗斯的了。
就我所知 sniproxy 的正统用法就是 hosts,和其它反代还是有明显区别的。
from goproxy.
masktao
commented on August 27, 2024
嗯,把那个400w全扫了,太惨了
from goproxy.
dou4cc
commented on August 27, 2024
@xxnet v2网友拿自己的vps测试,得出gfw封的是servername而非证书:
from goproxy.
commented on August 27, 2024
@dou4cc
我这里 hosts 不能连接 google 包括 sni
from goproxy.
dou4cc
commented on August 27, 2024
gop连gae到底用的是什么servername啊?
"TLSConfig": {
"Version": "TLSv1.2",
"ClientSessionCacheSize": 1024,
"Ciphers": [
"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
"TLS_RSA_WITH_AES_128_CBC_SHA256",
"TLS_RSA_WITH_AES_256_CBC_SHA256",
"TLS_RSA_WITH_3DES_EDE_CBC_SHA",
],
"ServerName": [
"download.windowsupdate.com",
"www.apple.com",
"www.bing.com",
"www.microsoft.com",
// "googleads.g.doubleclick.net",
// "pubads.g.doubleclick.net",
// "www.google-analytics.com",
// "ad.doubleclick.net",
// "appleid.apple.com",
// "hkg12s09-in-f14.1e100.net",
// "hkg12s09-in-f17.1e100.net",
// "hkg12s09-in-f3.1e100.net",
// "hkg12s09-in-f4.1e100.net",
],
},这段没太懂
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 用微软/苹果的servername能拿到谷歌证书??
from goproxy.
dou4cc
commented on August 27, 2024
@candy2107 能解释一下吗?
from goproxy.
SeaHOH
commented on August 27, 2024
之前不是讲了,跟 servername 没关系,随意设置,IP 能用就行。
from goproxy.
SeaHOH
commented on August 27, 2024
没关系,谷歌域名起码上千。
from goproxy.
dou4cc
commented on August 27, 2024
@candy2107 就算没封证书,我这儿也完了。社长还说什么封ip代价高,呵呵~
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 你能给出现存俄罗斯ip的IP段吗?你觉得gfw留出这个缺口动机何在?我感觉不猜测gfw的动机,直接扫ip,按照当前的封锁速度,是跟不上节奏了。
from goproxy.
dou4cc
commented on August 27, 2024
@candy2107 XX-Net最新版内置的是全网扫出的ip,也是我今天白天还在用的。把这些都封了,@SeaHOH说的俄罗斯ip是从哪儿冒出来的?
from goproxy.
SeaHOH
commented on August 27, 2024
我也不知道哪儿来的,反正最后就剩它了。
from goproxy.
dou4cc
commented on August 27, 2024
@qwerttaa 说ta的ip段是全网扫来的。。
话说gfw那帮人那么懒,是不是可以考虑在ip库里混一些微软、苹果、学术期刊的ip?
from goproxy.
dou4cc
commented on August 27, 2024
俄罗斯那段是46.61.244.0/24吗?
from goproxy.
dou4cc
commented on August 27, 2024
好像不是,这段ip在XX-Net的库里~
from goproxy.
SeaHOH
commented on August 27, 2024
还是自己搭 sniproxy 最好,没有特征。
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 你再怎么搭也是机房ip段吧?话说谷歌学术到底封掉多少机房?
from goproxy.
SeaHOH
commented on August 27, 2024
封完才好玩~
from goproxy.
dou4cc
commented on August 27, 2024
我在推特上艾特google谈到谷歌学术的事:https://twitter.com/dou4cc/status/914820305763340289
你说谷歌那帮人怎么想的?
from goproxy.
dou4cc
commented on August 27, 2024
@candy2107 你这样删帖有意思么。。
from goproxy.
SeaHOH
commented on August 27, 2024
俄罗斯挂了~
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 还有救吗?
from goproxy.
SeaHOH
commented on August 27, 2024
你都是秒回啊。
等节过完再看看呗。
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 你还有ip幸存吗?
from goproxy.
SeaHOH
commented on August 27, 2024
暂时没有,因为我没扫 IP,不知道。
from goproxy.
dou4cc
commented on August 27, 2024
社长也算是坚持到了最后时刻。
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 你当前用啥梯子?我gogo就靠几个cn2的sni苟活了~
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 好像也不是没希望的样子,刚下了psiphon3.129,南京移动fast.com稳定跑出36Mbps,油管上万。
from goproxy.
dou4cc
commented on August 27, 2024
@SeaHOH 感觉我可以暂时换赛风了,gogo虽然能跑满带宽,但高速sni太少,稳定性太差,heroku还有劫持。
from goproxy.
dou4cc
commented on August 27, 2024
我收回我的话,赛风还是直连linode,这种赤裸裸的流量到晚上肯定就要吃屎了。
from goproxy.
SeaHOH
commented on August 27, 2024
其实一般也没啥大流量的需求,几个 sniproxy 就能满足。
from goproxy.
dou4cc
commented on August 27, 2024
我gogo的那几个高速sni稳定性差到在回复里插个100KB以上的图都不行,好在推特传图可以续传了,上行速度还是很棒的。
from goproxy.
dou4cc
commented on August 27, 2024
赛风ip段居然能上谷歌学术,excited!
from goproxy.
SeaHOH
commented on August 27, 2024
其实我到希望谷歌能封完,然后我朝也封完,然后就能继续了……
from goproxy.
dou4cc
commented on August 27, 2024
继续.....?
from goproxy.
SeaHOH
commented on August 27, 2024
发现双重拦截,有人使用和我一样的 sniproxy 在国际出口被切断链接(hosts 方式),导致所有人都用不了这个 sniproxy 了。
from goproxy.
dou4cc
commented on August 27, 2024
你换一个非443端口就好了
from goproxy.
SeaHOH
commented on August 27, 2024
不是我搭的……
只是想说明有双重拦截。
from goproxy.
SeaHOH
commented on August 27, 2024
国内一次,出口一次。
from goproxy.
dou4cc
commented on August 27, 2024
这种拦截使得servername黑名单的探测变得困难,本来就是概率reset,再搞个双重,简直了。。
from goproxy.
SeaHOH
commented on August 27, 2024
还不确定是否有更多,不过从效率来讲,应该就只有双重。
话说,那些扫描工具和翻墙工具有没有还在用 google.com 的 SNI 设置?这种是必挂的。
from goproxy.
dou4cc
commented on August 27, 2024
没事,挂个几分钟就能恢复,ip那么多,不会盯着一个ip扫
from goproxy.
SeaHOH
commented on August 27, 2024
不是这样的,那么多人用,会持续触发拦截。
from goproxy.
dou4cc
commented on August 27, 2024
挂了不就变bad-ip了吗?
from goproxy.
dou4cc
commented on August 27, 2024
你用的什么sni那么倒霉?
from goproxy.
SeaHOH
commented on August 27, 2024
总有人不甘心,持续运行,所以某些特定 IP 会一直 block。
只是发现个别这种情况,其余还好。
from goproxy.
e2889e
commented on August 27, 2024
这么干是有bug的,嘿嘿嘿
curl https://www.google.com -H "Host: www.apple.com" --resolve 'www.google.com:443:23.218.213.175' --insecure --verbose
from goproxy.
SeaHOH
commented on August 27, 2024
不是 Host,是 SNI。
from goproxy.
dou4cc
commented on August 27, 2024
gfw也看不到host呀
from goproxy.
e2889e
commented on August 27, 2024
这个命令和curl https://www.apple.com效果相同
只是sni设置成了www.google.com
from goproxy.
SeaHOH
commented on August 27, 2024
Host 不能变,SNI 随意。对谷歌服务器而言。
from goproxy.
SeaHOH
commented on August 27, 2024
当然你还需要忽略证书错误。
from goproxy.
e2889e
commented on August 27, 2024
我是说,如果是针对sni,那么,大量没有被墙的网站
也会被墙
from goproxy.
SeaHOH
commented on August 27, 2024
你说的是 sniproxy,我说的是 TSL 的 SNI 设置。
from goproxy.
dou4cc
commented on August 27, 2024
@e2889e 你可以试试用黑名单里的servername碰瓷,我等你报平安~
from goproxy.
e2889e
commented on August 27, 2024
我上面写的sni是只client hello中的server name
from goproxy.
SeaHOH
commented on August 27, 2024
如果是针对sni,那么,大量没有被墙的网站
哦,理解错了这句。
from goproxy.
SeaHOH
commented on August 27, 2024
但是并不会出现这种情况。
from goproxy.
dou4cc
commented on August 27, 2024
@e2889e 额我搞错了。。。。servername拦截是瞬时的,不会被拉黑几分钟,证书拦截才拉黑几分钟
from goproxy.
e2889e
commented on August 27, 2024
我试了下,一定要国外的ip
第一次可以访问
curl https://www.apple.com --resolve 'www.apple.com:443:23.218.213.175' --insecure --verbose
第二次无法访问
curl https://www.google.com -H "Host: www.apple.com" --resolve 'www.google.com:443:23.218.213.175' --insecure --verbose
第三次无法访问
curl https://www.apple.com --resolve 'www.apple.com:443:23.218.213.175' --insecure --verbose
from goproxy.
SeaHOH
commented on August 27, 2024
非瞬时,才试过,跟楼上差不多。
from goproxy.
dou4cc
commented on August 27, 2024
servername拉黑应该是单重(单向?这话怎么讲?)的吧?你换个宽带试试?
from goproxy.
SeaHOH
commented on August 27, 2024
用微软 IP 试的
from goproxy.
SeaHOH
commented on August 27, 2024
感觉可以做个脚本来攻击这个系统
from goproxy.
SeaHOH
commented on August 27, 2024
可惜不敢,肯定被抓……
from goproxy.
SeaHOH
commented on August 27, 2024
论肉鸡的重要性……
from goproxy.
dou4cc
commented on August 27, 2024
这个系统不会有这种bug的,servername拉黑的话也只针对发起请求的ip,否则那么多扫描器,整个网络不要坏掉了?
from goproxy.
SeaHOH
commented on August 27, 2024
忘了上面提到的双重拦截
from goproxy.
SeaHOH
commented on August 27, 2024
怎么节省怎么来,没必要高出我们太多。
from goproxy.
masktao
commented on August 27, 2024
@SeaHOH 俄罗斯还能用,感觉开quic兼职没法用,还是关了看视频流畅
from goproxy.
SeaHOH
commented on August 27, 2024
反正我剩下的那个今天阵亡了,其余不知道。没扫 IP,懒。
from goproxy.
masktao
commented on August 27, 2024
开着quic结果视频一直断卡,gp不断重启没辙。关了quic,出门吃饭,回来视频还在播放
from goproxy.
jyuan15
commented on August 27, 2024
今天移动还可以用TLS
from goproxy.
endlessX
commented on August 27, 2024
开QUIC一两个月了,除了偶然有400错误,一切正常
from goproxy.
RomanSmile
commented on August 27, 2024
北京联通TLS用了不到半小时几个ip全部阵亡!!!
电信一直QUIC
from goproxy.
Related Issues (20)
- goproxy-简单配置速度 HOT 24
- 希望社长一切都好
- bug- php hosts The hosts parameter is invalid~ HOT 1
- gp的最新项目地址在,目前版本为1651 HOT 23
- test HOT 1
- 如何连接Google Cloud Shell?
- 求好用的sni扫描工具,谢谢各位朋友。 HOT 3
- 下载地址有吗?只有这个还能用吗?
- 我之前用的是xxnet,已经部署过的appid是否需要再次部署? HOT 2
- goproxy vps 能不能设置全局代理
- 今天试了下GP,已复活了 HOT 2
- 有没有指导一下编译遇到的问题 HOT 8
- goproxy还支持在php环境下部署吗?谁有教程? HOT 1
- goproxy vps 报错“acme/autocert: missing certificate” HOT 1
- 出现错误:“502 Bad Gateway. This HTTP request has a Host header that is not covered by the TLS certificate used. ” HOT 4
- wsarecv: An established connection was aborted by the software in your host machine HOT 1
- 请教如何自定义PAC,想让某个网址在PAC模式下用代理打开。
- 出现几条错误请问是怎么回事。
- 除了直连,还能如何使用谷歌学术? HOT 4
- 社长安好,今天在github新建了一个项目和更新了一个项目。
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from goproxy.