loyalsoldier / clash-rules Goto Github PK
View Code? Open in Web Editor NEW🦄️ 🎃 👻 Clash Premium 规则集(RULE-SET),兼容 ClashX Pro、Clash for Windows 等基于 Clash Premium 内核的客户端。
License: GNU General Public License v3.0
🦄️ 🎃 👻 Clash Premium 规则集(RULE-SET),兼容 ClashX Pro、Clash for Windows 等基于 Clash Premium 内核的客户端。
License: GNU General Public License v3.0
多个域名型的规则集末尾都是这样,而且数量能有几百个
例如
- '+.zzy.dnsmail.xyz'
- '+.zzy.dnsname.xyz'
- '+.zzy.healthcon.xyz'
- '+.zzy.healthorg.xyz'
- '+.zzy.healthsection.xyz'
- '+.zzy.namedns.xyz'
- '+.zzz.healthsection.xyz'
- '+.zzz5595.com'
- '+.full'
- '+.full'
- '+.full'
- '+.full'
- '+.full'
- '+.full'
- '+.full'
- '+.full'
- '+.full'
看着总让人摸不着头脑。
https://www.findip-address.com/149.154.175.53
loss the ip 149.154.175.53
https://donnadie.top/manage-clashx-custom-config/
教程不是我写的,今天在研究本项目不影响自动更新节点下被重新覆盖的解决办法参考了这份资料,对我有所帮助,希望也能给大家带来个参考
主要是这一段和教程给的参考设置有些不同
**该项目提供了每天更新的较为完善的配置文件,且不同部分的规则都分文件管理,非常清晰
项目说明中已经提供了 rule-providers 的配置方法,这里指出几个注意事项:
该规则集使用了三个策略组:DIRECT 、 REJECT 、 PROXY 。前面两个是clash内核自带的策略组,第三个则需要自己在 proxy-groups 中添加。也就是说 proxy groups 字段中至少应该具备如下配置:**
proxy-groups:
- name: PROXY
type: select
use:
- foo
- bar
proxies:
- DIRECT
如要将普通带规则的Clash订阅转换成Proxy Provider形式
参考了此项目提供的工具
如题,谢谢各位大佬
reject的规则使腾讯视频无法播放
目前实际上 Google 分析的分析代码是走的 www.googletagmanager.com 域名,而 Google 分析的后台面板是访问的 analytics.google.com,如果直接屏蔽了 analytics.google.com 会导致无法访问后台面板,是否可以处理一下呢……?
这条规则会导致华硕或梅林固件路由器管理页:router.asuas.com无法加载,理论上也会导致华硕的ddns绕路。
如题, rules 中PROCESS-NAME大量的DIRECT, 不太明白用意
@felixonmars/dnsmasq-china-list 这个项目里的域名似乎是建议**大陆直连的域名
白名单模式和黑名单模式都试了,steam下载和商店等正常可访问地址都走了代理
可以把ipv6段的地址也加入吗
比如抖音APP,开着clash就会不流畅,关了就流畅了。可能与它有国内国际版,且互相限制有关。
不知对于此类APP有什么合适的策略。
gvt1.com这个后缀同时出现在proxy.txt,是不是太矛盾了?
- GEOIP,,DIRECT
可以给这个ocsp.apple.com 加入到代理里面去不?
workflows里没有相关的steps
在direct.txt中的*.fkxxyz.com无法在**大陆访问,具体是www.fkxxyz.com这个网站,希望移到proxy.yaml中
你好,如果我不使用国内的 dns 解析,域名里面有 cn 结尾的话,会有问题,可以去掉么?
作者可以试试下 juejin.cn 用 1.1.1.1 8.8.8.8 解析,出现的解析 ip 非国内,这样,clashx 还是会直接连接解析出来的美国 ip,这样,juejin.cn 就不能访问了,还有 www.sian.com.cn 的,也是一样的
ruleset/gfw.yaml: - '+.medium.com' maybe can't match https://medium.com or https://medium.com/new-story ?
rules:
- RULE-SET,private,DIRECT
- RULE-SET,reject,REJECT
- RULE-SET,icloud,DIRECT
- RULE-SET,apple,DIRECT
- RULE-SET,google,DIRECT
- RULE-SET,proxy,PROXY
- RULE-SET,direct,DIRECT
- RULE-SET,telegramcidr,PROXY
- GEOIP,,DIRECT
- GEOIP,CN,DIRECT
- MATCH,PROXY
按推荐配置的话,jsdelivr.net
会一直走代理。
还有,请问为什么使用GEOIP
,而不是本项目中的cncidr
、lancidr
,是有什么考虑吗,谢谢!
fonts.gstatic.com
fonts.googleapis.com
这两项国内访问速度异常慢,需要移出DIRECT列表
battle.net是暴雪战网的域名,似乎至少不应该默认就是用代理?这样干国服就没办法正常登录了。
无论是直连还是match 都会影响到我的另一个代理来路由我正在使用的软件。如果看到请务必教一下小弟···
clash 规则模式下google play无法下载
必须切换到全局模式才可以
规则就是用的此仓库readme
https://raw.githubusercontent.com/Loyalsoldier/clash-rules/release/direct.txt
中
均无法直连
配置文件是这样的:
mixed-port: 7890
allow-lan: false
external-controller: 127.0.0.1:9090
secret: ''
mode: rule
proxies:
- name: "bwg_ss"
type: ss
server: xxxxxxxxxxxxxxxxxxx
port: 21920
cipher: chacha20
password: xxxxxxxxxxxxxxxxxxx
- name: "bwg_vmess"
type: vmess
server: xxxxxxxxxxxxxxxxxxx
port: 443
uuid: xxxxxxxxxxxxxxxxxxx
alterId: 0
cipher: auto
tls: true
network: ws
ws-path: /hello
proxy-groups:
- name: Proxy
type: select
proxies:
- bwg_ss
- bwg_vmess
rule-providers:
reject:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/reject.txt"
path: ./ruleset/reject.yaml
interval: 86400
icloud:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/icloud.txt"
path: ./ruleset/icloud.yaml
interval: 86400
apple:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/apple.txt"
path: ./ruleset/apple.yaml
interval: 86400
google:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/google.txt"
path: ./ruleset/google.yaml
interval: 86400
proxy:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/proxy.txt"
path: ./ruleset/proxy.yaml
interval: 86400
direct:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/direct.txt"
path: ./ruleset/direct.yaml
interval: 86400
private:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/private.txt"
path: ./ruleset/private.yaml
interval: 86400
gfw:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/gfw.txt"
path: ./ruleset/gfw.yaml
interval: 86400
greatfire:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/greatfire.txt"
path: ./ruleset/greatfire.yaml
interval: 86400
tld-not-cn:
type: http
behavior: domain
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/tld-not-cn.txt"
path: ./ruleset/tld-not-cn.yaml
interval: 86400
telegramcidr:
type: http
behavior: ipcidr
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/telegramcidr.txt"
path: ./ruleset/telegramcidr.yaml
interval: 86400
cncidr:
type: http
behavior: ipcidr
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/cncidr.txt"
path: ./ruleset/cncidr.yaml
interval: 86400
lancidr:
type: http
behavior: ipcidr
url: "https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/lancidr.txt"
path: ./ruleset/lancidr.yaml
interval: 86400
rules:
- PROCESS-NAME,v2ray,DIRECT
- PROCESS-NAME,xray,DIRECT
- PROCESS-NAME,naive,DIRECT
- PROCESS-NAME,trojan,DIRECT
- PROCESS-NAME,trojan-go,DIRECT
- PROCESS-NAME,ss-local,DIRECT
- PROCESS-NAME,privoxy,DIRECT
- PROCESS-NAME,leaf,DIRECT
- PROCESS-NAME,v2ray.exe,DIRECT
- PROCESS-NAME,xray.exe,DIRECT
- PROCESS-NAME,naive.exe,DIRECT
- PROCESS-NAME,trojan.exe,DIRECT
- PROCESS-NAME,trojan-go.exe,DIRECT
- PROCESS-NAME,ss-local.exe,DIRECT
- PROCESS-NAME,privoxy.exe,DIRECT
- PROCESS-NAME,leaf.exe,DIRECT
- PROCESS-NAME,Surge,DIRECT
- PROCESS-NAME,Surge 2,DIRECT
- PROCESS-NAME,Surge 3,DIRECT
- PROCESS-NAME,Surge 4,DIRECT
- PROCESS-NAME,Surge%202,DIRECT
- PROCESS-NAME,Surge%203,DIRECT
- PROCESS-NAME,Surge%204,DIRECT
- PROCESS-NAME,Thunder,DIRECT
- PROCESS-NAME,DownloadService,DIRECT
- PROCESS-NAME,qBittorrent,DIRECT
- PROCESS-NAME,Transmission,DIRECT
- PROCESS-NAME,fdm,DIRECT
- PROCESS-NAME,aria2c,DIRECT
- PROCESS-NAME,Folx,DIRECT
- PROCESS-NAME,NetTransport,DIRECT
- PROCESS-NAME,uTorrent,DIRECT
- PROCESS-NAME,WebTorrent,DIRECT
- PROCESS-NAME,aria2c.exe,DIRECT
- PROCESS-NAME,BitComet.exe,DIRECT
- PROCESS-NAME,fdm.exe,DIRECT
- PROCESS-NAME,NetTransport.exe,DIRECT
- PROCESS-NAME,qbittorrent.exe,DIRECT
- PROCESS-NAME,Thunder.exe,DIRECT
- PROCESS-NAME,ThunderVIP.exe,DIRECT
- PROCESS-NAME,transmission-daemon.exe,DIRECT
- PROCESS-NAME,transmission-qt.exe,DIRECT
- PROCESS-NAME,uTorrent.exe,DIRECT
- PROCESS-NAME,WebTorrent.exe,DIRECT
- DOMAIN,clash.razord.top,DIRECT
- DOMAIN,yacd.haishan.me,DIRECT
- RULE-SET,private,DIRECT
- RULE-SET,reject,REJECT
- RULE-SET,icloud,DIRECT
- RULE-SET,apple,DIRECT
- RULE-SET,google,DIRECT
- RULE-SET,proxy,PROXY
- RULE-SET,direct,DIRECT
- RULE-SET,telegramcidr,PROXY
- GEOIP,,DIRECT
- GEOIP,CN,DIRECT
- MATCH,PROXY
建议从 http://bgp.he.net 抓取IP,我自己整理的
payload:
11:11:08.766 Debug: [PKG] 172.31.255.253:35972 --> 108.177.125.188:5228 by 10213[com.google.uid.shared]
11:11:09.469 Info: [TCP] 172.31.255.253:35972 --> 108.177.125.188 match Match() using PROXY[trojan]
11:11:13.812 Debug: [PKG] 172.31.255.253:60084 --> connectivitycheck.gstatic.com:443 by 10212[com.android.vending]
11:11:14.286 Info: [TCP] 172.31.255.253:60084 --> connectivitycheck.gstatic.com match DomainSuffix(connectivitycheck.gstatic.com) using PROXY[trojan]
11:11:42.968 Debug: [PKG] 172.31.255.253:47742 --> diagmon-apigw.samsung.com.cn:443 by 1000[android.uid.system]
11:11:43.083 Info: [TCP] 172.31.255.253:47742 --> diagmon-apigw.samsung.com.cn match RuleSet(direct) using DIRECT
11:11:45.533 Debug: [PKG] 172.31.255.253:39552 --> in.appcenter.ms:443 by 10346[com.github.kr328.clash]
11:11:45.966 Info: [TCP] 172.31.255.253:39552 --> in.appcenter.ms match RuleSet(proxy) using PROXY[trojan]
11:11:50.808 Debug: [PKG] 172.31.255.253:51806 --> android.clients.google.com:443 by -1[]
11:11:51.417 Info: [UDP] 172.31.255.253:51806 --> android.clients.google.com match DomainKeyword(google) using PROXY[trojan]
11:11:52.260 Debug: [PKG] 172.31.255.253:53928 --> android.clients.google.com:443 by 10212[com.android.vending]
11:11:52.843 Info: [TCP] 172.31.255.253:53928 --> android.clients.google.com match DomainKeyword(google) using PROXY[trojan]
11:11:53.588 Debug: [PKG] 172.31.255.253:50922 --> services.googleapis.cn:443 by 10212[com.android.vending]
11:11:54.124 Info: [TCP] 172.31.255.253:50922 --> services.googleapis.cn match DomainKeyword(google) using PROXY[trojan]
11:11:54.760 Debug: [PKG] 172.31.255.253:37608 --> r7---sn-2x3eln7r.xn--ngstr-lra8j.com:443 by 10212[com.android.vending]
11:11:55.398 Info: [TCP] 172.31.255.253:37608 --> r7---sn-2x3eln7r.xn--ngstr-lra8j.com match RuleSet(proxy) using PROXY[trojan]
11:12:00.117 Debug: [PKG] 172.31.255.253:38331 --> services.googleapis.cn:443 by -1[]
11:12:00.369 Debug: [PKG] 172.31.255.253:37614 --> r7---sn-2x3eln7r.xn--ngstr-lra8j.com:443 by 10212[com.android.vending]
11:12:00.678 Info: [UDP] 172.31.255.253:38331 --> services.googleapis.cn match DomainKeyword(google) using PROXY[trojan]
11:12:00.886 Info: [TCP] 172.31.255.253:37614 --> r7---sn-2x3eln7r.xn--ngstr-lra8j.com match RuleSet(proxy) using PROXY[trojan]
PayPal 是可以直接连接的,而且作为支付网站希望能够避免经过代理服务器以保证信息安全
在Loyalsoldier/v2ray-rules-dat没有找到ProxyList相关的解释,不是十分清楚这个List的作用。
希望能解惑,感谢
m-team.cc应该是直连的
[info] [TCP] 127.0.0.1:51369 --> fedex.tt.omtrdc.net match RuleSet(reject) using REJECT
https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/reject.txt
https://github.com/Loyalsoldier/v2ray-rules-dat 跳转而来,非常希望其中geosite:netflix的部分也能独立出来便于clash订阅,万分感激
请问一下,在白名单模式下gfw、greatfire、tld-not-cn、cncidr、lancidr这5个规则组好像没有用到,可以不写在rule-providers吗?非常感谢!
GEOIP,,DIRECT 中间留空会调用什么规则?
通过比特币激励我创作|Buy me a coffee by BTC:
如题,Clash用户中有相当大一部分是Windows用户,目前的Clash规则更偏向于Mac。希望能增加WindowsSpyBlocker和NextDNS的Windows native blocker作为独立的规则列表来加强win的隐私保护。
win10
首先在parser中,使用reg来匹配所有url,或者自定义url均可:
parsers: # array
- reg: .*$
file: "path/to/parser.js"
在parser.js中可以这样写:
module.exports.parse = async (raw, { axios, yaml, notify, console }, { name, url, interval, selected }) => {
var obj = yaml.parse(raw)
var first_name=obj['proxy-groups'][0]['name']
var rules=["PROCESS-NAME,v2ray,DIRECT",
"PROCESS-NAME,xray,DIRECT",
"PROCESS-NAME,naive,DIRECT",
"PROCESS-NAME,trojan,DIRECT",
"PROCESS-NAME,trojan-go,DIRECT",
"PROCESS-NAME,ss-local,DIRECT",
"PROCESS-NAME,privoxy,DIRECT",
"PROCESS-NAME,leaf,DIRECT",
"PROCESS-NAME,v2ray.exe,DIRECT",
"PROCESS-NAME,xray.exe,DIRECT",
"PROCESS-NAME,naive.exe,DIRECT",
"PROCESS-NAME,trojan.exe,DIRECT",
"PROCESS-NAME,trojan-go.exe,DIRECT",
"PROCESS-NAME,ss-local.exe,DIRECT",
"PROCESS-NAME,privoxy.exe,DIRECT",
"PROCESS-NAME,leaf.exe,DIRECT",
"PROCESS-NAME,Surge,DIRECT",
"PROCESS-NAME,Surge 2,DIRECT",
"PROCESS-NAME,Surge 3,DIRECT",
"PROCESS-NAME,Surge 4,DIRECT",
"PROCESS-NAME,Surge%202,DIRECT",
"PROCESS-NAME,Surge%203,DIRECT",
"PROCESS-NAME,Surge%204,DIRECT",
"PROCESS-NAME,Thunder,DIRECT",
"PROCESS-NAME,DownloadService,DIRECT",
"PROCESS-NAME,qBittorrent,DIRECT",
"PROCESS-NAME,Transmission,DIRECT",
"PROCESS-NAME,fdm,DIRECT",
"PROCESS-NAME,aria2c,DIRECT",
"PROCESS-NAME,Folx,DIRECT",
"PROCESS-NAME,NetTransport,DIRECT",
"PROCESS-NAME,uTorrent,DIRECT",
"PROCESS-NAME,WebTorrent,DIRECT",
"PROCESS-NAME,aria2c.exe,DIRECT",
"PROCESS-NAME,BitComet.exe,DIRECT",
"PROCESS-NAME,fdm.exe,DIRECT",
"PROCESS-NAME,NetTransport.exe,DIRECT",
"PROCESS-NAME,qbittorrent.exe,DIRECT",
"PROCESS-NAME,Thunder.exe,DIRECT",
"PROCESS-NAME,ThunderVIP.exe,DIRECT",
"PROCESS-NAME,transmission-daemon.exe,DIRECT",
"PROCESS-NAME,transmission-qt.exe,DIRECT",
"PROCESS-NAME,uTorrent.exe,DIRECT",
"PROCESS-NAME,WebTorrent.exe,DIRECT",
"DOMAIN,clash.razord.top,DIRECT",
"DOMAIN,yacd.haishan.me,DIRECT",
"RULE-SET,private,DIRECT",
"RULE-SET,direct,DIRECT",
"RULE-SET,icloud,DIRECT",
"RULE-SET,apple,DIRECT",
"RULE-SET,google,DIRECT",
"RULE-SET,reject,REJECT",
"RULE-SET,proxy,"+first_name,
"RULE-SET,telegramcidr,"+first_name,
"MATCH,DIRECT"]
obj['rules']=rules
var str_obj=yaml.stringify(obj)
var rule_providers=`rule-providers:
reject:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/reject.txt
path: ./ruleset/reject.yaml
interval: 86400
icloud:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/icloud.txt
path: ./ruleset/icloud.yaml
interval: 86400
apple:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/apple.txt
path: ./ruleset/apple.yaml
interval: 86400
google:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/google.txt
path: ./ruleset/google.yaml
interval: 86400
proxy:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/proxy.txt
path: ./ruleset/proxy.yaml
interval: 86400
direct:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/direct.txt
path: ./ruleset/direct.yaml
interval: 86400
private:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/private.txt
path: ./ruleset/private.yaml
interval: 86400
gfw:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/gfw.txt
path: ./ruleset/gfw.yaml
interval: 86400
greatfire:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/greatfire.txt
path: ./ruleset/greatfire.yaml
interval: 86400
tld-not-cn:
type: http
behavior: domain
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/tld-not-cn.txt
path: ./ruleset/tld-not-cn.yaml
interval: 86400
telegramcidr:
type: http
behavior: ipcidr
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/telegramcidr.txt
path: ./ruleset/telegramcidr.yaml
interval: 86400
cncidr:
type: http
behavior: ipcidr
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/cncidr.txt
path: ./ruleset/cncidr.yaml
interval: 86400
lancidr:
type: http
behavior: ipcidr
url: https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/lancidr.txt
path: ./ruleset/lancidr.yaml
interval: 86400`
str_obj+=rule_providers
return str_obj
}
大家可以按照自己的需要修改
https://cdn.jsdelivr.net/gh/Loyalsoldier/clash-rules@release/proxy.txt
在这能發現jsdelivr.net的,但是cdn.jsdelivr.net是直接大陸IP的,是有什麼原因的嗎?
Clash_for_Windows
-rule-provider 填入参考
https://lancellc.gitbook.io/clash/clash-config-file/rule-provider
-rule 填入参考
https://docs.cfw.lbyczf.com/contents/parser.html
https://zhuanlan.zhihu.com/p/336003879
以及
BitComet.exe下
BitComet_x64.exe 补充参考
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.