Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

trojan-go wih CDN and Websocket 连接不上 #52

Open
evilheart1024 opened this issue Dec 15, 2022 · 12 comments
Open

trojan-go wih CDN and Websocket 连接不上 #52

evilheart1024 opened this issue Dec 15, 2022 · 12 comments

Comments

@evilheart1024
Copy link

/tmp中的log显示
[ERROR] 2022/12/15 11:33:03 github.com/p4gefau1t/trojan-go/proxy.(*Proxy).relayConnLoop.func1.1:proxy.go:66 proxy failed to dial connection | websocket failed to handshake with server | malformed HTTP response "\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\x04\x00\x01\x00\x00\x00\x05\x00\xff\xff\xff\x00\x00\x04\b\x00\x00\x00\x00\x00\x7f\xff\x00\x00\x00\x00\b\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01"

但是同样的节点配置在merlin clash, 手机V2rayNG上, win 版V2rayN, 都可以连上。
服务器SSL申请已经切换成Zerossl.
@cary-sas
Copy link
Owner

你把SNI 里面也填上“伪装域名”试试

@evilheart1024
Copy link
Author

服务器,sni, host都填了同样的域名

@evilheart1024
Copy link
Author

补充一下, server IP 443端口被墙, 所以套用了cloudflare CDN.
服务器上trojan-go access log无记录

@cary-sas
Copy link
Owner

我自己试了一下,不套CDN IP 就可以连 (SNI 留空),套上了就连不了,需要找找原因

@cary-sas
Copy link
Owner

3 github.com/p4gefau1t/trojan-go/proxy.(*Proxy).relayConnLoop.func1.1:proxy.go:66 proxy failed to dial connection | websocket failed to handshake with server | malformed HTTP response
你试试换成 fullchain的证书
p4gefau1t/trojan-go#187

@evilheart1024
Copy link
Author

一直用的fullchain.cer
alpn里面也改成http1.1了

@cary-sas cary-sas mentioned this issue Dec 16, 2022
Closed
@evilheart1024
Copy link
Author

有眉目了么?
或者有没有考虑用Xray core来连trojan go?

@cary-sas
Copy link
Owner

我的印象是,xray core 是无法做 trojan go的客户端的

@cary-sas
Copy link
Owner

cary-sas commented Dec 27, 2022
edited

有眉目了么? 或者有没有考虑用Xray core来连trojan go?
找到解决办法了,把客户端 SNI 填成 二级主域名 (@root
二进制暂时撤回到原版本

Trojan-Go v0.10.6
Go Version: go1.17.1
OS/Arch: linux/arm
Git Commit: 2dc60f52e79ff8b910e78e444f1e80678e936450

@cary-sas cary-sas mentioned this issue Dec 28, 2022
Open
@Potterli20
Copy link

给个配置文件吧

@cary-sas cary-sas mentioned this issue Jan 12, 2023
Open
@ghost
Copy link

ghost commented Jan 17, 2023
edited by ghost

如果是 cloudflare CDN,请在 SSL/TLS设置中将加密模式改为“灵活”。

或者使用非 443 的 https 端口。

@Potterli20
Copy link

如果是 cloudflare CDN,请在 SSL/TLS设置中将加密模式改为“灵活”。

或者使用非 443 的 https 端口。

没有用的,日记问题是h2的问题

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Potterli20 @evilheart1024 @cary-sas