Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tls fragmentation cannot be used anymore #8

Open
dragonbreath2000 opened this issue May 24, 2024 · 2 comments
Open

tls fragmentation cannot be used anymore #8

dragonbreath2000 opened this issue May 24, 2024 · 2 comments

Comments

@dragonbreath2000
Copy link

MCI recently updated the firewall and is dropping client hello packets that are fragmented , my domain is not blocked by the firewall and even if I use high fragment length so that the sni is visible in the first chunk,the client hello still gets dropped
This behavior is already causing Internet to be very unstable so it could be temporary and only for situations like now
Is there anything we can do about it?
Thanks for ur great project
@dragonbreath2000
Copy link
Author

test
Sni is totally visible in the first chunk and is not even blocked but still it gets dropped

@GFW-knocker
Copy link
Owner

GFW-knocker commented Jun 5, 2024
edited
Loading

@dragonbreath2000
in fragment we have two mode: tlshello & 1-1
tlshello has been blocked but we update the core and now its working well in our latest core (1.8.13-mahsa-r1)

for older core , avoid using tlshello , just use these setting:
packet = 1-1
length = 1-3
interval = 5-10

@developer861 developer861 mentioned this issue Sep 6, 2024
Closed
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@GFW-knocker @dragonbreath2000