背景
旁路由安装了openclash,启用的是fake-ip混合模式
使用tailscale会打洞失败
具体表现为使用tailscale netcheck得到的ipv4地址为代理ip地址,不是国内运营商的
主要原因还是分流的问题,tailscale的derp服务器的ip还是走代理了
不管是openclash、还是本机clash开启tun模式,只要分流的规则没写好,应该都会有这样的问题
目前解决方案如下
Tailscale 在这里发布了他们的https://login.tailscale.com/derpmap/default DERP 服务器的所有域名和 IP 地址
那么我们只需将这些域名和ip都加入clash的分流规则即可,让其直连。
整理好的规则我放文末了
但是有个问题是
tailscale的DERP 服务器的ip跟域名会变化,比如新增服务器啥的,这样就得持续更新clash的规则表,不知道有没有更优雅的解决方式。
clash的规则我也整理好了,需要的佬友可以直接抄:
# ================= Tailscale 直连规则开始 =================
# 1. 域名直连:处理所有 tailscale.com 及其子域名的解析和访问
- DOMAIN-SUFFIX,tailscale.com,DIRECT
- DOMAIN-REGEX,^derp.*tailscale\.com,DIRECT
- DOMAIN-SUFFIX,ts.net,DIRECT
# 2. 内网段直连:确保通过 Tailscale 分配的 100.64.x.x 虚拟 IP 访问其他设备时走直连
- IP-CIDR,100.64.0.0/10,DIRECT,no-resolve
# 3. DERP 中转服务器 IPv4 直连
- IP-CIDR,199.38.181.104/32,DIRECT,no-resolve
- IP-CIDR,209.177.145.120/32,DIRECT,no-resolve
- IP-CIDR,199.38.181.93/32,DIRECT,no-resolve
- IP-CIDR,199.38.181.103/32,DIRECT,no-resolve
- IP-CIDR,192.73.240.161/32,DIRECT,no-resolve
- IP-CIDR,192.73.240.121/32,DIRECT,no-resolve
- IP-CIDR,192.73.240.132/32,DIRECT,no-resolve
- IP-CIDR,172.237.61.194/32,DIRECT,no-resolve
- IP-CIDR,172.237.61.197/32,DIRECT,no-resolve
- IP-CIDR,172.237.61.190/32,DIRECT,no-resolve
- IP-CIDR,209.177.158.246/32,DIRECT,no-resolve
- IP-CIDR,209.177.158.15/32,DIRECT,no-resolve
- IP-CIDR,199.38.182.118/32,DIRECT,no-resolve
- IP-CIDR,192.73.242.187/32,DIRECT,no-resolve
- IP-CIDR,192.73.242.28/32,DIRECT,no-resolve
- IP-CIDR,192.73.242.204/32,DIRECT,no-resolve
- IP-CIDR,176.58.93.248/32,DIRECT,no-resolve
- IP-CIDR,176.58.93.147/32,DIRECT,no-resolve
- IP-CIDR,176.58.93.154/32,DIRECT,no-resolve
- IP-CIDR,102.67.165.90/32,DIRECT,no-resolve
- IP-CIDR,102.67.165.185/32,DIRECT,no-resolve
- IP-CIDR,102.67.165.36/32,DIRECT,no-resolve
- IP-CIDR,192.73.243.135/32,DIRECT,no-resolve
- IP-CIDR,192.73.243.229/32,DIRECT,no-resolve
- IP-CIDR,192.73.243.141/32,DIRECT,no-resolve
- IP-CIDR,192.73.244.245/32,DIRECT,no-resolve
- IP-CIDR,208.111.40.12/32,DIRECT,no-resolve
- IP-CIDR,208.111.40.216/32,DIRECT,no-resolve
- IP-CIDR,176.58.90.147/32,DIRECT,no-resolve
- IP-CIDR,176.58.90.207/32,DIRECT,no-resolve
- IP-CIDR,176.58.90.104/32,DIRECT,no-resolve
- IP-CIDR,45.159.97.144/32,DIRECT,no-resolve
- IP-CIDR,45.159.97.61/32,DIRECT,no-resolve
- IP-CIDR,45.159.97.233/32,DIRECT,no-resolve
- IP-CIDR,192.73.252.65/32,DIRECT,no-resolve
- IP-CIDR,192.73.252.134/32,DIRECT,no-resolve
- IP-CIDR,208.111.34.178/32,DIRECT,no-resolve
- IP-CIDR,103.6.84.152/32,DIRECT,no-resolve
- IP-CIDR,205.147.105.30/32,DIRECT,no-resolve
- IP-CIDR,205.147.105.78/32,DIRECT,no-resolve
- IP-CIDR,162.248.221.199/32,DIRECT,no-resolve
- IP-CIDR,162.248.221.215/32,DIRECT,no-resolve
- IP-CIDR,162.248.221.248/32,DIRECT,no-resolve
- IP-CIDR,45.159.98.196/32,DIRECT,no-resolve
- IP-CIDR,45.159.98.253/32,DIRECT,no-resolve
- IP-CIDR,45.159.98.145/32,DIRECT,no-resolve
- IP-CIDR,185.34.3.232/32,DIRECT,no-resolve
- IP-CIDR,185.34.3.207/32,DIRECT,no-resolve
- IP-CIDR,185.34.3.75/32,DIRECT,no-resolve
- IP-CIDR,208.83.234.151/32,DIRECT,no-resolve
- IP-CIDR,208.83.233.233/32,DIRECT,no-resolve
- IP-CIDR,208.72.155.133/32,DIRECT,no-resolve
- IP-CIDR,102.67.167.245/32,DIRECT,no-resolve
- IP-CIDR,102.67.167.37/32,DIRECT,no-resolve
- IP-CIDR,102.67.167.188/32,DIRECT,no-resolve
- IP-CIDR,167.235.72.200/32,DIRECT,no-resolve
- IP-CIDR,49.12.193.137/32,DIRECT,no-resolve
- IP-CIDR,49.13.204.141/32,DIRECT,no-resolve
- IP-CIDR,5.161.218.233/32,DIRECT,no-resolve
- IP-CIDR,178.156.152.91/32,DIRECT,no-resolve
- IP-CIDR,178.156.152.106/32,DIRECT,no-resolve
- IP-CIDR,178.156.134.232/32,DIRECT,no-resolve
- IP-CIDR,65.109.143.62/32,DIRECT,no-resolve
- IP-CIDR,95.217.2.165/32,DIRECT,no-resolve
- IP-CIDR,157.180.28.32/32,DIRECT,no-resolve
- IP-CIDR,172.237.72.43/32,DIRECT,no-resolve
- IP-CIDR,172.237.72.8/32,DIRECT,no-resolve
- IP-CIDR,172.237.72.79/32,DIRECT,no-resolve
- IP-CIDR,172.237.66.30/32,DIRECT,no-resolve
- IP-CIDR,185.40.234.219/32,DIRECT,no-resolve
- IP-CIDR,185.40.234.113/32,DIRECT,no-resolve
- IP-CIDR,185.40.234.77/32,DIRECT,no-resolve
- IP-CIDR,185.40.234.53/32,DIRECT,no-resolve
- IP-CIDR,185.40.234.176/32,DIRECT,no-resolve
- IP-CIDR,172.105.179.230/32,DIRECT,no-resolve
- IP-CIDR,172.105.166.103/32,DIRECT,no-resolve
- IP-CIDR,172.105.169.57/32,DIRECT,no-resolve
- IP-CIDR,68.183.90.120/32,DIRECT,no-resolve
- IP-CIDR,172.238.6.180/32,DIRECT,no-resolve
- IP-CIDR,172.238.6.34/32,DIRECT,no-resolve
- IP-CIDR,172.238.6.179/32,DIRECT,no-resolve
- IP-CIDR,172.237.28.183/32,DIRECT,no-resolve
- IP-CIDR,176.58.92.144/32,DIRECT,no-resolve
- IP-CIDR,176.58.88.183/32,DIRECT,no-resolve
- IP-CIDR,176.58.92.254/32,DIRECT,no-resolve
- IP-CIDR,209.177.156.94/32,DIRECT,no-resolve
- IP-CIDR,192.73.248.83/32,DIRECT,no-resolve
- IP-CIDR,209.177.156.197/32,DIRECT,no-resolve
# 4. DERP 中转服务器 IPv6 直连
- IP-CIDR6,2607:f740:f::/48,DIRECT,no-resolve
- IP-CIDR6,2607:f740:14::/48,DIRECT,no-resolve
- IP-CIDR6,2600:3c0d::/48,DIRECT,no-resolve
- IP-CIDR6,2607:f740:e::/48,DIRECT,no-resolve
- IP-CIDR6,2607:f740:16::/48,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:3c::/48,DIRECT,no-resolve
- IP-CIDR6,2c0f:edb0:0:10::/64,DIRECT,no-resolve
- IP-CIDR6,2607:f740:17::/48,DIRECT,no-resolve
- IP-CIDR6,2607:f740:c::/48,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:3e::/48,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:14:10::/64,DIRECT,no-resolve
- IP-CIDR6,2607:f740:0:3f::/64,DIRECT,no-resolve
- IP-CIDR6,2403:2500:8000:1::/64,DIRECT,no-resolve
- IP-CIDR6,2607:f740:50::/48,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:40:100::/64,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:3f:100::/64,DIRECT,no-resolve
- IP-CIDR6,2001:19f0:c000::/48,DIRECT,no-resolve
- IP-CIDR6,2c0f:edb0:2000:1::/64,DIRECT,no-resolve
- IP-CIDR6,2a01:4f8::/32,DIRECT,no-resolve
- IP-CIDR6,2a01:4ff::/32,DIRECT,no-resolve
- IP-CIDR6,2a01:4f9::/32,DIRECT,no-resolve
- IP-CIDR6,2600:3c15::/48,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:20::/48,DIRECT,no-resolve
- IP-CIDR6,2400:8907::/48,DIRECT,no-resolve
- IP-CIDR6,2400:6180:100:d0::/64,DIRECT,no-resolve
- IP-CIDR6,2600:3c18::/48,DIRECT,no-resolve
- IP-CIDR6,2a00:dd80:3a::/48,DIRECT,no-resolve
- IP-CIDR6,2607:f740:100::/48,DIRECT,no-resolve
# ================= Tailscale 直连规则结束 =================
9 个帖子 - 5 位参与者
来源: LinuxDo 最新话题查看原文