diff --git a/clash/config.yaml b/clash/config.yaml index 8df5c1d..4668cd8 100644 --- a/clash/config.yaml +++ b/clash/config.yaml @@ -1,8 +1,18 @@ mode: rule log-level: info +mixed-port: 7890 +redir-port: 9797 +tproxy-port: 9898 ipv6: false -geodata-mode: true +allow-lan: true +unified-delay: false tcp-concurrent: true +find-process-mode: always +geodata-mode: true + +external-controller: 127.0.0.1:9090 +external-ui: ui +external-ui-url: "https://github.com/MetaCubeX/metacubexd/archive/refs/heads/gh-pages.zip" #自定义 geodata url geox-url: @@ -15,13 +25,13 @@ geo-update-interval: 24 dns: enable: true - listen: 0.0.0.0:53 + listen: :1053 ipv6: false default-nameserver: - 223.5.5.5 - 1.0.0.1 enhanced-mode: fake-ip - fake-ip-range: 198.10.0.1/16 + fake-ip-range: 198.18.0.1/16 fake-ip-filter: - stun.*.*.* - stun.*.* @@ -29,10 +39,22 @@ dns: - time.nist.gov - time.apple.com - time.asia.apple.com + # Tailscale 必须真实 DNS,否则打洞失败 + - '*.tailscale.com' + - '*.ts.net' + - controlplane.tailscale.com + - login.tailscale.com use-hosts: true nameserver: - 1.1.1.1 - 8.8.8.8 + fallback: + - https://8.8.8.8/dns-query + - https://1.1.1.1/dns-query + fallback-filter: + geoip: true + ipcidr: + - 240.0.0.0/4 sniffer: enable: true @@ -61,6 +83,16 @@ sniffer: alt7-mtalk.google.com 142.250.112.188 alt8-mtalk.google.com 172.217.197.188 +# ══════════════════════════════════════════════════════════ +# Tailscale 家庭内网代理 +# ══════════════════════════════════════════════════════════ +proxies: + - name: "WSL-Home-Tailscale" + type: socks5 + server: 127.0.0.1 + port: 1080 + udp: true + # ══════════════════════════════════════════════════════════ # 节点订阅源 # ══════════════════════════════════════════════════════════ @@ -102,6 +134,14 @@ proxy-providers: # ══════════════════════════════════════════════════════════ proxy-groups: + # ── 家庭内网 ── + - name: "🏡 家庭内网" + type: select + proxies: + - "WSL-Home-Tailscale" + - DIRECT + use: [self-proxies] + # ── 节点池 ── - name: "自动选择" type: url-test @@ -124,12 +164,6 @@ proxy-groups: - PROXY use: [self-proxies, byWave] - # Tailscale 流量必须直连,否则打洞失败 - - name: "Tailscale" - type: select - proxies: - - DIRECT - # ── 按流量特征分组 ── # 流媒体: 视频/音频串流,高带宽持续连接 (YouTube, Netflix, Spotify, Twitch...) @@ -444,8 +478,16 @@ rule-providers: # ══════════════════════════════════════════════════════════ rules: - # ─── Tailscale 强制直连 (最高优先,防止打洞失败) ─── - - RULE-SET,tailscale-custom,Tailscale + # ─── 家庭内网 (Tailscale 网段 + 特定节点 + 局域网) ─── + - IP-CIDR,100.64.0.0/10,🏡 家庭内网,no-resolve + - IP-CIDR,100.121.62.2/32,🏡 家庭内网,no-resolve + - IP-CIDR,100.100.197.116/32,🏡 家庭内网,no-resolve + - IP-CIDR,100.94.64.53/32,🏡 家庭内网,no-resolve + - IP-CIDR,192.168.51.0/24,🏡 家庭内网,no-resolve + - DOMAIN-SUFFIX,tail87372.ts.net,🏡 家庭内网 + + # ─── Tailscale 控制面直连 (防止打洞失败) ─── + - RULE-SET,tailscale-custom,DIRECT # ─── 广告拦截 ─── - RULE-SET,reject,REJECT