XrayR审计规则禁止BT禁止端口和网站等

本文最后更新于 2024年10月22日 晚上

XrayR审计样例:包括屏蔽端口、禁止BT、迅雷:是因为版权,Spam是避免滥发邮件,屏蔽轮子网站是因为轮系媒体是被重点关注的网站,屏蔽了避免客户被钓鱼抓拖累机场主。360会上报机场ip;

本人Telegram电报频道:科学上网观察与机场测速频道:最新机场推荐与机场评测,掌握最新机场优惠折扣通知,最新科学上网相关新闻与消息,各种想法等,欢迎关注。

XrayR审计规则说明

默认屏蔽这些端口22,23,24,25,107,194,445,465,587,992,3389,6665-6669,6679,6697,6881-6999,7000,10000-65535

route.json

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
{
"domainStrategy": "IPOnDemand",
"rules": [
{
"type": "field",
"outboundTag": "block",
"ip": [
"geoip:private"
]
},
{
"type": "field",
"outboundTag": "block",
"domain": [
"regexp:(api|ps|sv|offnavi|newvector|ulog.imap|newloc)(.map|).(baidu|n.shifen).com",
"regexp:(.+.|^)(360|so).(cn|com)",
"regexp:(Subject|HELO|SMTP)",
"regexp:(torrent|.torrent|peer_id=|info_hash|get_peers|find_node|BitTorrent|announce_peer|announce.php?passkey=)",
"regexp:(^.@)(guerrillamail|guerrillamailblock|sharklasers|grr|pokemail|spam4|bccto|chacuo|027168).(info|biz|com|de|net|org|me|la)",
"regexp:(.?)(xunlei|sandai|Thunder|XLLiveUD)(.)",
"regexp:(..||)(dafahao|mingjinglive|botanwang|minghui|dongtaiwang|falunaz|epochtimes|ntdtv|falundafa|falungong|wujieliulan|zhengjian).(org|com|net)",
"regexp:(ed2k|.torrent|peer_id=|announce|info_hash|get_peers|find_node|BitTorrent|announce_peer|announce.php?passkey=|magnet:|xunlei|sandai|Thunder|XLLiveUD|bt_key)",
"regexp:(.+.|^)(360|speedtest|fast|so).(cn|com|net)",
"regexp:(.*.||)(guanjia.qq.com|qqpcmgr|QQPCMGR)",
"regexp:(.*.||)(rising|kingsoft|duba|xindubawukong|jinshanduba).(com|net|org)",
"regexp:(.*.||)(netvigator|torproject).(com|cn|net|org)",
"regexp:(..||)(visa|mycard|mastercard|gov|gash|beanfun|bank).",
"regexp:(.*.||)(gov|12377|12315|talk.news.pts.org|creaders|zhuichaguoji|efcc.org|cyberpolice|aboluowang|tuidang|epochtimes|nytimes|zhengjian|110.qq|mingjingnews|inmediahk|xinsheng|breakgfw|chengmingmag|jinpianwang|qi-gong|mhradio|edoors|renminbao|soundofhope|xizang-zhiye|bannedbook|ntdtv|12321|secretchina|dajiyuan|boxun|chinadigitaltimes|dwnews|huaglad|oneplusnews|epochweekly|cn.rfi).(cn|com|org|net|club|net|fr|tw|hk|eu|info|me)",
"regexp:(.*.||)(miaozhen|cnzz|talkingdata|umeng).(cn|com)",
"regexp:(.*.||)(mycard).(com|tw)",
"regexp:(.*.||)(gash).(com|tw)",
"regexp:(.bank.)",
"regexp:(.*.||)(pincong).(rocks)",
"regexp:(.*.||)(taobao).(com)"
]
},
{
"type": "field",
"outboundTag": "block",
"ip": [
"127.0.0.1/32",
"10.0.0.0/8",
"fc00::/7",
"fe80::/10",
"172.16.0.0/12"
]
},
{
"type": "field",
"outboundTag": "block",
"protocol": ["bittorrent"]
},
{
"type": "field",
"outboundTag": "block",
"port": "22,23,24,25,107,194,445,465,587,992,3389,6665-6669,6679,6697,6881-6999,7000,10000-65535"
}
]
}

custom_outbound.json

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
[
{
"tag": "IPv4_out",
"protocol": "freedom",
"settings": {}
},
{
"tag": "IPv6_out",
"protocol": "freedom",
"settings": {
"domainStrategy": "UseIPv6"
}
},
{
"protocol": "blackhole",
"tag": "block"
}
]

config.yml

RouteConfigPath和OutboundConfigPath 后面的#号去除

其它规则

https://github.com/Rakau/blockList

Soga用法

以Root权限运行之后重启你的Soga

1
wget https://raw.githubusercontent.com/Rakau/blockList/main/blockList -O /etc/soga/blockList

XrayR用法

以Root权限运行之后,编辑/etc/XrayR/config.yml找到RuleListPath这一项,去掉#和无用语句后保存重启XrayR

1
wget https://raw.githubusercontent.com/Rakau/blockList/main/blockList -O /etc/XrayR/rulelis