Shadowsocks-libev: Can't configure outbound whitelist in ACL?
What version of shadowsocks-libev are you using?
3.1.3+ds-1ubuntu2 (Ubuntu 18 LTS server)
What operating system are you using?
Ubuntu 18 LTS server
What did you do?
Create an ACL as follows:
[outbound_white_list]
x.x.x.140/32
8.8.8.8/32
What did you expect to see?
I expected it to only be able to reach Google DNS and a website or server IP I want.
What did you see instead?
I saw that it blocks nothing and everything is allowed. There is no whitelisting sort of thing at all.
What is your config in detail (with all sensitive info masked)?
{
"server":"x.x.x.68",
"server_port":80,
"local_address":"127.0.0.1",
"local_port":1080,
"password":"nsasecurepassword",
"timeout":60,
"method":"chacha20-ietf-poly1305",
"mode": "tcp_and_udp",
"nameserver": "8.8.8.8"
}
I use the following command to connect:
ss-server -u --acl acl.txt -c config.json
privatevpnsupportguy
All 4 comments
It's not supported.
madeye
on 16 Jun 2018
@madeye What is the solution to restrict outgoing connections to specific IP using ACL on server-side or is there anything other solution?
privatevpnsupportguy
on 16 Jun 2018
Try v2ray, try iptables.
privatevpnsupportguy notifications@github.com 于 2018年6月17日周日 00:11写道:
@madeye https://github.com/madeye What is the solution to restrict
outgoing connections to specific IP using ACL on server-side or is there
anything other solution?—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
https://github.com/shadowsocks/shadowsocks-libev/issues/2096#issuecomment-397822673,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AQVHEiOQOpoGjmj83xJYfWCBOhRNwDRwks5t9S5MgaJpZM4Uqa_E
.
studentmain
on 16 Jun 2018
As mentioned above, use iptables to set firewall rules.
madeye
on 17 Jun 2018
Related issues
iceberg1369
·
3Comments
jzp820927
·
3Comments
viennadd
·
3Comments
mcmxciv
·
3Comments
alfal
·
3Comments