v0.6.9

Changes:

1. moved the ipset config from main config file to rule files. example
   NOTE: You MUST remove ipset setting from main config file, or your glider will not startup.

Enhancements:

1. added tls listener for all proxy servers. by @changx, example
2. added unix domain socket support for both proxy client and server mode. example

Fixes:

1. fixed a compatibility issue with some http proxy server. #62
2. fixed a bug when dealing with duplicate http headers. #76

v0.6.8

Enhancements:

1. ss: add cahcha20, rc4-md5, xchacha20-ietf-poly1305 support;
2. strategy: when no forwarders available, set priority to 0;
3. config: support relative path of rulefile in systemd service;

Fixes:

1. forwarder: avoid panic when an interface is specified but the link is down;
2. dns: fixed a bug in UnmarshalRR function;

v0.6.7

Enhancements:

1. general: support a global setting interface to specify source ip or interface;
2. general: add a new setting maxfailures, when error occurs maxfailures times, the forwarder will be set to DISABLED; (Default: 3)
3. forwarder: support options:
   • priority: set the priority of that forwarder, default:0;
   • interface: specify source ip or interface of a forwarder which will override the global interface setting;
4. strategy: added two new modes:
   • lha: Latency based High Availability;
   • dh: Destination Hashing;
5. dns: added a new setting dnsalwaystcp:
   • false: when received udp dns request and there's no forwarder specified, glider will use udp to query upstream dns servers, otherwise, use tcp; (Default)
   • true: always use tcp to query upstream dns servers;

Config Examples:

• global interface setting: glider.conf.example#L173
• forwarder options: glider.conf.example#L73

v0.6.6

CHANGES:

1. support multiple upstream dns servers:

# Setup a dns forwarding server
dns=:53
# global remote dns server (you can specify different dns server in rule file)
dnsserver=8.8.8.8:53
dnsserver=1.1.1.1:53
# timeout value used in multiple dnsservers switch(seconds)
dnstimeout=3
# maximum TTL value for entries in the CACHE(seconds)
dnsmaxttl=1800
# minimum TTL value for entries in the CACHE(seconds)
dnsminttl=0
# custom records
dnsrecord=www.example.com/1.2.3.4
dnsrecord=www.example.com/2606:2800:220:1:248:1893:25c8:1946

2. fixed a bug in ws when it used as a middle layer protocol(tls://host:port,ws://@/path,vmess://uuid@)
3. do not insert ip rule to ipset when forwarder is Direct (avoid iptables redirect loop)

v0.6.5

CHANGES:

1. remove dnstun proxy, please use dns and dnsserver settings instead;
2. add dns cache support;
3. add custom dns record support, usage:

# DNS FORWARDING SERVER
# ----------------
# we can specify different upstream dns server in rule file for different destinations

# Setup a dns forwarding server
dns=:53
# global remote dns server (you can specify different dns server in rule file)
dnsserver=8.8.8.8:53
dnsserver=1.1.1.1:53
# custom records
dnsrecord=www.example.com/1.2.3.4
dnsrecord=www.example.com/2606:2800:220:1:248:1893:25c8:1946

4. query upstream dns server in udp when client requests in udp and there's no forwarder specified;

v0.6.3

CHANGES:

1. add websocket support, use it together with proxy protocols:

   • scheme: ws://host:port[/path]
   • cli:

     # vmess over websocket
     glider -verbose -listen :8443 -forward "ws://1.1.1.1:80,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2"
     # vmess over websocket over tls
     glider -verbose -listen :8443 -forward "tls://1.1.1.1:443,ws://,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2"
     # ss over websocket
     glider -verbose -listen :8443 -forward "ws://1.1.1.1:80,ss://AEAD_CHACHA20_POLY1305:pass@"

   • config file:

     verbose=True
     listen=:8443
     forward=ws://1.1.1.1:80,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2
     forward=tls://1.1.1.1:443,ws://,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2
     forward=ws://1.1.1.1:80,ss://AEAD_CHACHA20_POLY1305:pass@

v0.6.2

CHANGES:

1. add aes-128-gcm & chacha20-poly1305 encryption support for vmess:

   • scheme: vmess://[security:]uuid@host:port?alterID=num
   • cli:

     glider -verbose -listen :8443 -forward "vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@1.1.1.1:443?alterID=2"
     glider -verbose -listen :8443 -forward "vmess://aes-128-gcm:5a146038-0b56-4e95-b1dc-5c6f5a32cd98@1.1.1.1:443?alterID=2"
     glider -verbose -listen :8443 -forward "vmess://chacha20-poly1305:5a146038-0b56-4e95-b1dc-5c6f5a32cd98@1.1.1.1:443?alterID=2"
     glider -verbose -listen :8443 -forward "tls://1.1.1.1:443,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2"

   • config file:

     verbose=True
     listen=:8443
     forward=vmess://aes-128-gcm:5a146038-0b56-4e95-b1dc-5c6f5a32cd98@1.1.1.1:443?alterID=2
     #forward=tls://1.1.1.1:443,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2

v0.6.1

fixed a bug in udp support.

v0.6.0

CHANGES:

1. Add tls support:

   • you can connect to a https proxy like:

     glider -verbose -listen :8443 -forward "tls://1.1.1.1:443,http://"

2. Add vmess support, encryption is not supported now, you can use it together with tls:

   • cli:

     glider -verbose -listen :8443 -forward "tls://1.1.1.1:443,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2"

   • config file:

     verbose=True
     listen=:8443
     forward=tls://1.1.1.1:443,vmess://5a146038-0b56-4e95-b1dc-5c6f5a32cd98@?alterID=2

v0.5.3

version: bump to 0.5.3