# Loon全局配置 by Tartarus # 作者GitHub: https://github.com/Tartarus2014 # 脚本库GitHub: https://github.com/Tartarus2014/Loon-Script # Loon官方文档:https://nsloon.app/docs/intro # Loon教程链接:https://coffee-elderberry-22b.notion.site/Loon-71747252d5054551a8cd10924064899c # Loon第三方知识库:https://t.me/ibilibili/581 # Loon规则GitHub:https://github.com/blackmatrix7/ios_rule_script/tree/master/rule/Loon # 导入配置。 # 导入完成后点 https://www.nsloon.com/openloon/flowmodel=filter 切换至自动分流模式。 # 再点 https://www.nsloon.com/openloon/proxymode=tun 切换代理模式至 TUN Only 模式 [此操作点击跳转至Loon后即为切换成功]。 # 打开[MitM][脚本][复写]三个功能的开关。 # 打开[MitM]里的[MitM over HTTP/2]和[QUIC回退保护]开关。 # 保证Safari是默认浏览器的情况下,安装并信任证书。 # 点击Loon底部导航栏的[配置]→ 右上角的[⋯],打开[始终开启]的开关。 # 添加你的机场订阅。 # 打开Loon的开关后并点击 https://www.nsloon.com/openloon/update?sub=all 一键更新所有外部资源。 [General] # IPv6 支持 ip-mode = dual ipv6-vif = auto # UDP相关 disable-stun = false udp-fallback-mode = REJECT # SNI辅助规则匹配 sni-sniffing = true # 策略组切换时关闭连接 disconnect-on-policy-change = true # 域名拦截行为 domain-reject-mode = Request # > 跳过代理 # 跳过某个域名或者 IP 段,这些目标主机将不会由 Loon Proxy 处理。 skip-proxy = localhost, *.local, captive.apple.com, e.crashlytics.com, www.baidu.com, passenger.t3go.cn, yunbusiness.ccb.com, wxh.wo.cn, gate.lagou.com, www.abchina.com.cn, login-service.mobile-bank.psbc.com, mobile-bank.psbc.com, 10.0.0.0/8, 127.0.0.1/32, 172.16.0.0/12, 192.168.0.0/16, 192.168.122.1/32, 193.168.0.1/32, ::1/128, fe80::/10 # > Always Real IP Hosts # DNS 数据包将被转发到上游 DNS 服务器。 real-ip = *.lan, *.direct, cable.auth.com, *.msftconnecttest.com, *.msftncsi.com, network-test.debian.org, detectportal.firefox.com, resolver1.opendns.com, *.srv.nintendo.net, *.stun.playstation.net, xbox.*.microsoft.com, *.xboxlive.com, stun.*, global.turn.twilio.com, global.stun.twilio.com, app.yinxiang.com, injections.adguard.org, local.adguard.org, localhost.*.qq.com, localhost.*.weixin.qq.com, *.logon.battlenet.com.cn, *.logon.battle.net, *.blzstatic.cn, music.163.com, *.music.163.com, *.126.net, musicapi.taihe.com, music.taihe.com, songsearch.kugou.com, trackercdn.kugou.com, *.kuwo.cn, api-jooxtt.sanook.com, api.joox.com, joox.com, y.qq.com, *.y.qq.com, streamoc.music.tc.qq.com, mobileoc.music.tc.qq.com, isure.stream.qqmusic.qq.com, dl.stream.qqmusic.qq.com, aqqmusic.tc.qq.com, amobile.music.tc.qq.com, *.xiami.com, *.music.migu.cn, music.migu.cn, proxy.golang.org, *.mcdn.bilivideo.cn, *.cmpassport.com, id6.me, open.e.189.cn, opencloud.wostore.cn, id.mail.wo.cn, mdn.open.wo.cn, hmrz.wo.cn, nishub1.10010.com, enrichgw.10010.com, *.wosms.cn, *.jegotrip.com.cn, *.icitymobile.mobi, *.pingan.com.cn, *.cmbchina.com, *.10099.com.cn, *.microdone.cn, pool.ntp.org, *.pool.ntp.org, ntp.*.com, time.*.com, ntp?.*.com, time?.*.com, time.*.gov, time.*.edu.cn, *.ntp.org.cn, PDC._msDCS.*.*, DC._msDCS.*.*, GC._msDCS.*.* # 绕过路由 bypass-tun = 10.0.0.0/8,100.64.0.0/10,127.0.0.0/8,169.254.0.0/16,172.16.0.0/12,192.0.0.0/24,192.0.2.0/24,192.88.99.0/24,192.168.0.0/16,198.18.0.0/15,198.51.100.0/24,203.0.113.0/24,224.0.0.0/4,255.255.255.255/32 # DNS 服务器 dns-server = 223.5.5.5,180.184.1.1 # doh-server = https://223.5.5.5/dns-query,https://8.8.8.8/dns-query # Hijack DNS # 默认情况下,Loon 只返回发送到 Loon DNS 地址的 DNS 查询的假 IP 地址(198.18.0.2)。 # 有些设备或软件总是使用硬编码的 DNS 服务器。 (例如 Google Speakers 总是使用 8.8.8.8)。 您可以使用此选项劫持查询,以获得一个假地址。 hijack-dns = 8.8.8.8:53,8.8.4.4:53 # Wi-Fi 访问 allow-wifi-access = false wifi-access-http-port = 1234 wifi-access-socks5-port = 1235 mitm-on-wifi-access = false # 代理测速 URL internet-test-url = http://connectivitycheck.platform.hicloud.com/generate_204 proxy-test-url = http://detectportal.firefox.com/success.txt # 测速超时 (s) test-timeout = 5 # 网络接口 interface-mode = auto # 当节点连续失败多少次后开始切换节点 switch-node-after-failure-times = 3 # ssid-trigger参数,用于指定SSID下流量模式切换,(default表示默认,cellular表示蜂窝,目前支持三种值:rule,direct,proxy) # ssid-trigger = "default":rule, "cellular":rule,"ASUS_5G":direct # geoip和asn geoip-url = https://raw.githubusercontent.com/Masaiki/GeoIP2-CN/release/Country.mmdb ipasn-url = https://raw.githubusercontent.com/P3TERX/GeoLite.mmdb/download/GeoLite2-ASN.mmdb # 解析器 resource-parser = https://raw.githubusercontent.com/sub-store-org/Sub-Store/release/sub-store-parser.loon.min.js [Host] [Proxy] [Remote Proxy] 机场订阅 = https://suo.yt/W7BkpTS [Proxy Group] [Remote Rule] [Rule] GEOIP,CN,DIRECT FINAL,PROXY [Rewrite] [Script] [Remote Filter] [Remote Script] https://raw.githubusercontent.com/Tartarus2014/Loon-Script/master/Fake_Vip.conf, tag=Fake-VIP, enabled=true https://raw.githubusercontent.com/Tartarus2014/Loon-Script/master/Cookie.conf, tag=Cookie.获取完一定要关闭, enabled=false https://raw.githubusercontent.com/Tartarus2014/Loon-Script/master/Task.conf, tag=Task, enabled=false https://raw.githubusercontent.com/Tartarus2014/Loon-Script/master/Script.conf, tag=Script, enabled=false [Plugin] https://raw.githubusercontent.com/Peng-YM/Sub-Store/master/config/Loon.plugin, enabled=false https://raw.githubusercontent.com/Script-Hub-Org/Script-Hub/main/modules/script-hub.loon.plugin, enabled=false https://raw.githubusercontent.com/blackmatrix7/ios_rule_script/master/rewrite/Loon/Advertising/Advertising.plugin, enabled=true https://gitlab.com/lodepuly/vpn_tool/-/raw/main/Tool/Loon/Plugin/Node_detection_tool.plugin, enabled=true https://raw.githubusercontent.com/blackmatrix7/ios_rule_script/master/rewrite/Loon/Redirect/Redirect.plugin,enabled=true https://raw.githubusercontent.com/chavyleung/scripts/master/box/rewrite/boxjs.rewrite.loon.plugin, enabled=true [Mitm] hostname = ca-p12 = ca-passphrase = skip-server-cert-verify = false