ei
/
mtg
espelhamento de https://github.com/9seconds/mtg
Observar 1
Favorito 0
Fork 0
Código Issues 0 Versões 48 Wiki Atividade
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
452 Commits
4 Branches
Tag: 7c43a4b0b7
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 7c43a4b0b7
${ noResults }
mtg/example.config.toml

example.config.toml 5.3KB
Histórico Original

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150 
  1. # This is an example of the configuration file for mtg. You actually can

  2. # run mtg with it. It starts a proxy on all interfaces with a secret

  3. # ee367a189aee18fa31c190054efd4a8e9573746f726167652e676f6f676c65617069732e636f6d

  4. #

  5. # It has all possible options with default values. So, a real world

  6. # configuration file should contain only those options you are going to

  7. # use. You do not need to enumerate all of them. In other words, each

  8. # option here has a default value. If you comment a key-value pair, it

  9. # should not make any effect.

  10. #

  11. # stats is the only exception.

  12. 

  13. # Debug starts application in debug mode. It starts to be quite verbose

  14. # in output. Actually, the idea is that you run it in debug mode only if

  15. # you have any issue.

  16. debug = false

  17. 

  18. # A secret. Please remember that mtg supports only FakeTLS mode, legacy

  19. # simple and secured mode are prohibited. For you it means that secret

  20. # should either be base64-encoded or starts with ee.

  21. secret = "ee367a189aee18fa31c190054efd4a8e9573746f726167652e676f6f676c65617069732e636f6d"

  22. 

  23. # Host:port pair to run proxy on.

  24. bind-to = "0.0.0.0:3128"

  25. 

  26. # A size of user-space buffer for TCP to use. Since we do 2 connections,

  27. # then we have tcp-buffer * (4 + 2) per each connection: read/write for

  28. # each connection + 2 copy buffers to pump the data between sockets.

  29. tcp-buffer = "4kb"

  30. 

  31. # Sometimes you want to enforce mtg to use some types of

  32. # IP connectivity to Telegram. We have 4 modes:

  33. #   - prefer-ipv6:

  34. #     We can use both ipv4 and ipv6 but ipv6 has a preference

  35. #   - prefer-ipv4:

  36. #     We can use both ipv4 and ipv6 but ipv4 has a preference

  37. #   - only-ipv6:

  38. #     Only ipv6 connectivity is used

  39. #   - only-ipv4:

  40. #     Only ipv4 connectivity is used

  41. prefer-ips = "prefer-ipv6"

  42. 

  43. # FakeTLS uses domain fronting protection. So it needs to know a port to

  44. # access.

  45. cloak-port = 443

  46. 

  47. # Path to access file. Each time when proxy starts up, it writes an

  48. # access file. This file contains a JSON with settings how to access

  49. # this proxy.

  50. #

  51. # Pass filepath here or '-' if you want to dump into stdout.

  52. access-file = "-"

  53. 

  54. # network defines different network-related settings

  55. [network]

  56. # please be aware that mtg needs to do some external requests. For

  57. # example, if you do not pass public ips, it will request your public ip

  58. # address from some external service.

  59. #

  60. # As for 2.0, if you set a public-ip on your own, mtg won't issue any

  61. # network requests except of those required for Telegram.

  62. #

  63. # so, in order of doing them, it needs to do DNS lookup. mtg ignores DNS

  64. # resolver of the operating system and uses DOH instead. This is a host

  65. # it has to access.

  66. #

  67. # By default we use Quad9.

  68. doh-hostname = "9.9.9.9"

  69. 

  70. # public ip addresses of the server. Actually, it is required only to

  71. # generate a correct access file. if you use default values here, mtg

  72. # will try to resolve these IPs on its own.

  73. [network.public-ip]

  74. ipv4 = ""

  75. ipv6 = ""

  76. 

  77. # you can redefine a dialer for mtg. Dialer is how we 'dial' to either

  78. # some external services or telegram. empty string means default

  79. # connectivity.

  80. #

  81. # it is also possible to use socks5 or shadowsocks here

  82. #

  83. # socks5 example:

  84. #   socks5://user:password@host:port

  85. # shadowsocks example (SIP002):

  86. #   ss://YWVzLTEyOC1nY206dGVzdA@192.168.100.1:8888

  87. #

  88. # You can define 2 dialers here: telegram and default. Telegram dialer

  89. # is used to connect to Telegram servers only. Default is used for other

  90. # purposes, like accessing ifconfig.co to obtains public address (DNS is

  91. # resolved via DoH)

  92. #

  93. # Please also be aware that dialers are only doing TCP. If UDP is

  94. # required (for statsd for example), then these dialers are going to be

  95. # ignored.

  96. #

  97. # If telegram dialer is not defined, a default one is going to be used.

  98. [network.dialers]

  99. telegram = ""

  100. default = ""

  101. 

  102. # FakeTLS can compare timestamps to prevent probes. Each message has

  103. # encrypted timestamp. So, mtg can compare this timestamp and decide if

  104. # we need to proceed with connection or not.

  105. #

  106. # Please ensure that you have some ntp active on this host. Otherwise,

  107. # you can endup with badly performing proxy.

  108. [probes.time]

  109. # You can enable/disable that. A good idea is always enable.

  110. enabled = true

  111. # Time can be skewed by many reasons. So, this is a time interval

  112. # when message is cosidered as a good one.

  113. allow-skewness = "5s"

  114. 

  115. # Some countries do active probing on Telegram connections. This technique

  116. # allows to protect from such effort.

  117. #

  118. # mtg has a cache of some connection fingerprints. Actually, first bytes

  119. # of each connection. So, it stores them in some in-memory LRU+TTL cache.

  120. # You can configure this cache here.

  121. [probes.anti-replay]

  122. # You can enable/disable this feature.

  123. enabled = true

  124. # max size of such a cache. Please be aware that this number is

  125. # approximate we try hard to store data quite dense but it is possible

  126. # that we can go over this limit for 10-20% under some conditions and

  127. # architectures.

  128. max-size = "16mb"

  129. # TTL for each cache record.

  130. ttl = "8h"

  131. 

  132. # statsd statistics integration.

  133. [stats.statsd]

  134. # enabled/disabled

  135. enabled = false

  136. # host:port for UDP endpoint of statsd

  137. address = "127.0.0.1:8888"

  138. # prefix of metric for statsd

  139. metric-prefix = "mtg"

  140. 

  141. # prometheus metrics integration.

  142. [stats.prometheus]

  143. # enabled/disabled

  144. enabled = true

  145. # host:port where to start http server for endpoint

  146. bind-to = "127.0.0.1:3129"

  147. # prefix of http path

  148. http-path = "/"

  149. # prefix for metrics for prometheus

  150. metric-prefix = "mtg"