Great job! Thank you!
After adding my sites
/ip firewall address-list add address=@my_site@
tracert @my_site@ shows that at step 2 the node is 172.17.0.3 and traffic goes to the VLESS tunnel, but the site works very very slowly. I use RB5009 with
installation on a clean system after reset.
At the same time, the solution on OpenWRT, configured to connect to the same VPS server, shows good speed.
Use a sing-box container would be more easiler for it contains a built-in tunnel of inbound.
I have built up a sing-box single container setup for one of my customer successfully.
sing-box configuration snippet
"inbounds": [
{
"type": "tun",
"tag": "tun-in",
"interface_name": "tun0",
"inet4_address": [
"172.16.255.1/24"
],
"inet4_route_exclude_address": [
"192.168.0.0/16",
"172.16.0.0/12"
],
"mtu": 1500,
"auto_route": true,
"strict_route": true,
"stack": "system",
"sniff": false
}
],
First I tried xjasonlyu/tun2socks, speed was about 25 Mbps
Now I switched to snegowiki/hev-socks5-tunnel-mikrotik, speed increased to 65 Mbps.
Maybe you should try other containers
Does anyone know an easy way to get connection data to add to the environment for the Xray vless container from the vless:// link
Hello! Why do I have sites open like this, they go through this tunnel, but ping through the command line to the same sites does not go, it says “Request timed out”? how do I fix it?
tracert:
1 <1 ms <1 ms <1 ms router.lan [192.168.88.1]
2 <1 ms <1 ms <1 ms 172.17.0.3
3 * * * Request timed out.
Because VLESS operates at the transport layer of the ISO/OSI model and can transmit TCP/UDP, while ICMP is at the network layer.
Good afternoon, on rb5009 on 7.16, socks5 eats up almost 500 megabytes of RAM.
PS After reboot, all memory came back (4 reboots)
Hello! i`am using Snegowiki socks and xray containers on my hap ax3(7.16) and very cool working! On my 500Mbps chanel i have 480Mbps incoming and 380Mbps outgoing traffic on Speedtest on VPN) about 20-30% CPU load and Memory usage 30Mb.
Question: if i turn on IpV6 on my mikrotik, tunnel dont working with ipv6 addresses, how it turn on?
snegowiki, how to turn on ipv6 via yours containers? DNS ip fwd is also create ipv6 address list for domains, but if i mangle it to containers, sites did not working on ipv6. On my iphone i connected to my VPS with 3x-ui vless server and ipv6 working great! but mikrotik not.
I haven’t tested IPv6 because it’s not available on my ISP and the brokers are blocked. In your case, I can only recommend disabling the use of IPv6 on the router, then the traffic will flow over IPv4.
Hello,
L009UiGS-2HaxD-IN
internet from SFP (don’t know is it influence)
in result all not working as expected, speed very slow when open specified sites.
tried to connect to SOCKS from veth1-xray container from browser directly - all working fast at good speed more 100 Mbit,
but sites specified in
/ip firewall address-list add address=microsoft.com list=route_proxy
opening very very slow.
also all working without this rule and counters of this rule are 0 if use it:
/ip firewall nat add action=masquerade chain=srcnat comment=“Containers through NAT” out-interface-list=WAN src-address=172.17.0.0/24
any ideas what may be wrong ?
Hi! Can you make hev-socks5-tunnel-mikrotik for ARM (X86)?
So, what exactly do you need – ARM or x86? Currently, images are available for ARM, ARM64, and AMD64.
I’m a noob in containers. Please explain me how to get ARM64 version of https://hub.docker.com/r/snegowiki/vless-mikrotik/tags
What’s the correct URL to download it from MikroTik itself?
Hello everyone. Can anyone please tell me if they have encountered this error? Where can I look for the problem?
app/proxyman/outbound: failed to process outbound traffic > proxy/vless/outbound: XTLS rejected UDP/443 traffic
solution, without it not working at all:
/ip firewall filter disable [ find where comment="defconf: fasttrack"]
New question, if enable ipv6, ipv6 working, but this all not working, any ideas how fix it ?
Useful containers for Mikrotik
Decided to collect in one message
https://hub.docker.com/u/wiktorbgu
—————————————————————————
AmneziaWG client and server on Mikrotik container
wiktorbgu/amneziawg-mikrotik
———————————————————————
xray vless + hev-socks5-tunnel in one container! 48Mb
wiktorbgu/vless-hev-socks5-tunnel-mikrotik:mikro
—————————————————————————
ByeDPI + hev-socks5-tunnel in one container! < 4Mb
wiktorbgu/byedpi-hev-socks5-tunnel:mikro
————————————————————
Mikro container hev socks tunnel! <3Mb
wiktorbgu/hev-socks5-tunnel-mikrotik
————————————————
Mikro container ByeDPI! <100kb
wiktorbgu/byedpi-mikrotik
hi!
Question to @snegowiki
When starting the container, mikrotik-vless gives the following error
Failed to start: main: failed to load config files: [/etc/xray/config.json] > infra/conf/serial: failed to decode config: /etc/xray/config.json > infra/conf/serial: failed to read config file at line 31 char 33 > invalid character ‘,’ looking for beginning of value
What’s the problem?
I’m unable to route marked traffic through container. With IPSec tunnel I don’t have any problem. Could you explain how you are able to do this?
with this config no need to add tun2socket container,right ?