Marzban icon indicating copy to clipboard operation
Marzban copied to clipboard

Published 20 hours ago verified publisher icon Gozargah

Random User-Agent for non-TLS configs

Open fodhelper opened this issue 11 months ago • 11 comments

Many clients are accepting json config list so Marzban can send each user a random User-agent We can add a list ourselves or can use Fingerprint in Hosts settings or non-tls configs image

fodhelper avatar Mar 02 '24 17:03 fodhelper

fingerprint and user agent are not same thing , also adding column to database for just a specific type of config its irrational. in this case were using v2rayn default user-agent

M03ED avatar Mar 02 '24 17:03 M03ED

That default Golang user-agent of most of clients seems really bad to me

fodhelper avatar Mar 02 '24 20:03 fodhelper

That default Golang user-agent of most of clients seems really bad to me

your not only guy use marzban

M03ED avatar Mar 02 '24 20:03 M03ED

yes, but i mean if user agent be like a browser, it's harder for firewall to detect and block our ips cores made it possible to have custom request headers, it was good if panels use that options to make proxy ip and connections more undetectable

fodhelper avatar Mar 02 '24 22:03 fodhelper

yes, but i mean if user agent be like a browser, it's harder for firewall to detect and block our ips cores made it possible to have custom request headers, it was good if panels use that options to make proxy ip and connections more undetectable

Do you have any proof that show GFW check user agent and use it for detection?

M03ED avatar Mar 02 '24 22:03 M03ED

They detect notls ws cloudflare connections really fast and block domains, maybe they use this? But even if they didn't used it yet, what if they do in future? we can make connections like regular web browsing by setting a fake user-agent, as proxy cores did for tls proxies before (by using uTLS that makes tls fingerprints look like regular web browsers)

fodhelper avatar Mar 02 '24 22:03 fodhelper

@fodhelper hello, I really don't get the point. You already can define a response header and put user-agent what you like in your json config, isn't it?

SaintShit avatar Mar 02 '24 22:03 SaintShit

@fodhelper https://xtls.github.io/config/transports/tcp.html#httpheaderobject

SaintShit avatar Mar 02 '24 22:03 SaintShit

@fodhelper My bad. it's request that sends user-agent not response. Maybe I shouldn't trynna response to issues at 2AM.

SaintShit avatar Mar 02 '24 22:03 SaintShit

@fodhelper that's not a big deal tho, I'll add it

SaintShit avatar Mar 02 '24 22:03 SaintShit

Yes i meant request packets too, Panel can add a random User-Agent in Clash, Clash Meta, Sing Box and v2rayNG Json Then when client start connection, it will use a browser user-agent and firewall will detect user's connection as a regular browser data and dest ip as a regular website

fodhelper avatar Mar 02 '24 22:03 fodhelper

#1067

M03ED avatar Jul 01 '24 19:07 M03ED