76 lines
2.7 KiB
Markdown
Raw Normal View History

2021-05-26 19:05:53 +08:00
# QUIC
QUIC (Quick UDP Internet Connection) is a protocol proposed by Google for multiplexed and concurrent transmission using UDP. Its main advantages are:
2021-05-26 19:05:53 +08:00
1. Reduced number of roundtrips in handshake phase. (1-RTT or 0-RTT)
2. Multiplexing, and no [Head-of-Line blocking](https://calendar.perfplanet.com/2020/head-of-line-blocking-in-quic-and-http-3-the-details/) problem.
3. Connection migration, (mainly on the client side) when switching from Wifi to 4G, the connection will not be interrupted.
2021-05-26 19:05:53 +08:00
QUIC is currently in the experimental phase and uses IETF implementation that is still being standardized, so compatibility with the final version cannot be guaranteed.
2021-05-26 19:05:53 +08:00
- Default settings:
- 12-byte Connection ID
- Automatically disconnect the connection if no data is transmitted for 30 seconds (which may affect the use of some [persistent connections](https://en.wikipedia.org/wiki/HTTP_persistent_connection)).
2021-05-26 19:05:53 +08:00
## QuicObject
`QuicObject` corresponds to the `quicSettings` item in the [Transport Protocol](../transport.md).
2021-05-26 19:05:53 +08:00
::: danger
The configurations of both endpoints must be identical, otherwise the connection will fail.
QUIC requires TLS to be enabled and if it is not enabled in the [Transport Protocol](../transport.md), Xray will issue a self-signed certificate for TLS communication.
2021-05-26 19:05:53 +08:00
:::
```json
{
"security": "none",
"key": "",
"header": {
"type": "none"
}
}
```
> `security`: "none" | "aes-128-gcm" | "chacha20-poly1305"
Encryption method.
2021-05-26 19:05:53 +08:00
2024-07-11 22:10:40 +02:00
Extra encryption over entire QUIC packet, include the frame head part. Default value is "none" for no encryption. After being encrypted, QUIC packets will not be detected as QUIC but some other unknown traffic.
2021-05-26 19:05:53 +08:00
The default value is `none`
2021-05-26 19:05:53 +08:00
> `key`: string
Encryption key used for encryption.
2021-05-26 19:05:53 +08:00
It can be any string and is effective when "security" is not set to "none".
2021-05-26 19:05:53 +08:00
> `header`: [HeaderObject](#headerobject)
Packet header obfuscation settings.
2021-05-26 19:05:53 +08:00
### HeaderObject
```json
{
"type": "none"
}
```
> `type`: string
Type of obfuscation. Corresponding inbound and outbound proxy must have the same settings. Choices are:
2021-05-26 19:05:53 +08:00
- `"none"`: Default value. No obfuscation is used.
- `"srtp"`: Obfuscated as SRTP traffic. It may be recognized as video calls such as Facetime.
- `"utp"`: Obfuscated as uTP traffic. It may be recognized as Bittorrent traffic.
- `"wechat-video"`: Obfuscated to WeChat traffic.
- `"dtls"`: Obfuscated as DTLS 1.2 packets.
- `"wireguard"`: Obfuscated as WireGuard packets. (NOT true WireGuard protocol)
2021-05-26 19:05:53 +08:00
::: tip
When neither encryption nor obfuscation is enabled, QUIC transport is compatible with other QUIC tools.
However it is recommended to enable either or both for better undetectable communication.
2021-05-26 19:05:53 +08:00
:::