documentation: Add description for address filter DNS rules

2025-06-13 21:54:13 +08:00 · 2024-02-09 18:33:57 +08:00 · 2024-02-09 18:33:57 +08:00 · 5de6c86407
commit 5de6c86407
parent a976158fbe
23 changed files with 136 additions and 174 deletions
--- a/docs/configuration/dns/index.md
+++ b/docs/configuration/dns/index.md
@ -21,8 +21,8 @@
 ### Fields
-| Key      | Format                         |
+| Key      | Format                          |
-|----------|--------------------------------|
+|----------|---------------------------------|
 | `server` | List of [DNS Server](./server/) |
 | `rules`  | List of [DNS Rule](./rule/)     |
 | `fakeip` | [FakeIP](./fakeip/)             |
--- a/docs/configuration/dns/rule.md
+++ b/docs/configuration/dns/rule.md
@ -1,7 +1,13 @@
 ---
-icon: material/alert-decagram
+icon: material/new-box
 ---
 !!! quote "Changes in sing-box 1.9.0"
    :material-plus: [geoip](#geoip)  
    :material-plus: [ip_cidr](#ip_cidr)  
    :material-plus: [ip_is_private](#ip_is_private)
 !!! quote "Changes in sing-box 1.8.0"
    :material-plus: [rule_set](#rule_set)  
@ -53,11 +59,19 @@ icon: material/alert-decagram
        "source_geoip": [
          "private"
        ],
        "geoip": [
          "cn"
        ],
        "source_ip_cidr": [
          "10.0.0.0/24",
          "192.168.0.1"
        ],
        "source_ip_is_private": false,
        "ip_cidr": [
          "10.0.0.0/24",
          "192.168.0.1"
        ],
        "ip_is_private": false,
        "source_port": [
          12345
        ],
@ -312,6 +326,32 @@ Disable cache and save cache in this query.
 Rewrite TTL in DNS responses.
 ### Address Filter Fields
 Only takes effect for IP address requests. When the query results do not match the address filtering rule items, the current rule will be skipped.
 !!! note ""
    `ip_cidr` items in included rule sets also takes effect as an address filtering field.
 #### geoip
 !!! question "Since sing-box 1.9.0"
 Match GeoIP with query response.
 #### ip_cidr
 !!! question "Since sing-box 1.9.0"
 Match IP CIDR with query response.
 #### ip_is_private
 !!! question "Since sing-box 1.9.0"
 Match private IP with query response.
 ### Logical Fields
 #### type
--- a/docs/configuration/dns/rule.zh.md
+++ b/docs/configuration/dns/rule.zh.md
@ -1,7 +1,13 @@
 ---
-icon: material/alert-decagram
+icon: material/new-box
 ---
 !!! quote "sing-box 1.9.0 中的更改"
    :material-plus: [geoip](#geoip)  
    :material-plus: [ip_cidr](#ip_cidr)  
    :material-plus: [ip_is_private](#ip_is_private)
 !!! quote "sing-box 1.8.0 中的更改"
    :material-plus: [rule_set](#rule_set)  
@ -53,10 +59,19 @@ icon: material/alert-decagram
        "source_geoip": [
          "private"
        ],
        "geoip": [
          "cn"
        ],
        "source_ip_cidr": [
-          "10.0.0.0/24"
+          "10.0.0.0/24",
          "192.168.0.1"
        ],
        "source_ip_is_private": false,
        "ip_cidr": [
          "10.0.0.0/24",
          "192.168.0.1"
        ],
        "ip_is_private": false,
        "source_port": [
          12345
        ],
@ -307,6 +322,32 @@ DNS 查询类型。值可以为整数或者类型名称字符串。
 重写 DNS 回应中的 TTL。
 ### 地址筛选字段
 仅对IP地址请求生效。 当查询结果与地址筛选规则项不匹配时，将跳过当前规则。
 !!! note ""
    引用的规则集中的 `ip_cidr` 项也作为地址筛选字段生效。
 #### geoip
 !!! question "自 sing-box 1.8.0 起"
 与查询响应匹配 GeoIP。
 #### ip_cidr
 !!! question "自 sing-box 1.8.0 起"
 与查询相应匹配 IP CIDR。
 #### ip_is_private
 !!! question "自 sing-box 1.8.0 起"
 与查询响应匹配非公开 IP。
 ### 逻辑字段
 #### type
--- a/docs/configuration/experimental/cache-file.md
+++ b/docs/configuration/experimental/cache-file.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 !!! question "Since sing-box 1.8.0"
 ### Structure
--- a/docs/configuration/experimental/cache-file.zh.md
+++ b/docs/configuration/experimental/cache-file.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 !!! question "自 sing-box 1.8.0 起"
 ### 结构
--- a/docs/configuration/experimental/clash-api.md
+++ b/docs/configuration/experimental/clash-api.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "Changes in sing-box 1.8.0"
    :material-delete-alert: [store_mode](#store_mode)  
--- a/docs/configuration/experimental/clash-api.zh.md
+++ b/docs/configuration/experimental/clash-api.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "sing-box 1.8.0 中的更改"
    :material-delete-alert: [store_mode](#store_mode)  
--- a/docs/configuration/experimental/index.md
+++ b/docs/configuration/experimental/index.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 # Experimental
 !!! quote "Changes in sing-box 1.8.0"
--- a/docs/configuration/experimental/index.zh.md
+++ b/docs/configuration/experimental/index.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 # 实验性
 !!! quote "sing-box 1.8.0 中的更改"
--- a/docs/configuration/inbound/tun.md
+++ b/docs/configuration/inbound/tun.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "Changes in sing-box 1.8.0"
    :material-plus: [gso](#gso)  
--- a/docs/configuration/inbound/tun.zh.md
+++ b/docs/configuration/inbound/tun.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "sing-box 1.8.0 中的更改"
    :material-plus: [gso](#gso)  
--- a/docs/configuration/outbound/wireguard.md
+++ b/docs/configuration/outbound/wireguard.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 !!! quote "Changes in sing-box 1.8.0"
    :material-plus: [gso](#gso)  
--- a/docs/configuration/outbound/wireguard.zh.md
+++ b/docs/configuration/outbound/wireguard.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 !!! quote "sing-box 1.8.0 中的更改"
    :material-plus: [gso](#gso)  
--- a/docs/configuration/route/index.md
+++ b/docs/configuration/route/index.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 # Route
 !!! quote "Changes in sing-box 1.8.0"
--- a/docs/configuration/route/index.zh.md
+++ b/docs/configuration/route/index.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 # 路由
 !!! quote "sing-box 1.8.0 中的更改"
--- a/docs/configuration/route/rule.md
+++ b/docs/configuration/route/rule.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "Changes in sing-box 1.8.0"
    :material-plus: [rule_set](#rule_set)  
--- a/docs/configuration/route/rule.zh.md
+++ b/docs/configuration/route/rule.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "sing-box 1.8.0 中的更改"
    :material-plus: [rule_set](#rule_set)  
--- a/docs/configuration/rule-set/headless-rule.md
+++ b/docs/configuration/rule-set/headless-rule.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 ### Structure
 !!! question "Since sing-box 1.8.0"
--- a/docs/configuration/rule-set/index.md
+++ b/docs/configuration/rule-set/index.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 # Rule Set
 !!! question "Since sing-box 1.8.0"
--- a/docs/configuration/rule-set/source-format.md
+++ b/docs/configuration/rule-set/source-format.md
@ -1,7 +1,3 @@
 ---
 icon: material/new-box
 ---
 # Source Format
 !!! question "Since sing-box 1.8.0"
--- a/docs/configuration/shared/tls.md
+++ b/docs/configuration/shared/tls.md
@ -1,8 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "Changes in sing-box 1.8.0"
    :material-alert-decagram: [utls](#utls)  
--- a/docs/configuration/shared/tls.zh.md
+++ b/docs/configuration/shared/tls.zh.md
@ -1,7 +1,3 @@
 ---
 icon: material/alert-decagram
 ---
 !!! quote "sing-box 1.8.0 中的更改"
    :material-alert-decagram: [utls](#utls)  
--- a/docs/manual/proxy/client.md
+++ b/docs/manual/proxy/client.md
@ -290,52 +290,6 @@ flowchart TB
 === ":material-dns: DNS rules"
    !!! info
        DNS rules are optional if FakeIP is used.
    ```json
    {
      "dns": {
        "servers": [
          {
            "tag": "google",
            "address": "tls://8.8.8.8"
          },
          {
            "tag": "local",
            "address": "223.5.5.5",
            "detour": "direct"
          }
        ],
        "rules": [
          {
            "outbound": "any",
            "server": "local"
          },
          {
            "clash_mode": "Direct",
            "server": "local"
          },
          {
            "clash_mode": "Global",
            "server": "google"
          },
          {
            "geosite": "geolocation-cn",
            "server": "local"
          }
        ]
      }
    }
    ```
 === ":material-dns: DNS rules (1.8.0+)"
    !!! info
        DNS rules are optional if FakeIP is used.
    ```json
    {
      "dns": {
@ -382,74 +336,78 @@ flowchart TB
    }
    ```
-=== ":material-router-network: Route rules"
+=== ":material-dns: DNS rules (1.9.0+)"
    !!! warning "DNS leaks"
        The new DNS feature allows you to more precisely bypass Chinese websites via **DNS leaks**. Do not use plain local DNS if using this method.
    ```json
    {
-      "outbounds": [
+      "dns": {
-        {
+        "servers": [
          "type": "direct",
          "tag": "direct"
        },
        {
          "type": "block",
          "tag": "block"
        }
      ],
      "route": {
        "rules": [
          {
-            "type": "logical",
+            "tag": "google",
-            "mode": "or",
+            "address": "tls://8.8.8.8"
            "rules": [
              {
                "protocol": "dns"
              },
              {
                "port": 53
              }
            ],
            "outbound": "dns"
          },
          {
-            "geoip": "private",
+            "tag": "local",
-            "outbound": "direct"
+            "address": "https://223.5.5.5/dns-query",
            "detour": "direct"
          }
        ],
        "rules": [
          {
            "outbound": "any",
            "server": "local"
          },
          {
            "clash_mode": "Direct",
-            "outbound": "direct"
+            "server": "local"
          },
          {
            "clash_mode": "Global",
-            "outbound": "default"
+            "server": "google"
          },
          {
-            "type": "logical",
+            "rule_set": "geosite-geolocation-cn",
-            "mode": "or",
+            "server": "local"
            "rules": [
              {
                "port": 853
              },
              {
                "network": "udp",
                "port": 443
              },
              {
                "protocol": "stun"
              }
            ],
            "outbound": "block"
          },
          {
-            "geosite": "geolocation-cn",
+            "clash_mode": "Default",
-            "outbound": "direct"
+            "server": "google"
          },
          {
            "rule_set": "geoip-cn",
            "server": "local"
          }
        ]
      },
      "route": {
        "rule_set": [
          {
            "type": "remote",
            "tag": "geosite-geolocation-cn",
            "format": "binary",
            "url": "https://raw.githubusercontent.com/SagerNet/sing-geosite/rule-set/geosite-geolocation-cn.srs"
          },
          {
            "type": "remote",
            "tag": "geoip-cn",
            "format": "binary",
            "url": "https://raw.githubusercontent.com/SagerNet/sing-geoip/rule-set/geoip-cn.srs"
          }
        ]
      },
      "experimental": {
        "clash_api": {
          "default_mode": "Leak"
        }
      }
    }
    ```
-=== ":material-router-network: Route rules (1.8.0+)"
+=== ":material-router-network: Route rules"
    ```json
    {