110 lines
4.1 KiB
Markdown
110 lines
4.1 KiB
Markdown
# gRPC
|
|
|
|
An modified transport protocol based on gRPC.
|
|
|
|
gRPC is based on the HTTP/2 protocol and can theoretically be relayed by other servers that support HTTP/2, such as Nginx.
|
|
|
|
gRPC and HTTP/2 has built-in multiplexing, so it is not recommended to enable `mux.cool` when using gRPC or HTTP/2.
|
|
|
|
::: warning ⚠⚠⚠
|
|
|
|
- gRPC doesn't support specifying the Host. Please enter the **correct domain name** in the outbound proxy address, or fill in `ServerName` in `(x)tlsSettings`, otherwise connection cannot be established.
|
|
- gRPC doesn't support fallback to other services.
|
|
- gRPC services are at risk of being actively probed. It is recommended to use reverse proxy tools such as Caddy or Nginx to perform path-based routing.
|
|
:::
|
|
|
|
::: tip
|
|
If you are using a reverse proxy such as Caddy or Nginx, please note the following:
|
|
|
|
- Make sure that the reverse proxy server has enabled HTTP/2.
|
|
- Use HTTP/2 or h2c (Caddy), grpc_pass (Nginx) to connect to Xray.
|
|
- The path for regular mode is `/${serviceName}/Tun`, and for Multi mode it is `/${serviceName}/TunMulti`.
|
|
- If you need to receive the client IP address, you can use the `X-Real-IP` header sent by Caddy / Nginx to pass the client IP.
|
|
:::
|
|
|
|
::: tip
|
|
If you are using fallback, please note the following:
|
|
|
|
- Fallback to gRPC is not recommended, as there is a risk of being actively probed.
|
|
- Please make sure that `h2` is the first priority in `(x)tlsSettings.alpn`, otherwise gRPC (HTTP/2) may not be able to complete TLS handshake.
|
|
- gRPC cannot perform path-based routing by Xray.
|
|
:::
|
|
|
|
## GRPCObject
|
|
|
|
`GRPCObject` corresponds to the `grpcSettings` item.
|
|
|
|
```json
|
|
{
|
|
"serviceName": "name",
|
|
"multiMode": false,
|
|
"idle_timeout": 60,
|
|
"health_check_timeout": 20,
|
|
"permit_without_stream": false,
|
|
"initial_windows_size": 0
|
|
}
|
|
```
|
|
|
|
> `serviceName`: string
|
|
|
|
A string that specifies the service name, similar to the `path` in HTTP/2.
|
|
|
|
The client will use this name for communication, and the server will verify whether the service name matches.
|
|
|
|
> `multiMode`: true | false <Badge text="BETA" type="warning"/>
|
|
|
|
`true` enables `multiMode`, with a default value of `false`.
|
|
|
|
This is an **experimental** option that may not be retained for the long term, and cross-version compatibility is not guaranteed. This mode can bring about a performance improvement of around 20% in **test environments**, but actual effects may vary depending on the transmission rate.
|
|
|
|
::: tip
|
|
**Only need to be configured** in `outbound` **(client)**.
|
|
:::
|
|
|
|
> `idle_timeout`: number
|
|
|
|
The health check is performed when no data transmission occurs for a certain period of time, measured in seconds. If this value is set to less than `10`, `10` will be used as the minimum value.
|
|
|
|
::: tip
|
|
If you are not using reverse proxy tools such as Caddy or Nginx (**which is usually the case**), if this value is set to less than `60`, the server may send "unexpected h2 GOAWAY" frames to close existing connections.
|
|
:::
|
|
|
|
By default, the health check is **not enabled**.
|
|
|
|
::: tip
|
|
**Only need to be configured** in `outbound` **(client)**.
|
|
:::
|
|
|
|
::: tip
|
|
Enabling health checks may help solve some "connection drop" issues.
|
|
:::
|
|
|
|
> `health_check_timeout`: number
|
|
|
|
The timeout for the health check, measured in seconds. If the health check is not completed within this time period, it is considered to have failed.
|
|
The default value is `20`
|
|
|
|
::: tip
|
|
**Only need to be configured** in `outbound` **(client)**.
|
|
:::
|
|
|
|
> `permit_without_stream`: true | false
|
|
|
|
`true` allows health checks to be performed when there are no sub-connections. The default value is `false`.
|
|
|
|
::: tip
|
|
**Only need to be configured** in `outbound` **(client)**.
|
|
:::
|
|
|
|
> `initial_windows_size`: number
|
|
|
|
The initial window size of the h2 stream. When the value is less than or equal to `0`, this feature does not take effect. When the value is greater than `65535`, the Dynamic Window mechanism will be disabled. The default value is `0`, which means it is not effective.
|
|
|
|
::: tip
|
|
**Only need to be configured** in `outbound` **(client)**.
|
|
:::
|
|
|
|
::: tip
|
|
When using Cloudflare CDN, set the value to `35536` or higher to disable the Dynamic Window mechanism and prevent Cloudflare CDN from sending "unexpected h2 GOAWAY" frames to close existing connections.
|
|
:::
|