树莓派终于不吃灰了，请教下配置问题

[ChapterEstatic]

大概配置如下
"dns": {
"enabled": true,
"cache": true,
"cache_timeout": "60s",
"cache_ttl": false,
"search_domain": "cisco.com",
"timeout": "12s",
"read_timeout": "10s",
"write_timeout": "10s",
"edns_client_subnet_policy": "auto",
"edns_client_subnet_ip": "",
"china_server_count": "4",
"abroad_server_count": "3",
"abroad_protocol": "tcp",
"local" : [
{ "address": "0.0.0.0:53", "protocol": "tcp"},
{ "address": "0.0.0.0:53", "protocol": "udp"}
],

"abroad" : [
{ "address": "...:5353", "protocol": "tcp"}, //这里写vps:5353正确吗？
{ "address": "208.67.222.222:443", "protocol": "tcp", "edns_client_subnet_enabled": true},
{ "address": "208.67.220.220:443", "protocol": "tcp", "edns_client_subnet_enabled": true}
]

"target": {
"port": {
"allow": "80,443,5353",
"deny": "all"
}
}

"inbounds": [
{
"address": "192.168.199.111", //写了内网本机ip，这个不知道正不正确？
"port": 58097,
"type": "socks5"
}
]

"outbounds": [
{
"address": "...:443",
"key": "***********",
"method": "rc4-md5",
"type": "shadowsocks",
"protocol": "auth_aes128_md5",
"pparam": "",
"obfs": "tls1.2_ticket_auth",
"oparam": ""
}
]

vps的443端口是ssr，5353是dnsmasq，在openwrt上用pdnsd的tcp能正常解析
11:48:53.426 W ▶ query dns 6-edge-chat.facebook.com. from ...:5353 failed, EOF
11:48:53.691 D ▶ 6-edge-chat.facebook.com. use result from abroad DNS servers only
11:48:53.691 D ▶ 6-edge-chat.facebook.com. not from cache, save to cache

自己vps的dnsmasq无法解析，opendns的可以解析，自己vps的应该怎么配置呢？

[missdeer]

理论上如果用命令dig @vps +tcp 6-edge-chat.facebook.com能成功，avege也应该能成功，不过就我长期观察下来即使是使用各种知名DNS服务器，avege也是常有某一个或几个解析莫名其妙失败的情况，所以一般会配置多组DNS服务器，99.9%情况下总有一两个能在可接受的延迟内成功的。

一般inbounds那里要被其他机器访问的话填“0.0.0.0”，只有本机使用时填“127.0.0.1”，大概就是这个习惯吧。

[ChapterEstatic]

理解了，家里的实际情况估计不需要配inbounds和outbounds，另外为什么要block掉新浪的跳转域名t.cn呢？一开始还以为我自己路由器iptables没配好，后来发现t.cn直接是解析到回环，然后找到avege的conf/下有个toblock.lst里面有t.cn

[missdeer]

block列表是聚合了几个第三方列表项目，默认用的把所有短网址都屏蔽了。 https://github.com/missdeer/blocklist 这里有不同屏蔽策略的几个列表

[ChapterEstatic]

原来如此，感谢