Enable TLS tunnel to bypass UDP blockings in restricted regions #101
Closed
amirhmoradi wants to merge 2 commits intoNOXCIS:bug-huntingfrom
Closed
Conversation
Implements optional TLS tunneling using udptlspipe to wrap WireGuard UDP traffic in TLS encryption, helping bypass DPI and UDP restrictions in censored environments. Key Features: - Optional TLS tunnel via udptlspipe container - Docker profile-based activation (backward compatible) - Interactive configuration in Advanced installation mode - Password-protected TLS connections - Configurable TLS port (default: 443) - Comprehensive client setup documentation Changes: - docker-compose.yml: Add udptlspipe service with profile support - install.sh: Add TLS environment variables and profile handling - WG-Dash-ENV-setup.sh: Add TLS configuration functions with interactive prompts for enabling, port, and password setup - README.md: Add TLS feature announcement and documentation links - Docs/TLS-TUNNEL-SETUP.md: Complete setup guide covering server and client configuration for multiple platforms Implementation Details: - Uses ghcr.io/ameshkov/udptlspipe:latest Docker image - Deployed at 10.2.0.5 in private_network - Only starts when WGD_TLS_ENABLED=true - Forwards to first WireGuard port (WGD_PORT_RANGE_STARTPORT) - Environment variables saved to .env file - Non-invasive design preserving existing UDP functionality Client Support: - Docker-based setup (recommended) - Standalone binary installation - Android via Termux - MTU=1280 requirement documented - Server IP exclusion from tunnel explained Addresses issue NOXCIS#63: UDP traffic blocking in restrictive regions Co-authored-by: amirhmoradi
NOXCIS
reviewed
Nov 12, 2025
Owner
NOXCIS
left a comment
NOXCIS
left a comment
There was a problem hiding this comment.
This is good, one minor change will be source img for udptlspipe I'll setup another repo for such. Will include this pr overall.
Owner
|
check #107 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.