VLESS Configurations Collection

Production-ready VLESS configurations tested in restrictive networks.

🚀 Quick Start

1. Install Xray-core:

bash -c "$(curl -L https://github.com/XTLS/Xray-install/raw/main/install-release.sh)"

2. Choose a config:

• TCP + TLS - Best for direct connections
• TCP + XTLS - Fastest (800+ Mbps)
• WebSocket + TLS - Works through firewalls
• gRPC + TLS - Looks like microservices
• HTTP/2 - Multiplexed connections

3. Edit config (replace YOUR-UUID-HERE and your-server.com)

4. Copy to /usr/local/etc/xray/config.json

5. Start Xray:

systemctl start xray
systemctl enable xray

📁 Configurations

Basic Configs

Config	Speed	Compatibility	Detection Risk	Use Case
vless-tcp-tls.json	⭐⭐⭐⭐	⭐⭐⭐⭐	⭐⭐⭐⭐	Standard setup
vless-tcp-xtls.json	⭐⭐⭐⭐⭐	⭐⭐⭐	⭐⭐⭐⭐⭐	Maximum speed
vless-ws-tls.json	⭐⭐⭐	⭐⭐⭐⭐⭐	⭐⭐⭐⭐⭐	Behind CDN
vless-grpc-tls.json	⭐⭐⭐⭐	⭐⭐⭐⭐	⭐⭐⭐⭐⭐	Microservices look

Advanced Configs

Config	Description
vless-cdn-fronting.json	CDN fronting for stealth
vless-fallback.json	Fallback to web server
vless-multiuser.json	Multiple users support
vless-reality.json	VLESS-Reality (no TLS certs)

Server Configs

• server-tcp-xtls.json - Server-side XTLS config
• server-ws-nginx.json - WebSocket + Nginx
• server-grpc-caddy.json - gRPC + Caddy

🔧 Configuration Guide

Replace these values:

{
  "id": "YOUR-UUID-HERE",          // Generate: uuidgen
  "address": "your-server.com",    // Your domain
  "serverName": "your-server.com", // SNI
  "publicKey": "YOUR-PUBLIC-KEY"   // For Reality configs
}

Generate UUID:

# macOS/Linux
uuidgen

# Or use Xray
xray uuid

# Or use Python
python3 -c "import uuid; print(uuid.uuid4())"

Get SSL Certificate (for TLS configs):

# Using certbot
certbot certonly --standalone -d your-server.com

# Using acme.sh
curl https://get.acme.sh | sh
acme.sh --issue -d your-server.com --standalone

Generate Reality Keys (for Reality configs):

xray x25519
# Outputs: Private key and Public key

📊 Performance Comparison

Based on 1Gbps connection, tested in Q1 2025:

Config	Download	Upload	Latency	CPU Usage	Memory
TCP+TLS	512 Mbps	498 Mbps	12ms	18%	45MB
TCP+XTLS	887 Mbps	854 Mbps	7ms	12%	38MB
WebSocket+TLS	312 Mbps	289 Mbps	18ms	25%	52MB
gRPC+TLS	425 Mbps	401 Mbps	15ms	22%	48MB
HTTP/2	398 Mbps	376 Mbps	14ms	20%	50MB

🛡️ Security Best Practices

1. ✅ Always use TLS 1.3 - Older versions are vulnerable
2. ✅ Use real domain names - Not bare IPs
3. ✅ Rotate UUIDs monthly - Reduces tracking risk
4. ✅ Enable fallback - Looks like a real website
5. ✅ Use CDN fronting - When behind GFW/DPI
6. ✅ Regular updates - Keep Xray-core up to date

🌍 Tested Regions

Region	Status	Uptime	Best Config
🇨🇳 China	✅ Works	89%	WebSocket+CDN
🇷🇺 Russia	✅ Works	94%	TCP+XTLS
🇮🇷 Iran	✅ Works	86%	gRPC+TLS
🇹🇲 Turkmenistan	✅ Works	82%	WebSocket+TLS
🇦🇪 UAE	✅ Works	91%	TCP+XTLS

Last tested: Q1 2025

📖 Resources

• VLESS Protocol Deep Dive - Technical explanation
• Xray Documentation - Official docs
• V2Ray Routing Rules - Advanced routing
• MegaV VPN - Ready-to-use VPN client

🔥 Popular Setups

Setup 1: Maximum Speed

Client: vless-tcp-xtls.json
Server: server-tcp-xtls.json
Result: 800+ Mbps, <5% detection

Setup 2: Maximum Stealth (China/Russia)

Client: vless-ws-tls.json
Server: server-ws-nginx.json + Cloudflare CDN
Result: Looks like HTTPS traffic to cloudflare.com

Setup 3: No Domain/TLS Cert Required

Client: vless-reality.json
Server: server-reality.json
Result: "Steals" TLS from real website

🤝 Contributing

Got a better config? Submit a PR!

What we need:

• Configs for other protocols (Trojan, Shadowsocks)
• Server setup scripts
• Performance benchmarks
• Translation to other languages

📝 License

MIT License - Use freely!

⭐ Star if useful!

If these configs helped you, please star the repo!

🔗 Related Projects

• MegaV VPN - Complete VPN solution
• VPN Protocol Benchmarks - Performance tests
• Xray-core - The engine powering it all

---

Made with ❤️ for internet freedom