listen: :443

# obfs:
#   type: salamander
#   salamander:
#     password: some_password

# tls:
#   cert: my.crt
#   key: my.key

acme:
  domains:
    - my.example.com
  email: hackerman@abcd.com
  # ca: LetsEncrypt
  # disableHTTP: false
  # disableTLSALPN: false
  # altHTTPPort: 80
  # altTLSALPNPort: 443
  # dir: custom_dir

# quic:
#   initStreamReceiveWindow: 8388608
#   maxStreamReceiveWindow: 8388608
#   initConnReceiveWindow: 20971520
#   maxConnReceiveWindow: 20971520
#   maxIdleTimeout: 30s
#   maxIncomingStreams: 1024
#   disablePathMTUDiscovery: false

# bandwidth:
#   up: 100 mbps
#   down: 100 mbps

# disableUDP: false
# udpIdleTimeout: 60s

auth:
  type: password
  password: some_password

# resolver:
#   type: tls
#   tls:
#     addr: dot.yolo.com:8853
#     timeout: 10s
#     sni: server1.yolo.net
#     insecure: true

# acl:
#   inline:
#     - haha(8.8.8.8/24, udp/53)
#     - reject(v2ex.com)
#     - reject(*.v2ex.com)
#     - reject(geoip:cn)

# outbounds:
#   - name: haha
#     type: direct
#     direct:
#       mode: 46
#       bindIPv4: 2.4.6.8
#       bindIPv6: 0:0:0:0:0:ffff:0204:0608
#       bindDevice: eth233

masquerade:
  type: proxy
  proxy:
    url: https://some.site.net
    rewriteHost: true