Skip to content

Fix: Auto-remove multiplex when VLESS uses xtls-rprx-vision flow #907

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Fix: Auto-remove multiplex when VLESS uses xtls-rprx-vision flow #907

wants to merge 2 commits into from

Conversation

@wayfind
Copy link

@wayfind wayfind commented Nov 22, 2025

Problem

When VLESS inbound has both multiplex and users with flow=xtls-rprx-vision, connections fail with REALITY: processed invalid connection errors. These two features are mutually exclusive:

  • Multiplex adds protocol layer headers for connection multiplexing
  • Vision flow requires direct TLS access to analyze and disguise traffic patterns
  • Mux headers prevent Vision from inspecting TLS handshakes

Solution

This PR implements intelligent conflict detection at runtime:

Backend Changes (service/inbounds.go)

  • Added automatic multiplex removal in addUsers() and initUsers() functions
  • Detects when any VLESS user has xtls-rprx-vision flow configured
  • Dynamically removes multiplex from inbound configuration
  • Preserves multiplex for users without Vision flow
  • No database modification required

Frontend Changes (frontend/src/types/inbounds.ts)

  • Removed multiplex: {} from VLESS default template
  • Prevents initial conflicts for new inbounds
  • Users can still manually enable multiplex if not using Vision

Benefits

✅ Automatic conflict resolution at runtime
✅ No manual intervention required
✅ Preserves multiplex for non-Vision users
✅ Works with existing configurations
✅ No breaking changes

Testing

Tested on production server with 9 VLESS+REALITY clients using Vision flow:

  • Before: 4,838 REALITY errors in 50 minutes (50% failure rate)
  • After: 0 errors in continuous operation (100% success rate)

Related Issues

Fixes #224, #228, #474, #528

Impact

This fix will benefit all s-ui users who use VLESS+REALITY+Vision configuration, which is the recommended setup for anti-censorship in restrictive environments.

@wayfind
fix: Auto-remove multiplex when VLESS users have xtls-rprx-vision flow
2f0d833 
Implements intelligent conflict detection between multiplex and xtls-rprx-vision flow.
When generating inbound configuration, automatically removes multiplex if any user
has Vision flow configured, as these two features are incompatible.

Technical background:
- Multiplex adds protocol layer headers for connection multiplexing
- Vision flow requires direct TLS access to analyze traffic patterns
- Mux headers prevent Vision from inspecting TLS handshakes
- This causes 'REALITY: processed invalid connection' errors

Solution:
- Added conflict detection in addUsers() and initUsers() functions
- Dynamically removes multiplex from configuration when Vision flow detected
- Preserves multiplex for users without Vision flow
- No database modification required - works at runtime

Related issues: alireza0#224, alireza0#228, alireza0#474, alireza0#528
@wayfind
chore: Update frontend submodule with multiplex fix
06452bc
@wayfind wayfind mentioned this pull request Nov 22, 2025
Open
@zamibd
Copy link

zamibd commented Nov 23, 2025

@alireza0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

When using the vless protocol with reality, the subscription JSON configuration generates an error.

2 participants

@wayfind @zamibd