github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 08:05:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #4840] quic is work,bug tcp and wss not work #3821

New issue
Closed
opened 2026-05-05 14:26:38 -06:00 by gitea-mirror · 3 comments
gitea-mirror commented 2026-05-05 14:26:38 -06:00
Owner
Copy link

Originally created by @chunyuforka on GitHub (Jun 18, 2025).
Original GitHub issue: https://github.com/fatedier/frp/issues/4840

Bug Description

Using the QUIC protocol works, but TCP, WSS, and WebSocket all fail—even with TLS enabled. We suspect the traffic is being blocked by a firewall. The problem with QUIC is that the datacenter may impose restrictions on UDP: bandwidth is limited to just 1 Mb, and when we tested UDP with iperf3 we saw a 97% packet loss. Therefore, we still need a solution that works over TCP. Our FRPS security group is already configured to allow both TCP and UDP from 0.0.0.0/0, and we can successfully telnet to the port.

frpc Version

0.56.0

frps Version

0.56.0

System Architecture

linux/amd64

Configurations

frps.toml

bindPort = 17300
transport.tls.force = false
#transport.tls.force = true
#transport.tls.certFile = "frps.crt"
#transport.tls.keyFile = "frps.key"
#transport.tls.trustedCaFile = "ca.crt"

auth.method = "token"
auth.token = "xxxxx"

quicBindPort = 17300
transport.maxPoolCount = 20
log.level = "trace"
log.maxDays = 3
allowPorts = [
  { start = 25900, end = 25990 }
]

frpc.toml

webServer.addr = "127.0.0.1"
webServer.port = 7400

serverAddr = "1.2.3.4"
serverPort = 17300
transport.protocol = "quic"
auth.method = "token"
auth.token = "xxxxx"
transport.tls.enable = false

log.level = "info"
log.maxDays = 7
transport.poolCount = 16

[[proxies]]
name = "ssh-web-1"
type = "tcp"
localIP = "127.0.0.1"
localPort = 22
remotePort = 25901

Logs

If switched to TCP mode, the client will remain stuck in a continuous connection-attempt loop.

root@web-1:/etc/frpc# frpc -c frpc-2.toml
2025-06-18 19:21:38.035 [I] [sub/root.go:142] start frpc service for config file [frpc-2.toml]
2025-06-18 19:21:38.035 [I] [client/service.go:294] try to connect to server...

Steps to reproduce

When deployed over TCP, it works initially but then suddenly stops working after about three days.

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @chunyuforka on GitHub (Jun 18, 2025). Original GitHub issue: https://github.com/fatedier/frp/issues/4840 ### Bug Description Using the QUIC protocol works, but TCP, WSS, and WebSocket all fail—even with TLS enabled. We suspect the traffic is being blocked by a firewall. The problem with QUIC is that the datacenter may impose restrictions on UDP: bandwidth is limited to just 1 Mb, and when we tested UDP with iperf3 we saw a 97% packet loss. Therefore, we still need a solution that works over TCP. Our FRPS security group is already configured to allow both TCP and UDP from 0.0.0.0/0, and we can successfully `telnet` to the port. ### frpc Version 0.56.0 ### frps Version 0.56.0 ### System Architecture linux/amd64 ### Configurations frps.toml ```shell bindPort = 17300 transport.tls.force = false #transport.tls.force = true #transport.tls.certFile = "frps.crt" #transport.tls.keyFile = "frps.key" #transport.tls.trustedCaFile = "ca.crt" auth.method = "token" auth.token = "xxxxx" quicBindPort = 17300 transport.maxPoolCount = 20 log.level = "trace" log.maxDays = 3 allowPorts = [ { start = 25900, end = 25990 } ] ``` frpc.toml ```shell webServer.addr = "127.0.0.1" webServer.port = 7400 serverAddr = "1.2.3.4" serverPort = 17300 transport.protocol = "quic" auth.method = "token" auth.token = "xxxxx" transport.tls.enable = false log.level = "info" log.maxDays = 7 transport.poolCount = 16 [[proxies]] name = "ssh-web-1" type = "tcp" localIP = "127.0.0.1" localPort = 22 remotePort = 25901 ``` ### Logs If switched to TCP mode, the client will remain stuck in a continuous connection-attempt loop. ``` root@web-1:/etc/frpc# frpc -c frpc-2.toml 2025-06-18 19:21:38.035 [I] [sub/root.go:142] start frpc service for config file [frpc-2.toml] 2025-06-18 19:21:38.035 [I] [client/service.go:294] try to connect to server... ``` ### Steps to reproduce When deployed over TCP, it works initially but then suddenly stops working after about three days. ### Affected area - [x] Docs - [x] Installation - [ ] Performance and Scalability - [ ] Security - [ ] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror 2026-05-05 14:26:38 -06:00
gitea-mirror commented 2026-05-05 14:26:42 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jun 20, 2025):

You can try combining other tools to solve similar network issues.

<!-- gh-comment-id:2989938725 --> @fatedier commented on GitHub (Jun 20, 2025): You can try combining other tools to solve similar network issues.
gitea-mirror commented 2026-05-05 14:26:42 -06:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Jul 5, 2025):

Issues go stale after 14d of inactivity. Stale issues rot after an additional 3d of inactivity and eventually close.

<!-- gh-comment-id:3037497174 --> @github-actions[bot] commented on GitHub (Jul 5, 2025): Issues go stale after 14d of inactivity. Stale issues rot after an additional 3d of inactivity and eventually close.
gitea-mirror commented 2026-05-05 14:26:44 -06:00
Author
Owner
Copy link

@chunyuforka commented on GitHub (Jul 8, 2025):

After encrypting the TCP connection of frp with v2ray, the connection is stable and available, and the bandwidth remains above 10Mb.

<!-- gh-comment-id:3047178672 --> @chunyuforka commented on GitHub (Jul 8, 2025): After encrypting the TCP connection of frp with v2ray, the connection is stable and available, and the bandwidth remains above 10Mb.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#3821
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?