github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 16:15:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #4885] XTCP Health Check #3855

New issue
Closed
opened 2026-05-05 14:27:49 -06:00 by gitea-mirror · 7 comments
gitea-mirror commented 2026-05-05 14:27:49 -06:00
Owner
Copy link

Originally created by @MahdiAkrami01 on GitHub (Jul 18, 2025).
Original GitHub issue: https://github.com/fatedier/frp/issues/4885

Bug Description

The issue is that when I use standard TCP, I can detect if the tunnel is down by checking a TCP ping. However, when using XTCP, the ports continue listening even if the tunnel is down, making it difficult to verify whether the tunnel is operational. I am using HAProxy with a simple TCP check. I have three tunnels:

backend nginx
    mode tcp
    option tcp-check
    server s01 10.0.0.2:8080 # wg
    server s02 ::1:8080 backup # tcp
    server s03 ::1:8081 backup # xtcp

The xtcp tunnel is always considered operational, even when the tunnel is down.
I know that I can set up complex health checks using HAProxy agents, but I think it's better to try fixing this in a simpler way.

frpc Version

0.63.0

frps Version

0.63.0

System Architecture

linux/amd64

Configurations

.

Logs

No response

Steps to reproduce

No response

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @MahdiAkrami01 on GitHub (Jul 18, 2025). Original GitHub issue: https://github.com/fatedier/frp/issues/4885 ### Bug Description The issue is that when I use standard TCP, I can detect if the tunnel is down by checking a TCP ping. However, when using XTCP, the ports continue listening even if the tunnel is down, making it difficult to verify whether the tunnel is operational. I am using HAProxy with a simple TCP check. I have three tunnels: ``` backend nginx mode tcp option tcp-check server s01 10.0.0.2:8080 # wg server s02 ::1:8080 backup # tcp server s03 ::1:8081 backup # xtcp ``` The xtcp tunnel is always considered operational, even when the tunnel is down. I know that I can set up complex health checks using HAProxy agents, but I think it's better to try fixing this in a simpler way. ### frpc Version 0.63.0 ### frps Version 0.63.0 ### System Architecture linux/amd64 ### Configurations . ### Logs _No response_ ### Steps to reproduce _No response_ ### Affected area - [ ] Docs - [ ] Installation - [ ] Performance and Scalability - [ ] Security - [ ] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [x] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror 2026-05-05 14:27:49 -06:00
gitea-mirror commented 2026-05-05 14:27:54 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jul 21, 2025):

but I think it's better to try fixing this in a simpler way

What do you think would be the appropriate way to handle this?

<!-- gh-comment-id:3095026508 --> @fatedier commented on GitHub (Jul 21, 2025): > but I think it's better to try fixing this in a simpler way What do you think would be the appropriate way to handle this?
gitea-mirror commented 2026-05-05 14:27:54 -06:00
Author
Owner
Copy link

@MahdiAkrami01 commented on GitHub (Jul 21, 2025):

It must start listening only after the P2P tunnel is successfully connected
It should also stop listening if the tunnel is disconnected
Is it possible to make this happen in XTCP mode?

<!-- gh-comment-id:3095052858 --> @MahdiAkrami01 commented on GitHub (Jul 21, 2025): It must start listening only after the P2P tunnel is successfully connected It should also stop listening if the tunnel is disconnected Is it possible to make this happen in XTCP mode?
gitea-mirror commented 2026-05-05 14:27:55 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jul 21, 2025):

Tunnel establishment is generally delayed and only created when there is a new connection now.

<!-- gh-comment-id:3095090311 --> @fatedier commented on GitHub (Jul 21, 2025): Tunnel establishment is generally delayed and only created when there is a new connection now.
gitea-mirror commented 2026-05-05 14:27:56 -06:00
Author
Owner
Copy link

@MahdiAkrami01 commented on GitHub (Jul 21, 2025):

Okay, so what about this:
Can you forward the TCP ping through the tunnel?
By doing that, when the tunnel is not established, the TCP ping will fail, and the health check will work correctly.
Because right now, I think FRPC is responding to the TCP ping locally instead of routing it through the tunnel.
In the image, the 74 ms is for the WireGuard tunnel, and the others are for XTCP.
Image

<!-- gh-comment-id:3095140094 --> @MahdiAkrami01 commented on GitHub (Jul 21, 2025): Okay, so what about this: Can you forward the TCP ping through the tunnel? By doing that, when the tunnel is not established, the TCP ping will fail, and the health check will work correctly. Because right now, I think FRPC is responding to the TCP ping locally instead of routing it through the tunnel. In the image, the 74 ms is for the WireGuard tunnel, and the others are for XTCP. <img width="291" height="156" alt="Image" src="https://github.com/user-attachments/assets/b3fd30cf-dbc9-4306-99a2-41161aea93e9" />
gitea-mirror commented 2026-05-05 14:27:56 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jul 21, 2025):

xtcp is L4 proxy like nginx and haproxy. It works differently from WireGuard.

<!-- gh-comment-id:3095349452 --> @fatedier commented on GitHub (Jul 21, 2025): xtcp is L4 proxy like nginx and haproxy. It works differently from WireGuard.
gitea-mirror commented 2026-05-05 14:27:57 -06:00
Author
Owner
Copy link

@MahdiAkrami01 commented on GitHub (Jul 21, 2025):

so the only way to bypass this is to use VirtualNet right?
is VirtualNet support xtcp mode?

<!-- gh-comment-id:3095666545 --> @MahdiAkrami01 commented on GitHub (Jul 21, 2025): so the only way to bypass this is to use VirtualNet right? is VirtualNet support xtcp mode?
gitea-mirror commented 2026-05-05 14:27:58 -06:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Aug 5, 2025):

Issues go stale after 14d of inactivity. Stale issues rot after an additional 3d of inactivity and eventually close.

<!-- gh-comment-id:3152898796 --> @github-actions[bot] commented on GitHub (Aug 5, 2025): Issues go stale after 14d of inactivity. Stale issues rot after an additional 3d of inactivity and eventually close.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#3855
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?