Hey,
I wanted to bring up the idea of adding support for the X-Ray REALITY — its got a balance of stealth, speed, and reliability.
What makes REALITY stand out is how it handles the TLS handshake. It can spot an authorised client, and if recognised, the server instantly sets up a secure tunnel for it. But if any other connection hits port 443, it doesn’t just reject it — instead, it redirects the traffic to a legitimate external website (like google.com).
That means from an outside observer’s point of view — including firewalls, censors, or traffic‑analysis systems — it looks exactly like a normal HTTPS session to a real website. The TLS certificate, fingerprint, and data patterns are all genuine, so there’s nothing suspicious to flag.
Performance‑wise, REALITY is also pretty good for the tests I’ve run. It delivers faster connections and lower latency compared to older obfuscation methods like OpenVPN over Cloak.
Has anyone else looked into this or tested it in the wild? Would love to hear your thoughts on feasibility and potential implementation!
kelix's Posts
Hi all, what version of AmneziaWG are we running on? 1.5?
if so I assume we are benefitting from the multi-level obfuscation at the transport layer?