From 215e3dbf07c7c281f3bf3b66980bee26846d3b39 Mon Sep 17 00:00:00 2001
From: patterniha <71074308+patterniha@users.noreply.github.com>
Date: Thu, 13 Feb 2025 18:18:18 +0330
Subject: [PATCH] Update serverless_with_mitm_for_iran.jsonc

change dns to open dns to works on all isp
---
 .../serverless_with_mitm_for_iran.jsonc       | 24 +++++++++++++++----
 1 file changed, 19 insertions(+), 5 deletions(-)

diff --git a/Serverless-for-iran/serverless_with_mitm_for_iran.jsonc b/Serverless-for-iran/serverless_with_mitm_for_iran.jsonc
index e4660fe..2db88bb 100644
--- a/Serverless-for-iran/serverless_with_mitm_for_iran.jsonc
+++ b/Serverless-for-iran/serverless_with_mitm_for_iran.jsonc
@@ -72,7 +72,7 @@
       "geosite:category-ads-all": ["10.10.34.36", "2001:4188:2:600:10:10:34:36"]
     },
     "servers": [
-      "h2c://8.8.8.8/dns-query",
+      "h2c://208.67.222.222/dns-query",
       {"address": "localhost", "domains": ["geosite:private", "ext:iran.dat:all", "geosite:category-ir"]}
     ],
     "tag": "dns-query",
@@ -85,7 +85,7 @@
       "port": 10853,
       "protocol": "dokodemo-door",
       "settings": {
-        "address": "8.8.8.8",
+        "address": "208.67.222.222",
         "port": 53,
         "network": "tcp,udp"        
       }      
@@ -172,7 +172,21 @@
       "settings": {
         "redirect": "127.0.0.1:4432"
       }
-    },    
+    },
+    {
+      "tag": "tls-repack-dns",
+      "protocol": "freedom",      
+      "settings": {"domainStrategy": "ForceIP"},
+      "streamSettings": {      
+        "security": "tls",
+        "tlsSettings": {
+          "serverName": "www.opendns.com",
+          "verifyPeerCertInNames": ["fromMitM", "www.opendns.com", "doh.opendns.com"],
+          "alpn": ["fromMitM"],
+          "fingerprint": "chrome"
+        }
+      }              
+    },
     {
       "tag": "tls-repack-google",
       "protocol": "freedom",      
@@ -218,7 +232,7 @@
     {
       "tag": "dns-out",
       "protocol": "dns",      
-      "settings": {"nonIPQuery": "skip", "network": "tcp", "address": "8.8.8.8", "port": 53},
+      "settings": {"nonIPQuery": "skip", "network": "tcp", "address": "208.67.222.222", "port": 53},
       "streamSettings": {
         "sockopt": {
           "dialerProxy": "super-fragment"
@@ -302,7 +316,7 @@
       {"outboundTag": "dns-out",
        "inboundTag": ["socks-in"], "port": 53
       },
-      {"outboundTag": "tls-repack-google",
+      {"outboundTag": "tls-repack-dns",
        "inboundTag": ["dns-query"]
       },      
       {"outboundTag": "block",