zapret/zapret_config.conf

# Zapret eBPF Configuration
# DPI evasion and packet filtering settings

[general]
# Enable/disable core features
enable_tls_randomization=1
enable_quic_filtering=1
enable_packet_fragmentation=1
enable_sni_encryption=1
enable_performance_monitoring=1

# eBPF specific settings
ebpf_enabled=1
ebpf_xdp_mode=1
ebpf_tc_mode=1

[performance]
# Connection and performance limits
max_connections=10000
connection_timeout=300
fragment_threshold=1200
processing_threads=4

# Memory and resource limits
max_memory_mb=512
map_size_connections=65536
map_size_rules=1024

[tls]
# TLS fingerprint randomization
randomize_cipher_order=1
use_browser_fingerprints=1
min_cipher_suites=8
max_cipher_suites=16

# JA3 fingerprint settings
ja3_randomization=1
ja3_database_size=1000

[quic]
# QUIC/HTTP3 filtering
randomize_connection_id=1
fake_retry_packets=1
support_0rtt=1

# DNS over QUIC settings
doq_filtering=1
doq_port=853

[fragmentation]
# Packet fragmentation strategies
min_fragment_size=64
max_fragment_size=1200
random_fragment_order=1
fragment_strategy=tcp_seg

# TCP segmentation
tcp_segment_size=536
tcp_random_window=1

[sni_encryption]
# SNI encryption (ECH/ESNI)
ech_enabled=1
esni_fallback=1
encryption_key_rotation=3600

[monitoring]
# Performance monitoring
stats_interval=1
history_size=3600
export_csv=1

# Alert thresholds
cpu_alert_threshold=80
memory_alert_threshold=90
latency_alert_threshold=10

[logging]
# Debug and logging
log_level=info
debug_mode=0
log_file=/var/log/zapret_ebpf.log

[network]
# Network interface settings
default_interface=eth0
monitor_interfaces=eth0,wlan0

# Protocol ports
https_ports=443,8443
quic_ports=443,80
dns_ports=53,853