diff --git a/apps/admin/app/dashboard/servers/dynamic-multiplier.tsx b/apps/admin/app/dashboard/servers/dynamic-multiplier.tsx
index c26dcf2..8a889a4 100644
--- a/apps/admin/app/dashboard/servers/dynamic-multiplier.tsx
+++ b/apps/admin/app/dashboard/servers/dynamic-multiplier.tsx
@@ -41,14 +41,10 @@ export default function DynamicMultiplier() {
   }, [periodsResp]);
 
   async function savePeriods() {
-    try {
-      await setNodeMultiplier({ periods: timeSlots });
-      await refetchPeriods();
-      toast.success(t('config.saveSuccess'));
-      setOpen(false);
-    } catch (error) {
-      toast.error(t('config.saveError'));
-    }
+    await setNodeMultiplier({ periods: timeSlots });
+    await refetchPeriods();
+    toast.success(t('server_config.saveSuccess'));
+    setOpen(false);
   }
 
   return (
@@ -62,9 +58,9 @@ export default function DynamicMultiplier() {
                   <Icon icon='mdi:clock-time-eight' className='text-primary h-5 w-5' />
                 </div>
                 <div className='flex-1'>
-                  <p className='font-medium'>{t('config.dynamicMultiplier')}</p>
+                  <p className='font-medium'>{t('server_config.dynamic_multiplier')}</p>
                   <p className='text-muted-foreground truncate text-sm'>
-                    {t('config.dynamicMultiplierDescription')}
+                    {t('server_config.dynamic_multiplier_desc')}
                   </p>
                 </div>
               </div>
@@ -76,18 +72,18 @@ export default function DynamicMultiplier() {
 
       <SheetContent className='w-[600px] max-w-full md:max-w-screen-md'>
         <SheetHeader>
-          <SheetTitle>{t('config.dynamicMultiplier')}</SheetTitle>
-          <SheetDescription>{t('config.dynamicMultiplierDescription')}</SheetDescription>
+          <SheetTitle>{t('server_config.dynamic_multiplier')}</SheetTitle>
+          <SheetDescription>{t('server_config.dynamic_multiplier_desc')}</SheetDescription>
         </SheetHeader>
         <ScrollArea className='-mx-6 h-[calc(100dvh-48px-36px-60px-env(safe-area-inset-top))] px-6'>
           <div className='space-y-4 pt-4'>
             <ArrayInput<API.TimePeriod>
               fields={[
-                { name: 'start_time', prefix: t('config.startTime'), type: 'time' },
-                { name: 'end_time', prefix: t('config.endTime'), type: 'time' },
+                { name: 'start_time', prefix: t('server_config.fields.start_time'), type: 'time' },
+                { name: 'end_time', prefix: t('server_config.fields.end_time'), type: 'time' },
                 {
                   name: 'multiplier',
-                  prefix: t('config.multiplier'),
+                  prefix: t('server_config.fields.multiplier'),
                   type: 'number',
                   placeholder: '0',
                 },
@@ -100,13 +96,13 @@ export default function DynamicMultiplier() {
 
         <SheetFooter className='flex-row justify-between pt-3'>
           <Button variant='outline' onClick={() => setTimeSlots(periodsResp || [])}>
-            {t('config.reset')}
+            {t('server_config.fields.reset')}
           </Button>
           <div className='flex gap-2'>
             <Button variant='outline' onClick={() => setOpen(false)}>
-              {t('config.actions.cancel')}
+              {t('actions.cancel')}
             </Button>
-            <Button onClick={savePeriods}>{t('config.actions.save')}</Button>
+            <Button onClick={savePeriods}>{t('actions.save')}</Button>
           </div>
         </SheetFooter>
       </SheetContent>
diff --git a/apps/admin/app/dashboard/servers/form-schema/constants.ts b/apps/admin/app/dashboard/servers/form-schema/constants.ts
index 7a967d2..1afe64e 100644
--- a/apps/admin/app/dashboard/servers/form-schema/constants.ts
+++ b/apps/admin/app/dashboard/servers/form-schema/constants.ts
@@ -60,6 +60,7 @@ export const TRANSPORTS = {
 } as const;
 
 export const SECURITY = {
+  shadowsocks: ['none', 'http', 'tls'] as const,
   vmess: ['none', 'tls'] as const,
   vless: ['none', 'tls', 'reality'] as const,
   trojan: ['tls'] as const,
@@ -91,6 +92,8 @@ export const FINGERPRINTS = [
   'qq',
 ] as const;
 
+export const CERT_MODES = ['none', 'http', 'dns', 'self'] as const;
+
 export const multiplexLevels = ['none', 'low', 'middle', 'high'] as const;
 
 export function getLabel(value: string): string {
diff --git a/apps/admin/app/dashboard/servers/form-schema/defaults.ts b/apps/admin/app/dashboard/servers/form-schema/defaults.ts
index 9c38969..023a4cd 100644
--- a/apps/admin/app/dashboard/servers/form-schema/defaults.ts
+++ b/apps/admin/app/dashboard/servers/form-schema/defaults.ts
@@ -10,36 +10,85 @@ export function getProtocolDefaultConfig(proto: ProtocolType) {
         port: null,
         cipher: 'chacha20-ietf-poly1305',
         server_key: null,
-        obfs: 'none',
-        obfs_host: null,
-        obfs_path: null,
+        security: 'none',
+        host: null,
+        path: null,
+        sni: null,
+        allow_insecure: null,
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'vmess':
       return {
         type: 'vmess',
         enable: false,
+        host: null,
         port: null,
         transport: 'tcp',
         security: 'none',
+        path: null,
+        service_name: null,
+        sni: null,
+        allow_insecure: null,
+        fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'vless':
       return {
         type: 'vless',
         enable: false,
+        host: null,
         port: null,
         transport: 'tcp',
         security: 'none',
         flow: 'none',
+        path: null,
+        service_name: null,
+        sni: null,
+        allow_insecure: null,
+        fingerprint: 'chrome',
+        reality_server_addr: null,
+        reality_server_port: null,
+        reality_private_key: null,
+        reality_public_key: null,
+        reality_short_id: null,
         xhttp_mode: XHTTP_MODES[0], // 'auto'
         xhttp_extra: null,
+        encryption: 'none',
+        encryption_mode: null,
+        encryption_rtt: null,
+        encryption_ticket: null,
+        encryption_server_padding: null,
+        encryption_private_key: null,
+        encryption_client_padding: null,
+        encryption_password: null,
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'trojan':
       return {
         type: 'trojan',
         enable: false,
+        host: null,
         port: null,
         transport: 'tcp',
         security: 'tls',
+        path: null,
+        service_name: null,
+        sni: null,
+        allow_insecure: null,
+        fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'hysteria2':
       return {
@@ -53,6 +102,13 @@ export function getProtocolDefaultConfig(proto: ProtocolType) {
         security: 'tls',
         up_mbps: null,
         down_mbps: null,
+        sni: null,
+        allow_insecure: null,
+        fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'tuic':
       return {
@@ -67,12 +123,17 @@ export function getProtocolDefaultConfig(proto: ProtocolType) {
         sni: null,
         allow_insecure: false,
         fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'socks':
       return {
         type: 'socks',
         enable: false,
         port: null,
+        ratio: 1,
       } as any;
     case 'naive':
       return {
@@ -80,6 +141,13 @@ export function getProtocolDefaultConfig(proto: ProtocolType) {
         enable: false,
         port: null,
         security: 'none',
+        sni: null,
+        allow_insecure: null,
+        fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'http':
       return {
@@ -87,6 +155,13 @@ export function getProtocolDefaultConfig(proto: ProtocolType) {
         enable: false,
         port: null,
         security: 'none',
+        sni: null,
+        allow_insecure: null,
+        fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     case 'mieru':
       return {
@@ -106,6 +181,10 @@ export function getProtocolDefaultConfig(proto: ProtocolType) {
         sni: null,
         allow_insecure: false,
         fingerprint: 'chrome',
+        cert_mode: 'none',
+        cert_dns_provider: null,
+        cert_dns_env: null,
+        ratio: 1,
       } as any;
     default:
       return {} as any;
diff --git a/apps/admin/app/dashboard/servers/form-schema/fields.ts b/apps/admin/app/dashboard/servers/form-schema/fields.ts
index f3a31d6..4b45f87 100644
--- a/apps/admin/app/dashboard/servers/form-schema/fields.ts
+++ b/apps/admin/app/dashboard/servers/form-schema/fields.ts
@@ -5,6 +5,7 @@ import {
   generateRealityShortId,
 } from '../generate';
 import {
+  CERT_MODES,
   ENCRYPTION_MODES,
   ENCRYPTION_RTT,
   ENCRYPTION_TYPES,
@@ -22,11 +23,20 @@ import type { FieldConfig } from './types';
 
 export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
   shadowsocks: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -55,36 +65,85 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
         ].includes(p.cipher),
     },
     {
-      name: 'obfs',
+      name: 'security',
       type: 'select',
-      label: 'obfs',
-      options: ['none', 'http', 'tls'],
+      label: 'security',
+      options: SECURITY.shadowsocks,
       defaultValue: 'none',
-      group: 'obfs',
+      group: 'security',
     },
     {
-      name: 'obfs_host',
+      name: 'host',
       type: 'input',
-      label: 'obfs_host',
+      label: 'host',
       placeholder: 'e.g. www.bing.com',
-      group: 'obfs',
-      condition: (p) => p.obfs && p.obfs !== 'none',
+      group: 'security',
+      condition: (p) => p.security && p.security !== 'none',
     },
     {
-      name: 'obfs_path',
+      name: 'path',
       type: 'input',
-      label: 'obfs_path',
+      label: 'path',
       placeholder: 'e.g. /path/to/obfs',
-      group: 'obfs',
-      condition: (p) => p.obfs && p.obfs !== 'none',
+      group: 'security',
+      condition: (p) => p.security && p.security !== 'none',
+    },
+    {
+      name: 'sni',
+      type: 'input',
+      label: 'security_sni',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'allow_insecure',
+      type: 'switch',
+      label: 'security_allow_insecure',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
     },
   ],
   vmess: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -151,13 +210,48 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       group: 'security',
       condition: (p) => p.security !== 'none',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
   ],
   vless: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -374,13 +468,48 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       group: 'encryption',
       condition: (p) => p.encryption === 'mlkem768x25519plus',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
   ],
   trojan: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -447,13 +576,48 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       group: 'security',
       condition: (p) => p.security !== 'none',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
   ],
   hysteria2: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -470,7 +634,7 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       type: 'number',
       label: 'hop_interval',
       placeholder: 'e.g. 300',
-      min: 0,
+      min: 1,
       suffix: 'S',
       group: 'basic',
     },
@@ -497,7 +661,7 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       name: 'up_mbps',
       type: 'number',
       label: 'up_mbps',
-      min: 0,
+      min: 1,
       placeholder: (t) => t('bandwidth_placeholder'),
       suffix: 'Mbps',
       group: 'basic',
@@ -506,7 +670,7 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       name: 'down_mbps',
       type: 'number',
       label: 'down_mbps',
-      min: 0,
+      min: 1,
       placeholder: (t) => t('bandwidth_placeholder'),
       suffix: 'Mbps',
       group: 'basic',
@@ -521,13 +685,47 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       defaultValue: 'chrome',
       group: 'security',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.cert_mode === 'dns',
+    },
   ],
   tuic: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -560,24 +758,67 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       defaultValue: 'chrome',
       group: 'security',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.cert_mode === 'dns',
+    },
   ],
   socks: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
     },
   ],
   naive: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -613,13 +854,48 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       group: 'security',
       condition: (p) => p.security !== 'none',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
   ],
   http: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -655,13 +931,48 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       group: 'security',
       condition: (p) => p.security !== 'none',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+      condition: (p) => p.security === 'tls',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.security === 'tls' && p.cert_mode === 'dns',
+    },
   ],
   mieru: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -684,11 +995,20 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
     },
   ],
   anytls: [
+    {
+      name: 'ratio',
+      type: 'number',
+      label: 'traffic_ratio',
+      min: 1,
+      step: 0.01,
+      defaultValue: 1,
+      group: 'basic',
+    },
     {
       name: 'port',
       type: 'number',
       label: 'port',
-      min: 0,
+      min: 1,
       max: 65535,
       placeholder: '1-65535',
       group: 'basic',
@@ -710,5 +1030,30 @@ export const PROTOCOL_FIELDS: Record<string, FieldConfig[]> = {
       defaultValue: 'chrome',
       group: 'security',
     },
+    {
+      name: 'cert_mode',
+      type: 'select',
+      label: 'cert_mode',
+      options: CERT_MODES,
+      defaultValue: 'none',
+      group: 'security',
+    },
+    {
+      name: 'cert_dns_provider',
+      type: 'input',
+      label: 'cert_dns_provider',
+      placeholder: 'e.g. cloudflare, aliyun',
+      group: 'security',
+      condition: (p) => p.cert_mode === 'dns',
+    },
+    {
+      name: 'cert_dns_env',
+      type: 'textarea',
+      label: 'cert_dns_env',
+      placeholder:
+        'CF_DNS_API_TOKEN=1234567890abcdefghijklmnopqrstuvwxyz\nALI_ACCESS_KEY_ID=your_access_key_id\nALI_ACCESS_KEY_SECRET=your_access_key_secret',
+      group: 'security',
+      condition: (p) => p.cert_mode === 'dns',
+    },
   ],
 };
diff --git a/apps/admin/app/dashboard/servers/form-schema/schemas.ts b/apps/admin/app/dashboard/servers/form-schema/schemas.ts
index 7c06900..343c869 100644
--- a/apps/admin/app/dashboard/servers/form-schema/schemas.ts
+++ b/apps/admin/app/dashboard/servers/form-schema/schemas.ts
@@ -1,5 +1,6 @@
 import { z } from 'zod';
 import {
+  CERT_MODES,
   ENCRYPTION_MODES,
   ENCRYPTION_RTT,
   ENCRYPTION_TYPES,
@@ -16,20 +17,25 @@ import {
 const nullableString = z.string().nullish();
 const nullableBool = z.boolean().nullish();
 const nullablePort = z.number().int().min(0).max(65535).nullish();
+const nullableRatio = z.number().min(1).nullish();
 
 const ss = z.object({
+  ratio: nullableRatio,
   type: z.literal('shadowsocks'),
   enable: nullableBool,
-  host: nullableString,
   port: nullablePort,
   cipher: z.enum(SS_CIPHERS).nullish(),
   server_key: nullableString,
-  obfs: z.enum(['none', 'http', 'tls'] as const).nullish(),
-  obfs_host: nullableString,
-  obfs_path: nullableString,
+  security: z.enum(SECURITY.shadowsocks).nullish(),
+  host: nullableString,
+  path: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const vmess = z.object({
+  ratio: nullableRatio,
   type: z.literal('vmess'),
   enable: nullableBool,
   host: nullableString,
@@ -41,9 +47,13 @@ const vmess = z.object({
   sni: nullableString,
   allow_insecure: nullableBool,
   fingerprint: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const vless = z.object({
+  ratio: nullableRatio,
   type: z.literal('vless'),
   enable: nullableBool,
   host: nullableString,
@@ -71,9 +81,13 @@ const vless = z.object({
   encryption_private_key: nullableString,
   encryption_client_padding: nullableString,
   encryption_password: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const trojan = z.object({
+  ratio: nullableRatio,
   type: z.literal('trojan'),
   enable: nullableBool,
   host: nullableString,
@@ -85,9 +99,13 @@ const trojan = z.object({
   sni: nullableString,
   allow_insecure: nullableBool,
   fingerprint: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const hysteria2 = z.object({
+  ratio: nullableRatio,
   type: z.literal('hysteria2'),
   enable: nullableBool,
   hop_ports: nullableString,
@@ -101,9 +119,13 @@ const hysteria2 = z.object({
   fingerprint: nullableString,
   up_mbps: z.number().nullish(),
   down_mbps: z.number().nullish(),
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const tuic = z.object({
+  ratio: nullableRatio,
   type: z.literal('tuic'),
   enable: nullableBool,
   host: nullableString,
@@ -116,9 +138,13 @@ const tuic = z.object({
   sni: nullableString,
   allow_insecure: nullableBool,
   fingerprint: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const anytls = z.object({
+  ratio: nullableRatio,
   type: z.literal('anytls'),
   enable: nullableBool,
   port: nullablePort,
@@ -127,15 +153,20 @@ const anytls = z.object({
   allow_insecure: nullableBool,
   fingerprint: nullableString,
   padding_scheme: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const socks = z.object({
+  ratio: nullableRatio,
   type: z.literal('socks'),
   enable: nullableBool,
   port: nullablePort,
 });
 
 const naive = z.object({
+  ratio: nullableRatio,
   type: z.literal('naive'),
   enable: nullableBool,
   port: nullablePort,
@@ -143,9 +174,13 @@ const naive = z.object({
   sni: nullableString,
   allow_insecure: nullableBool,
   fingerprint: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const http = z.object({
+  ratio: nullableRatio,
   type: z.literal('http'),
   enable: nullableBool,
   port: nullablePort,
@@ -153,9 +188,13 @@ const http = z.object({
   sni: nullableString,
   allow_insecure: nullableBool,
   fingerprint: nullableString,
+  cert_mode: z.enum(CERT_MODES).nullish(),
+  cert_dns_provider: nullableString,
+  cert_dns_env: nullableString,
 });
 
 const mieru = z.object({
+  ratio: nullableRatio,
   type: z.literal('mieru'),
   enable: nullableBool,
   port: nullablePort,
@@ -182,6 +221,5 @@ export const formSchema = z.object({
   address: z.string().min(1),
   country: z.string().optional(),
   city: z.string().optional(),
-  ratio: z.number().default(1),
   protocols: z.array(protocolApiScheme),
 });
diff --git a/apps/admin/app/dashboard/servers/server-config.tsx b/apps/admin/app/dashboard/servers/server-config.tsx
index 6f06810..118fded 100644
--- a/apps/admin/app/dashboard/servers/server-config.tsx
+++ b/apps/admin/app/dashboard/servers/server-config.tsx
@@ -15,6 +15,13 @@ import {
   FormMessage,
 } from '@workspace/ui/components/form';
 import { ScrollArea } from '@workspace/ui/components/scroll-area';
+import {
+  Select,
+  SelectContent,
+  SelectItem,
+  SelectTrigger,
+  SelectValue,
+} from '@workspace/ui/components/select';
 import {
   Sheet,
   SheetContent,
@@ -23,6 +30,9 @@ import {
   SheetTitle,
   SheetTrigger,
 } from '@workspace/ui/components/sheet';
+import { Tabs, TabsContent, TabsList, TabsTrigger } from '@workspace/ui/components/tabs';
+import { Textarea } from '@workspace/ui/components/textarea';
+import { ArrayInput } from '@workspace/ui/custom-components/dynamic-Inputs';
 import { EnhancedInput } from '@workspace/ui/custom-components/enhanced-input';
 import { Icon } from '@workspace/ui/custom-components/icon';
 import { DicesIcon } from 'lucide-react';
@@ -33,10 +43,46 @@ import { useForm } from 'react-hook-form';
 import { toast } from 'sonner';
 import { z } from 'zod';
 
+const dnsConfigSchema = z.object({
+  proto: z.enum(['tcp', 'udp', 'tls', 'https', 'quic']),
+  address: z.string(),
+  domains: z.array(z.string()),
+});
+
+const outboundConfigSchema = z.object({
+  name: z.string(),
+  protocol: z.enum([
+    'http',
+    'https',
+    'socks5',
+    'shadowsocks',
+    'vmess',
+    'vless',
+    'trojan',
+    'hysteria2',
+    'tuic',
+    'naive',
+    'brook',
+    'snell',
+    'wireguard',
+    'direct',
+    'reject',
+  ]),
+  address: z.string(),
+  port: z.number(),
+  password: z.string().optional(),
+  rules: z.array(z.string()).optional(),
+});
+
 const nodeConfigSchema = z.object({
   node_secret: z.string().optional(),
   node_pull_interval: z.number().optional(),
   node_push_interval: z.number().optional(),
+  traffic_report_threshold: z.number().optional(),
+  ip_strategy: z.enum(['prefer_ipv4', 'prefer_ipv6']).optional(),
+  dns: z.array(dnsConfigSchema).optional(),
+  block: z.array(z.string()).optional(),
+  outbound: z.array(outboundConfigSchema).optional(),
 });
 type NodeConfigFormData = z.infer<typeof nodeConfigSchema>;
 
@@ -60,6 +106,11 @@ export default function ServerConfig() {
       node_secret: '',
       node_pull_interval: undefined,
       node_push_interval: undefined,
+      traffic_report_threshold: undefined,
+      ip_strategy: undefined,
+      dns: [],
+      block: [],
+      outbound: [],
     },
   });
 
@@ -69,6 +120,11 @@ export default function ServerConfig() {
         node_secret: cfgResp.node_secret ?? '',
         node_pull_interval: cfgResp.node_pull_interval as number | undefined,
         node_push_interval: cfgResp.node_push_interval as number | undefined,
+        traffic_report_threshold: (cfgResp as any).traffic_report_threshold as number | undefined,
+        ip_strategy: (cfgResp as any).ip_strategy as 'prefer_ipv4' | 'prefer_ipv6' | undefined,
+        dns: (cfgResp as any).dns || [],
+        block: (cfgResp as any).block || [],
+        outbound: (cfgResp as any).outbound || [],
       });
     }
   }, [cfgResp, form]);
@@ -77,7 +133,7 @@ export default function ServerConfig() {
     setSaving(true);
     try {
       await updateNodeConfig(values as API.NodeConfig);
-      toast.success(t('config.saveSuccess'));
+      toast.success(t('server_config.saveSuccess'));
       await refetchCfg();
       setOpen(false);
     } finally {
@@ -96,9 +152,9 @@ export default function ServerConfig() {
                   <Icon icon='mdi:resistor-nodes' className='text-primary h-5 w-5' />
                 </div>
                 <div className='flex-1'>
-                  <p className='font-medium'>{t('config.title')}</p>
+                  <p className='font-medium'>{t('server_config.title')}</p>
                   <p className='text-muted-foreground truncate text-sm'>
-                    {t('config.description')}
+                    {t('server_config.description')}
                   </p>
                 </div>
               </div>
@@ -110,102 +166,348 @@ export default function ServerConfig() {
 
       <SheetContent className='w-[720px] max-w-full md:max-w-screen-md'>
         <SheetHeader>
-          <SheetTitle>节点配置</SheetTitle>
+          <SheetTitle>{t('server_config.title')}</SheetTitle>
         </SheetHeader>
 
         <ScrollArea className='-mx-6 h-[calc(100dvh-48px-36px-36px-env(safe-area-inset-top))] px-6'>
-          <Form {...form}>
-            <form
-              id='server-config-form'
-              onSubmit={form.handleSubmit(onSubmit)}
-              className='space-y-4 pt-4'
-            >
-              <FormField
-                control={form.control}
-                name='node_secret'
-                render={({ field }) => (
-                  <FormItem>
-                    <FormLabel>{t('config.communicationKey')}</FormLabel>
-                    <FormControl>
-                      <EnhancedInput
-                        placeholder={t('config.inputPlaceholder')}
-                        value={field.value || ''}
-                        onValueChange={field.onChange}
-                        suffix={
-                          <div className='bg-muted flex h-9 items-center px-3'>
-                            <DicesIcon
-                              onClick={() => {
-                                const id = uid(32).toLowerCase();
-                                const formatted = `${id.slice(0, 8)}-${id.slice(8, 12)}-${id.slice(12, 16)}-${id.slice(16, 20)}-${id.slice(20)}`;
-                                form.setValue('node_secret', formatted);
-                              }}
-                              className='cursor-pointer'
-                            />
-                          </div>
-                        }
-                      />
-                    </FormControl>
-                    <FormDescription>{t('config.communicationKeyDescription')}</FormDescription>
-                    <FormMessage />
-                  </FormItem>
-                )}
-              />
+          <Tabs defaultValue='basic' className='pt-4'>
+            <TabsList className='grid w-full grid-cols-4'>
+              <TabsTrigger value='basic'>{t('server_config.tabs.basic')}</TabsTrigger>
+              <TabsTrigger value='dns'>{t('server_config.tabs.dns')}</TabsTrigger>
+              <TabsTrigger value='outbound'>{t('server_config.tabs.outbound')}</TabsTrigger>
+              <TabsTrigger value='block'>{t('server_config.tabs.block')}</TabsTrigger>
+            </TabsList>
 
-              <FormField
-                control={form.control}
-                name='node_pull_interval'
-                render={({ field }) => (
-                  <FormItem>
-                    <FormLabel>{t('config.nodePullInterval')}</FormLabel>
-                    <FormControl>
-                      <EnhancedInput
-                        type='number'
-                        min={0}
-                        suffix='S'
-                        value={field.value as any}
-                        onValueChange={field.onChange}
-                        placeholder={t('config.inputPlaceholder')}
-                      />
-                    </FormControl>
-                    <FormDescription>{t('config.nodePullIntervalDescription')}</FormDescription>
-                    <FormMessage />
-                  </FormItem>
-                )}
-              />
+            <Form {...form}>
+              <form id='server-config-form' onSubmit={form.handleSubmit(onSubmit)} className='mt-4'>
+                <TabsContent value='basic' className='space-y-4'>
+                  <FormField
+                    control={form.control}
+                    name='node_secret'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>{t('server_config.fields.communication_key')}</FormLabel>
+                        <FormControl>
+                          <EnhancedInput
+                            placeholder={t('server_config.fields.communication_key_placeholder')}
+                            value={field.value || ''}
+                            onValueChange={field.onChange}
+                            suffix={
+                              <div className='bg-muted flex h-9 items-center px-3'>
+                                <DicesIcon
+                                  onClick={() => {
+                                    const id = uid(32).toLowerCase();
+                                    const formatted = `${id.slice(0, 8)}-${id.slice(8, 12)}-${id.slice(12, 16)}-${id.slice(16, 20)}-${id.slice(20)}`;
+                                    form.setValue('node_secret', formatted);
+                                  }}
+                                  className='cursor-pointer'
+                                />
+                              </div>
+                            }
+                          />
+                        </FormControl>
+                        <FormDescription>
+                          {t('server_config.fields.communication_key_desc')}
+                        </FormDescription>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
 
-              <FormField
-                control={form.control}
-                name='node_push_interval'
-                render={({ field }) => (
-                  <FormItem>
-                    <FormLabel>{t('config.nodePushInterval')}</FormLabel>
-                    <FormControl>
-                      <EnhancedInput
-                        type='number'
-                        min={0}
-                        suffix='S'
-                        step={0.1}
-                        value={field.value as any}
-                        onValueChange={field.onChange}
-                        placeholder={t('config.inputPlaceholder')}
-                      />
-                    </FormControl>
-                    <FormDescription>{t('config.nodePushIntervalDescription')}</FormDescription>
-                    <FormMessage />
-                  </FormItem>
-                )}
-              />
-            </form>
-          </Form>
+                  <FormField
+                    control={form.control}
+                    name='node_pull_interval'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>{t('server_config.fields.node_pull_interval')}</FormLabel>
+                        <FormControl>
+                          <EnhancedInput
+                            type='number'
+                            min={0}
+                            suffix='S'
+                            value={field.value as any}
+                            onValueChange={field.onChange}
+                            placeholder={t('server_config.fields.communication_key_placeholder')}
+                          />
+                        </FormControl>
+                        <FormDescription>
+                          {t('server_config.fields.node_pull_interval_desc')}
+                        </FormDescription>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+
+                  <FormField
+                    control={form.control}
+                    name='node_push_interval'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>{t('server_config.fields.node_push_interval')}</FormLabel>
+                        <FormControl>
+                          <EnhancedInput
+                            type='number'
+                            min={0}
+                            suffix='S'
+                            step={0.1}
+                            value={field.value as any}
+                            onValueChange={field.onChange}
+                            placeholder={t('server_config.fields.communication_key_placeholder')}
+                          />
+                        </FormControl>
+                        <FormDescription>
+                          {t('server_config.fields.node_push_interval_desc')}
+                        </FormDescription>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+
+                  <FormField
+                    control={form.control}
+                    name='traffic_report_threshold'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>{t('server_config.fields.traffic_report_threshold')}</FormLabel>
+                        <FormControl>
+                          <EnhancedInput
+                            type='number'
+                            min={0}
+                            suffix='MB'
+                            value={field.value as any}
+                            onValueChange={field.onChange}
+                            placeholder='1'
+                          />
+                        </FormControl>
+                        <FormDescription>
+                          {t('server_config.fields.traffic_report_threshold_desc')}
+                        </FormDescription>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+                </TabsContent>
+
+                <TabsContent value='dns' className='space-y-4'>
+                  <FormField
+                    control={form.control}
+                    name='ip_strategy'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>{t('server_config.fields.ip_strategy')}</FormLabel>
+                        <Select onValueChange={field.onChange} value={field.value}>
+                          <FormControl>
+                            <SelectTrigger>
+                              <SelectValue
+                                placeholder={t('server_config.fields.ip_strategy_placeholder')}
+                              />
+                            </SelectTrigger>
+                          </FormControl>
+                          <SelectContent>
+                            <SelectItem value='prefer_ipv4'>
+                              {t('server_config.fields.ip_strategy_ipv4')}
+                            </SelectItem>
+                            <SelectItem value='prefer_ipv6'>
+                              {t('server_config.fields.ip_strategy_ipv6')}
+                            </SelectItem>
+                          </SelectContent>
+                        </Select>
+                        <FormDescription>
+                          {t('server_config.fields.ip_strategy_desc')}
+                        </FormDescription>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+
+                  <FormField
+                    control={form.control}
+                    name='dns'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormLabel>{t('server_config.fields.dns_config')}</FormLabel>
+                        <FormControl>
+                          <ArrayInput
+                            className='grid grid-cols-2 gap-2'
+                            fields={[
+                              {
+                                name: 'proto',
+                                type: 'select',
+                                placeholder: t('server_config.fields.dns_proto_placeholder'),
+                                options: [
+                                  { label: 'TCP', value: 'tcp' },
+                                  { label: 'UDP', value: 'udp' },
+                                  { label: 'TLS', value: 'tls' },
+                                  { label: 'HTTPS', value: 'https' },
+                                  { label: 'QUIC', value: 'quic' },
+                                ],
+                              },
+                              { name: 'address', type: 'text', placeholder: '8.8.8.8:53' },
+                              {
+                                name: 'domains',
+                                type: 'textarea',
+                                className: 'col-span-2',
+                                placeholder: t('server_config.fields.dns_domains_placeholder'),
+                              },
+                            ]}
+                            value={(field.value || []).map((item) => ({
+                              ...item,
+                              domains: Array.isArray(item.domains) ? item.domains.join('\n') : '',
+                            }))}
+                            onChange={(values) => {
+                              // 转换 domains 字符串为数组
+                              const converted = values.map((item: any) => ({
+                                proto: item.proto,
+                                address: item.address,
+                                domains:
+                                  typeof item.domains === 'string'
+                                    ? item.domains
+                                        .split('\n')
+                                        .map((d: string) => d.trim())
+                                        .filter(Boolean)
+                                    : item.domains || [],
+                              }));
+                              field.onChange(converted);
+                            }}
+                          />
+                        </FormControl>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+                </TabsContent>
+
+                <TabsContent value='outbound' className='space-y-4'>
+                  <FormField
+                    control={form.control}
+                    name='outbound'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormControl>
+                          <ArrayInput
+                            className='grid grid-cols-2 gap-2'
+                            fields={[
+                              {
+                                name: 'name',
+                                type: 'text',
+                                className: 'col-span-2',
+                                placeholder: t('server_config.fields.outbound_name_placeholder'),
+                              },
+                              {
+                                name: 'protocol',
+                                type: 'select',
+                                placeholder: t(
+                                  'server_config.fields.outbound_protocol_placeholder',
+                                ),
+                                options: [
+                                  { label: 'HTTP', value: 'http' },
+                                  { label: 'HTTPS', value: 'https' },
+                                  { label: 'SOCKS5', value: 'socks5' },
+                                  { label: 'Shadowsocks', value: 'shadowsocks' },
+                                  { label: 'VMess', value: 'vmess' },
+                                  { label: 'VLESS', value: 'vless' },
+                                  { label: 'Trojan', value: 'trojan' },
+                                  { label: 'Hysteria2', value: 'hysteria2' },
+                                  { label: 'TUIC', value: 'tuic' },
+                                  { label: 'NaiveProxy', value: 'naive' },
+                                  { label: 'Brook', value: 'brook' },
+                                  { label: 'Snell', value: 'snell' },
+                                  { label: 'WireGuard', value: 'wireguard' },
+                                  { label: 'Direct', value: 'direct' },
+                                  { label: 'Reject', value: 'reject' },
+                                ],
+                              },
+                              {
+                                name: 'address',
+                                type: 'text',
+                                placeholder: t('server_config.fields.outbound_address_placeholder'),
+                              },
+                              {
+                                name: 'port',
+                                type: 'number',
+                                placeholder: t('server_config.fields.outbound_port_placeholder'),
+                              },
+                              {
+                                name: 'password',
+                                type: 'text',
+                                placeholder: t(
+                                  'server_config.fields.outbound_password_placeholder',
+                                ),
+                              },
+                              {
+                                name: 'rules',
+                                type: 'textarea',
+                                className: 'col-span-2',
+                                placeholder: t('server_config.fields.outbound_rules_placeholder'),
+                              },
+                            ]}
+                            value={(field.value || []).map((item) => ({
+                              ...item,
+                              rules: Array.isArray(item.rules) ? item.rules.join('\n') : '',
+                            }))}
+                            onChange={(values) => {
+                              // 转换 rules 字符串为数组
+                              const converted = values.map((item: any) => ({
+                                name: item.name,
+                                protocol: item.protocol,
+                                address: item.address,
+                                port: item.port,
+                                password: item.password,
+                                rules:
+                                  typeof item.rules === 'string'
+                                    ? item.rules
+                                        .split('\n')
+                                        .map((r: string) => r.trim())
+                                        .filter(Boolean)
+                                    : item.rules || [],
+                              }));
+                              field.onChange(converted);
+                            }}
+                          />
+                        </FormControl>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+                </TabsContent>
+
+                <TabsContent value='block' className='space-y-4'>
+                  <FormField
+                    control={form.control}
+                    name='block'
+                    render={({ field }) => (
+                      <FormItem>
+                        <FormControl>
+                          <Textarea
+                            placeholder={t('server_config.fields.block_rules_placeholder')}
+                            value={(field.value || []).join('\n')}
+                            onChange={(e) => {
+                              const lines = e.target.value
+                                .split('\n')
+                                .map((line) => line.trim())
+                                .filter(Boolean);
+                              field.onChange(lines);
+                            }}
+                            rows={10}
+                          />
+                        </FormControl>
+                        <FormMessage />
+                      </FormItem>
+                    )}
+                  />
+                </TabsContent>
+              </form>
+            </Form>
+          </Tabs>
         </ScrollArea>
 
         <SheetFooter className='flex-row justify-end gap-2 pt-3'>
           <Button variant='outline' disabled={saving} onClick={() => setOpen(false)}>
-            {t('config.actions.cancel')}
+            {t('actions.cancel')}
           </Button>
           <Button disabled={saving} type='submit' form='server-config-form'>
             <Icon icon='mdi:loading' className={saving ? 'mr-2 animate-spin' : 'hidden'} />
-            {t('config.actions.save')}
+            {t('actions.save')}
           </Button>
         </SheetFooter>
       </SheetContent>
diff --git a/apps/admin/app/dashboard/servers/server-form.tsx b/apps/admin/app/dashboard/servers/server-form.tsx
index 788672e..056d6b1 100644
--- a/apps/admin/app/dashboard/servers/server-form.tsx
+++ b/apps/admin/app/dashboard/servers/server-form.tsx
@@ -338,7 +338,6 @@ export default function ServerForm(props: {
       address: '',
       country: '',
       city: '',
-      ratio: 1,
       protocols: [] as any[],
       ...initialValues,
     },
@@ -375,7 +374,6 @@ export default function ServerForm(props: {
       name: values.name,
       country: values.country,
       city: values.city,
-      ratio: values.ratio || 1,
       address: values.address,
       protocols: filteredProtocols,
     };
@@ -399,7 +397,6 @@ export default function ServerForm(props: {
                 address: '',
                 country: '',
                 city: '',
-                ratio: 1,
                 protocols: full,
               });
             }
@@ -416,7 +413,7 @@ export default function ServerForm(props: {
         <ScrollArea className='-mx-6 h-[calc(100dvh-48px-36px-36px-env(safe-area-inset-top))]'>
           <Form {...form}>
             <form className='grid grid-cols-1 gap-2 px-6 pt-4'>
-              <div className='grid grid-cols-3 gap-2'>
+              <div className='grid grid-cols-2 gap-2 md:grid-cols-4'>
                 <FormField
                   control={control}
                   name='name'
@@ -430,6 +427,23 @@ export default function ServerForm(props: {
                     </FormItem>
                   )}
                 />
+                <FormField
+                  control={control}
+                  name='address'
+                  render={({ field }) => (
+                    <FormItem>
+                      <FormLabel>{t('address')}</FormLabel>
+                      <FormControl>
+                        <EnhancedInput
+                          {...field}
+                          placeholder={t('address_placeholder')}
+                          onValueChange={(v) => field.onChange(v)}
+                        />
+                      </FormControl>
+                      <FormMessage />
+                    </FormItem>
+                  )}
+                />
                 <FormField
                   control={control}
                   name='country'
@@ -457,44 +471,6 @@ export default function ServerForm(props: {
                   )}
                 />
               </div>
-              <div className='grid grid-cols-2 gap-2'>
-                <FormField
-                  control={control}
-                  name='address'
-                  render={({ field }) => (
-                    <FormItem>
-                      <FormLabel>{t('address')}</FormLabel>
-                      <FormControl>
-                        <EnhancedInput
-                          {...field}
-                          placeholder={t('address_placeholder')}
-                          onValueChange={(v) => field.onChange(v)}
-                        />
-                      </FormControl>
-                      <FormMessage />
-                    </FormItem>
-                  )}
-                />
-                <FormField
-                  control={control}
-                  name='ratio'
-                  render={({ field }) => (
-                    <FormItem>
-                      <FormLabel>{t('traffic_ratio')}</FormLabel>
-                      <FormControl>
-                        <EnhancedInput
-                          {...field}
-                          type='number'
-                          step={0.1}
-                          min={0}
-                          onValueChange={(v) => field.onChange(v)}
-                        />
-                      </FormControl>
-                      <FormMessage />
-                    </FormItem>
-                  )}
-                />
-              </div>
               <div className='my-3'>
                 <h3 className='text-foreground text-sm font-semibold'>
                   {t('protocol_configurations')}
diff --git a/apps/admin/locales/cs-CZ/servers.json b/apps/admin/locales/cs-CZ/servers.json
index fadebaf..e4474a5 100644
--- a/apps/admin/locales/cs-CZ/servers.json
+++ b/apps/admin/locales/cs-CZ/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Zrušit",
+    "save": "Uložit"
+  },
   "address": "Adresa",
   "address_placeholder": "Adresa serveru",
   "bandwidth_placeholder": "Zadejte šířku pásma, nechte prázdné pro BBR",
   "basic": "Základní konfigurace",
   "cancel": "Zrušit",
+  "cert_dns_env": "DNS proměnné prostředí",
+  "cert_dns_provider": "DNS poskytovatel",
+  "cert_mode": "Režim certifikátu",
   "cipher": "Šifrovací algoritmus",
   "city": "Město",
-  "config": {
-    "actions": {
-      "cancel": "Zrušit",
-      "save": "Uložit"
-    },
-    "communicationKey": "Komunikační klíč",
-    "communicationKeyDescription": "Používá se pro autentizaci uzlu.",
-    "description": "Spravujte klíče pro komunikaci uzlu, intervaly stahování/odesílání a dynamické multiplikátory.",
-    "dynamicMultiplier": "Dynamický multiplikátor",
-    "dynamicMultiplierDescription": "Definujte časové sloty a multiplikátory pro úpravu účtování provozu.",
-    "endTime": "Čas konce",
-    "inputPlaceholder": "Prosím zadejte",
-    "multiplier": "Multiplikátor",
-    "nodePullInterval": "Interval stahování uzlu",
-    "nodePullIntervalDescription": "Jak často uzel stahuje konfiguraci (vteřiny).",
-    "nodePushInterval": "Interval odesílání uzlu",
-    "nodePushIntervalDescription": "Jak často uzel odesílá statistiky (vteřiny).",
-    "reset": "Obnovit",
-    "save": "Uložit",
-    "saveSuccess": "Úspěšně uloženo",
-    "startTime": "Čas začátku",
-    "timeSlot": "Časový slot",
-    "title": "Konfigurace uzlu"
-  },
   "confirm": "Potvrdit",
   "confirmDeleteDesc": "Tuto akci nelze vrátit zpět.",
   "confirmDeleteTitle": "Smazat tento server?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hexadecimální řetězec (max. 16 znaků)",
   "security_sni": "SNI",
   "select_encryption_method": "Vyberte metodu šifrování",
+  "server_config": {
+    "description": "Spravujte klíče pro komunikaci uzlu, intervaly stahování/odesílání.",
+    "dynamic_multiplier": "Dynamický multiplikátor",
+    "dynamic_multiplier_desc": "Definujte časové sloty a multiplikátory pro úpravu účtování provozu.",
+    "fields": {
+      "block_rules_placeholder": "Jedno pravidlo domény na řádek, podporuje:\nkeyword:google (shoda podle klíčového slova)\nsuffix:google.com (shoda podle přípony)\nregex:.*\\.example\\.com$ (shoda podle regulárního výrazu)\nexample.com (přesná shoda)",
+      "communication_key": "Klíč pro komunikaci",
+      "communication_key_desc": "Používá se pro autentizaci uzlu.",
+      "communication_key_placeholder": "Zadejte prosím",
+      "dns_config": "DNS konfigurace",
+      "dns_domains_placeholder": "Jedno pravidlo domény na řádek, podporuje:\nkeyword:google (shoda podle klíčového slova)\nsuffix:google.com (shoda podle přípony)\nregex:.*\\.example\\.com$ (shoda podle regulárního výrazu)\nexample.com (přesná shoda)",
+      "dns_proto_placeholder": "Vyberte typ",
+      "end_time": "Čas konce",
+      "ip_strategy": "IP strategie",
+      "ip_strategy_desc": "Vyberte preferenci verze IP pro síťová připojení",
+      "ip_strategy_ipv4": "Preferovat IPv4",
+      "ip_strategy_ipv6": "Preferovat IPv6",
+      "ip_strategy_placeholder": "Vyberte IP strategii",
+      "multiplier": "Multiplikátor",
+      "node_pull_interval": "Interval stahování uzlu",
+      "node_pull_interval_desc": "Jak často uzel stahuje konfiguraci (v sekundách).",
+      "node_push_interval": "Interval odesílání uzlu",
+      "node_push_interval_desc": "Jak často uzel odesílá statistiky (v sekundách).",
+      "outbound_address_placeholder": "Adresa serveru",
+      "outbound_name_placeholder": "Název konfigurace",
+      "outbound_password_placeholder": "Heslo (volitelné)",
+      "outbound_port_placeholder": "Číslo portu",
+      "outbound_protocol_placeholder": "Vyberte protokol",
+      "outbound_rules_placeholder": "Jedno pravidlo na řádek, podporuje:\nkeyword:google (shoda podle klíčového slova)\nsuffix:google.com (shoda podle přípony)\nregex:.*\\.example\\.com$ (shoda podle regulárního výrazu)\nexample.com (přesná shoda)\nNechte prázdné pro výchozí směrování",
+      "reset": "Obnovit",
+      "save": "Uložit",
+      "start_time": "Čas začátku",
+      "time_slot": "Časový slot",
+      "traffic_report_threshold": "Prahová hodnota zprávy o provozu",
+      "traffic_report_threshold_desc": "Nastavte minimální prahovou hodnotu pro hlášení o provozu. Provoz bude hlášen pouze tehdy, když překročí tuto hodnotu. Nastavte na 0 nebo nechte prázdné pro hlášení veškerého provozu."
+    },
+    "saveSuccess": "Úspěšně uloženo",
+    "tabs": {
+      "basic": "Základní konfigurace",
+      "block": "Blokovací pravidla",
+      "dns": "DNS konfigurace",
+      "outbound": "Odchozí pravidla"
+    },
+    "title": "Konfigurace uzlu"
+  },
   "server_key": "Klíč serveru",
   "service_name": "Název služby",
   "sorted_success": "Úspěšně seřazeno",
diff --git a/apps/admin/locales/de-DE/servers.json b/apps/admin/locales/de-DE/servers.json
index 256514d..4698b13 100644
--- a/apps/admin/locales/de-DE/servers.json
+++ b/apps/admin/locales/de-DE/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Abbrechen",
+    "save": "Speichern"
+  },
   "address": "Adresse",
   "address_placeholder": "Serveradresse",
   "bandwidth_placeholder": "Geben Sie die Bandbreite ein, lassen Sie das Feld leer für BBR",
   "basic": "Grundkonfiguration",
   "cancel": "Abbrechen",
+  "cert_dns_env": "DNS-Umgebungsvariablen",
+  "cert_dns_provider": "DNS-Anbieter",
+  "cert_mode": "Zertifikatsmodus",
   "cipher": "Verschlüsselungsalgorithmus",
   "city": "Stadt",
-  "config": {
-    "actions": {
-      "cancel": "Abbrechen",
-      "save": "Speichern"
-    },
-    "communicationKey": "Kommunikationsschlüssel",
-    "communicationKeyDescription": "Wird zur Authentifizierung des Knotens verwendet.",
-    "description": "Verwalten Sie die Kommunikationsschlüssel des Knotens, Pull/Push-Intervalle und dynamische Multiplikatoren.",
-    "dynamicMultiplier": "Dynamischer Multiplikator",
-    "dynamicMultiplierDescription": "Definieren Sie Zeitfenster und Multiplikatoren zur Anpassung der Verkehrsabrechnung.",
-    "endTime": "Endzeit",
-    "inputPlaceholder": "Bitte eingeben",
-    "multiplier": "Multiplikator",
-    "nodePullInterval": "Knoten-Pull-Intervall",
-    "nodePullIntervalDescription": "Wie oft der Knoten die Konfiguration abruft (Sekunden).",
-    "nodePushInterval": "Knoten-Push-Intervall",
-    "nodePushIntervalDescription": "Wie oft der Knoten Statistiken sendet (Sekunden).",
-    "reset": "Zurücksetzen",
-    "save": "Speichern",
-    "saveSuccess": "Erfolgreich gespeichert",
-    "startTime": "Startzeit",
-    "timeSlot": "Zeitfenster",
-    "title": "Knoten-Konfiguration"
-  },
   "confirm": "Bestätigen",
   "confirmDeleteDesc": "Diese Aktion kann nicht rückgängig gemacht werden.",
   "confirmDeleteTitle": "Diesen Server löschen?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hex-String (bis zu 16 Zeichen)",
   "security_sni": "SNI",
   "select_encryption_method": "Verschlüsselungsmethode auswählen",
+  "server_config": {
+    "description": "Verwalten Sie die Kommunikationsschlüssel des Knotens, Pull/Push-Intervalle.",
+    "dynamic_multiplier": "Dynamischer Multiplikator",
+    "dynamic_multiplier_desc": "Definieren Sie Zeitfenster und Multiplikatoren zur Anpassung der Verkehrserfassung.",
+    "fields": {
+      "block_rules_placeholder": "Eine Domainregel pro Zeile, unterstützt:\nkeyword:google (Schlüsselwortübereinstimmung)\nsuffix:google.com (Suffixübereinstimmung)\nregex:.*\\.example\\.com$ (Regex-Übereinstimmung)\nexample.com (exakte Übereinstimmung)",
+      "communication_key": "Kommunikationsschlüssel",
+      "communication_key_desc": "Wird zur Authentifizierung des Knotens verwendet.",
+      "communication_key_placeholder": "Bitte eingeben",
+      "dns_config": "DNS-Konfiguration",
+      "dns_domains_placeholder": "Eine Domainregel pro Zeile, unterstützt:\nkeyword:google (Schlüsselwortübereinstimmung)\nsuffix:google.com (Suffixübereinstimmung)\nregex:.*\\.example\\.com$ (Regex-Übereinstimmung)\nexample.com (exakte Übereinstimmung)",
+      "dns_proto_placeholder": "Typ auswählen",
+      "end_time": "Endzeit",
+      "ip_strategy": "IP-Strategie",
+      "ip_strategy_desc": "Wählen Sie die bevorzugte IP-Version für Netzwerkverbindungen",
+      "ip_strategy_ipv4": "Bevorzuge IPv4",
+      "ip_strategy_ipv6": "Bevorzuge IPv6",
+      "ip_strategy_placeholder": "IP-Strategie auswählen",
+      "multiplier": "Multiplikator",
+      "node_pull_interval": "Knoten-Pull-Intervall",
+      "node_pull_interval_desc": "Wie oft der Knoten die Konfiguration abruft (Sekunden).",
+      "node_push_interval": "Knoten-Push-Intervall",
+      "node_push_interval_desc": "Wie oft der Knoten Statistiken sendet (Sekunden).",
+      "outbound_address_placeholder": "Serveradresse",
+      "outbound_name_placeholder": "Konfigurationsname",
+      "outbound_password_placeholder": "Passwort (optional)",
+      "outbound_port_placeholder": "Portnummer",
+      "outbound_protocol_placeholder": "Protokoll auswählen",
+      "outbound_rules_placeholder": "Eine Regel pro Zeile, unterstützt:\nkeyword:google (Schlüsselwortübereinstimmung)\nsuffix:google.com (Suffixübereinstimmung)\nregex:.*\\.example\\.com$ (Regex-Übereinstimmung)\nexample.com (exakte Übereinstimmung)\nLeer lassen für Standardrouting",
+      "reset": "Zurücksetzen",
+      "save": "Speichern",
+      "start_time": "Startzeit",
+      "time_slot": "Zeitfenster",
+      "traffic_report_threshold": "Schwellenwert für Verkehrsberichte",
+      "traffic_report_threshold_desc": "Legen Sie den Mindestschwellenwert für die Verkehrsmeldung fest. Verkehr wird nur gemeldet, wenn er diesen Wert überschreitet. Auf 0 setzen oder leer lassen, um gesamten Verkehr zu melden."
+    },
+    "saveSuccess": "Erfolgreich gespeichert",
+    "tabs": {
+      "basic": "Grundkonfiguration",
+      "block": "Blockierungsregeln",
+      "dns": "DNS-Konfiguration",
+      "outbound": "Ausgehende Regeln"
+    },
+    "title": "Knoten-Konfiguration"
+  },
   "server_key": "Server-Schlüssel",
   "service_name": "Dienstname",
   "sorted_success": "Erfolgreich sortiert",
diff --git a/apps/admin/locales/en-US/servers.json b/apps/admin/locales/en-US/servers.json
index ff3c577..443288d 100644
--- a/apps/admin/locales/en-US/servers.json
+++ b/apps/admin/locales/en-US/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Cancel",
+    "save": "Save"
+  },
   "address": "Address",
   "address_placeholder": "Server address",
   "bandwidth_placeholder": "Enter bandwidth, leave empty for BBR",
   "basic": "Basic Configuration",
   "cancel": "Cancel",
+  "cert_dns_env": "DNS Environment Variables",
+  "cert_dns_provider": "DNS Provider",
+  "cert_mode": "Certificate Mode",
   "cipher": "Encryption Algorithm",
   "city": "City",
-  "config": {
-    "title": "Node configuration",
-    "description": "Manage node communication keys, pull/push intervals.",
-    "saveSuccess": "Saved successfully",
-    "communicationKey": "Communication key",
-    "inputPlaceholder": "Please enter",
-    "communicationKeyDescription": "Used for node authentication.",
-    "nodePullInterval": "Node pull interval",
-    "nodePullIntervalDescription": "How often the node pulls configuration (seconds).",
-    "nodePushInterval": "Node push interval",
-    "nodePushIntervalDescription": "How often the node pushes stats (seconds).",
-    "dynamicMultiplier": "Dynamic multiplier",
-    "dynamicMultiplierDescription": "Define time slots and multipliers to adjust traffic accounting.",
-    "startTime": "Start time",
-    "endTime": "End time",
-    "multiplier": "Multiplier",
-    "reset": "Reset",
-    "save": "Save",
-    "timeSlot": "Time slot",
-    "actions": {
-      "cancel": "Cancel",
-      "save": "Save"
-    }
-  },
   "confirm": "Confirm",
   "confirmDeleteDesc": "This action cannot be undone.",
   "confirmDeleteTitle": "Delete this server?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hex string (up to 16 chars)",
   "security_sni": "SNI",
   "select_encryption_method": "Select encryption method",
+  "server_config": {
+    "title": "Node configuration",
+    "description": "Manage node communication keys, pull/push intervals.",
+    "saveSuccess": "Saved successfully",
+    "dynamic_multiplier": "Dynamic multiplier",
+    "dynamic_multiplier_desc": "Define time slots and multipliers to adjust traffic accounting.",
+    "tabs": {
+      "basic": "Basic Configuration",
+      "dns": "DNS Configuration",
+      "outbound": "Outbound Rules",
+      "block": "Block Rules"
+    },
+    "fields": {
+      "communication_key": "Communication key",
+      "communication_key_placeholder": "Please enter",
+      "communication_key_desc": "Used for node authentication.",
+      "node_pull_interval": "Node pull interval",
+      "node_pull_interval_desc": "How often the node pulls configuration (seconds).",
+      "node_push_interval": "Node push interval",
+      "node_push_interval_desc": "How often the node pushes stats (seconds).",
+      "start_time": "Start time",
+      "end_time": "End time",
+      "multiplier": "Multiplier",
+      "reset": "Reset",
+      "save": "Save",
+      "time_slot": "Time slot",
+      "traffic_report_threshold": "Traffic Report Threshold",
+      "traffic_report_threshold_desc": "Set the minimum threshold for traffic reporting. Traffic will only be reported when it exceeds this value. Set to 0 or leave empty to report all traffic.",
+      "ip_strategy": "IP Strategy",
+      "ip_strategy_desc": "Choose IP version preference for network connections",
+      "ip_strategy_placeholder": "Select IP strategy",
+      "ip_strategy_ipv4": "Prefer IPv4",
+      "ip_strategy_ipv6": "Prefer IPv6",
+      "dns_config": "DNS Configuration",
+      "dns_proto_placeholder": "Select type",
+      "dns_domains_placeholder": "One domain rule per line, supports:\nkeyword:google (keyword matching)\nsuffix:google.com (suffix matching)\nregex:.*\\.example\\.com$ (regex matching)\nexample.com (exact matching)",
+      "outbound_protocol_placeholder": "Select protocol",
+      "outbound_name_placeholder": "Configuration name",
+      "outbound_address_placeholder": "Server address",
+      "outbound_port_placeholder": "Port number",
+      "outbound_password_placeholder": "Password (optional)",
+      "outbound_rules_placeholder": "One rule per line, supports:\nkeyword:google (keyword matching)\nsuffix:google.com (suffix matching)\nregex:.*\\.example\\.com$ (regex matching)\nexample.com (exact matching)\nLeave empty for default routing",
+      "block_rules_placeholder": "One domain rule per line, supports:\nkeyword:google (keyword matching)\nsuffix:google.com (suffix matching)\nregex:.*\\.example\\.com$ (regex matching)\nexample.com (exact matching)"
+    }
+  },
   "server_key": "Server key",
   "service_name": "Service name",
   "sorted_success": "Sorted successfully",
diff --git a/apps/admin/locales/es-ES/servers.json b/apps/admin/locales/es-ES/servers.json
index a3b1d6c..fa77bb6 100644
--- a/apps/admin/locales/es-ES/servers.json
+++ b/apps/admin/locales/es-ES/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Cancelar",
+    "save": "Guardar"
+  },
   "address": "Dirección",
   "address_placeholder": "Dirección del servidor",
   "bandwidth_placeholder": "Introduce el ancho de banda, deja vacío para BBR",
   "basic": "Configuración Básica",
   "cancel": "Cancelar",
+  "cert_dns_env": "Variables de Entorno DNS",
+  "cert_dns_provider": "Proveedor de DNS",
+  "cert_mode": "Modo de Certificado",
   "cipher": "Algoritmo de Cifrado",
   "city": "Ciudad",
-  "config": {
-    "actions": {
-      "cancel": "Cancelar",
-      "save": "Guardar"
-    },
-    "communicationKey": "Clave de comunicación",
-    "communicationKeyDescription": "Utilizado para la autenticación del nodo.",
-    "description": "Gestionar las claves de comunicación del nodo, intervalos de extracción/empuje y multiplicadores dinámicos.",
-    "dynamicMultiplier": "Multiplicador dinámico",
-    "dynamicMultiplierDescription": "Definir intervalos de tiempo y multiplicadores para ajustar la contabilidad del tráfico.",
-    "endTime": "Hora de finalización",
-    "inputPlaceholder": "Por favor ingrese",
-    "multiplier": "Multiplicador",
-    "nodePullInterval": "Intervalo de extracción del nodo",
-    "nodePullIntervalDescription": "Con qué frecuencia el nodo extrae la configuración (segundos).",
-    "nodePushInterval": "Intervalo de empuje del nodo",
-    "nodePushIntervalDescription": "Con qué frecuencia el nodo envía estadísticas (segundos).",
-    "reset": "Restablecer",
-    "save": "Guardar",
-    "saveSuccess": "Guardado con éxito",
-    "startTime": "Hora de inicio",
-    "timeSlot": "Intervalo de tiempo",
-    "title": "Configuración del nodo"
-  },
   "confirm": "Confirmar",
   "confirmDeleteDesc": "Esta acción no se puede deshacer.",
   "confirmDeleteTitle": "¿Eliminar este servidor?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Cadena hexadecimal (hasta 16 caracteres)",
   "security_sni": "SNI",
   "select_encryption_method": "Seleccionar método de cifrado",
+  "server_config": {
+    "description": "Gestionar claves de comunicación del nodo, intervalos de extracción/push.",
+    "dynamic_multiplier": "Multiplicador dinámico",
+    "dynamic_multiplier_desc": "Definir intervalos de tiempo y multiplicadores para ajustar la contabilidad del tráfico.",
+    "fields": {
+      "block_rules_placeholder": "Una regla de dominio por línea, soporta:\nkeyword:google (coincidencia de palabras clave)\nsuffix:google.com (coincidencia de sufijo)\nregex:.*\\.example\\.com$ (coincidencia de regex)\nexample.com (coincidencia exacta)",
+      "communication_key": "Clave de comunicación",
+      "communication_key_desc": "Utilizado para la autenticación del nodo.",
+      "communication_key_placeholder": "Por favor ingrese",
+      "dns_config": "Configuración de DNS",
+      "dns_domains_placeholder": "Una regla de dominio por línea, soporta:\nkeyword:google (coincidencia de palabras clave)\nsuffix:google.com (coincidencia de sufijo)\nregex:.*\\.example\\.com$ (coincidencia de regex)\nexample.com (coincidencia exacta)",
+      "dns_proto_placeholder": "Seleccionar tipo",
+      "end_time": "Hora de finalización",
+      "ip_strategy": "Estrategia de IP",
+      "ip_strategy_desc": "Elija la preferencia de versión de IP para conexiones de red",
+      "ip_strategy_ipv4": "Preferir IPv4",
+      "ip_strategy_ipv6": "Preferir IPv6",
+      "ip_strategy_placeholder": "Seleccionar estrategia de IP",
+      "multiplier": "Multiplicador",
+      "node_pull_interval": "Intervalo de extracción del nodo",
+      "node_pull_interval_desc": "Con qué frecuencia el nodo extrae la configuración (segundos).",
+      "node_push_interval": "Intervalo de push del nodo",
+      "node_push_interval_desc": "Con qué frecuencia el nodo envía estadísticas (segundos).",
+      "outbound_address_placeholder": "Dirección del servidor",
+      "outbound_name_placeholder": "Nombre de la configuración",
+      "outbound_password_placeholder": "Contraseña (opcional)",
+      "outbound_port_placeholder": "Número de puerto",
+      "outbound_protocol_placeholder": "Seleccionar protocolo",
+      "outbound_rules_placeholder": "Una regla por línea, soporta:\nkeyword:google (coincidencia de palabras clave)\nsuffix:google.com (coincidencia de sufijo)\nregex:.*\\.example\\.com$ (coincidencia de regex)\nexample.com (coincidencia exacta)\nDejar vacío para enrutamiento por defecto",
+      "reset": "Restablecer",
+      "save": "Guardar",
+      "start_time": "Hora de inicio",
+      "time_slot": "Intervalo de tiempo",
+      "traffic_report_threshold": "Umbral de Informe de Tráfico",
+      "traffic_report_threshold_desc": "Establecer el umbral mínimo para el informe de tráfico. El tráfico solo se informará cuando supere este valor. Establezca en 0 o deje vacío para informar todo el tráfico."
+    },
+    "saveSuccess": "Guardado con éxito",
+    "tabs": {
+      "basic": "Configuración Básica",
+      "block": "Reglas de Bloqueo",
+      "dns": "Configuración de DNS",
+      "outbound": "Reglas Salientes"
+    },
+    "title": "Configuración del nodo"
+  },
   "server_key": "Clave del servidor",
   "service_name": "Nombre del servicio",
   "sorted_success": "Ordenado con éxito",
diff --git a/apps/admin/locales/es-MX/servers.json b/apps/admin/locales/es-MX/servers.json
index b556f00..743a73d 100644
--- a/apps/admin/locales/es-MX/servers.json
+++ b/apps/admin/locales/es-MX/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Cancelar",
+    "save": "Guardar"
+  },
   "address": "Dirección",
   "address_placeholder": "Dirección del servidor",
   "bandwidth_placeholder": "Ingresa el ancho de banda, deja vacío para BBR",
   "basic": "Configuración Básica",
   "cancel": "Cancelar",
+  "cert_dns_env": "Variables de Entorno DNS",
+  "cert_dns_provider": "Proveedor de DNS",
+  "cert_mode": "Modo de Certificado",
   "cipher": "Algoritmo de Cifrado",
   "city": "Ciudad",
-  "config": {
-    "actions": {
-      "cancel": "Cancelar",
-      "save": "Guardar"
-    },
-    "communicationKey": "Clave de comunicación",
-    "communicationKeyDescription": "Utilizado para la autenticación del nodo.",
-    "description": "Gestiona las claves de comunicación del nodo, intervalos de extracción/empuje y multiplicadores dinámicos.",
-    "dynamicMultiplier": "Multiplicador dinámico",
-    "dynamicMultiplierDescription": "Define intervalos de tiempo y multiplicadores para ajustar la contabilidad del tráfico.",
-    "endTime": "Hora de finalización",
-    "inputPlaceholder": "Por favor ingresa",
-    "multiplier": "Multiplicador",
-    "nodePullInterval": "Intervalo de extracción del nodo",
-    "nodePullIntervalDescription": "Con qué frecuencia el nodo extrae la configuración (segundos).",
-    "nodePushInterval": "Intervalo de empuje del nodo",
-    "nodePushIntervalDescription": "Con qué frecuencia el nodo envía estadísticas (segundos).",
-    "reset": "Restablecer",
-    "save": "Guardar",
-    "saveSuccess": "Guardado con éxito",
-    "startTime": "Hora de inicio",
-    "timeSlot": "Intervalo de tiempo",
-    "title": "Configuración del nodo"
-  },
   "confirm": "Confirmar",
   "confirmDeleteDesc": "Esta acción no se puede deshacer.",
   "confirmDeleteTitle": "¿Eliminar este servidor?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Cadena hexadecimal (hasta 16 caracteres)",
   "security_sni": "SNI",
   "select_encryption_method": "Selecciona el método de encriptación",
+  "server_config": {
+    "description": "Gestionar claves de comunicación del nodo, intervalos de extracción/push.",
+    "dynamic_multiplier": "Multiplicador Dinámico",
+    "dynamic_multiplier_desc": "Definir intervalos de tiempo y multiplicadores para ajustar la contabilidad del tráfico.",
+    "fields": {
+      "block_rules_placeholder": "Una regla de dominio por línea, soporta:\nkeyword:google (coincidencia de palabra clave)\nsuffix:google.com (coincidencia de sufijo)\nregex:.*\\.example\\.com$ (coincidencia de regex)\nexample.com (coincidencia exacta)",
+      "communication_key": "Clave de Comunicación",
+      "communication_key_desc": "Utilizado para la autenticación del nodo.",
+      "communication_key_placeholder": "Por favor ingrese",
+      "dns_config": "Configuración de DNS",
+      "dns_domains_placeholder": "Una regla de dominio por línea, soporta:\nkeyword:google (coincidencia de palabra clave)\nsuffix:google.com (coincidencia de sufijo)\nregex:.*\\.example\\.com$ (coincidencia de regex)\nexample.com (coincidencia exacta)",
+      "dns_proto_placeholder": "Seleccionar tipo",
+      "end_time": "Hora de Fin",
+      "ip_strategy": "Estrategia de IP",
+      "ip_strategy_desc": "Elija la preferencia de versión de IP para conexiones de red",
+      "ip_strategy_ipv4": "Preferir IPv4",
+      "ip_strategy_ipv6": "Preferir IPv6",
+      "ip_strategy_placeholder": "Seleccionar estrategia de IP",
+      "multiplier": "Multiplicador",
+      "node_pull_interval": "Intervalo de Extracción del Nodo",
+      "node_pull_interval_desc": "Con qué frecuencia el nodo extrae la configuración (segundos).",
+      "node_push_interval": "Intervalo de Push del Nodo",
+      "node_push_interval_desc": "Con qué frecuencia el nodo envía estadísticas (segundos).",
+      "outbound_address_placeholder": "Dirección del servidor",
+      "outbound_name_placeholder": "Nombre de la configuración",
+      "outbound_password_placeholder": "Contraseña (opcional)",
+      "outbound_port_placeholder": "Número de puerto",
+      "outbound_protocol_placeholder": "Seleccionar protocolo",
+      "outbound_rules_placeholder": "Una regla por línea, soporta:\nkeyword:google (coincidencia de palabra clave)\nsuffix:google.com (coincidencia de sufijo)\nregex:.*\\.example\\.com$ (coincidencia de regex)\nexample.com (coincidencia exacta)\nDejar vacío para enrutamiento por defecto",
+      "reset": "Restablecer",
+      "save": "Guardar",
+      "start_time": "Hora de Inicio",
+      "time_slot": "Intervalo de Tiempo",
+      "traffic_report_threshold": "Umbral de Informe de Tráfico",
+      "traffic_report_threshold_desc": "Establecer el umbral mínimo para el informe de tráfico. El tráfico solo se informará cuando supere este valor. Establezca en 0 o deje vacío para informar todo el tráfico."
+    },
+    "saveSuccess": "Guardado exitosamente",
+    "tabs": {
+      "basic": "Configuración Básica",
+      "block": "Reglas de Bloqueo",
+      "dns": "Configuración de DNS",
+      "outbound": "Reglas Salientes"
+    },
+    "title": "Configuración del Nodo"
+  },
   "server_key": "Clave del servidor",
   "service_name": "Nombre del servicio",
   "sorted_success": "Ordenado con éxito",
diff --git a/apps/admin/locales/fa-IR/servers.json b/apps/admin/locales/fa-IR/servers.json
index 1fc30b8..5b09fa3 100644
--- a/apps/admin/locales/fa-IR/servers.json
+++ b/apps/admin/locales/fa-IR/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "لغو",
+    "save": "ذخیره"
+  },
   "address": "آدرس",
   "address_placeholder": "آدرس سرور",
   "bandwidth_placeholder": "عرض پهنای باند، برای BBR خالی بگذارید",
   "basic": "پیکربندی پایه",
   "cancel": "لغو",
+  "cert_dns_env": "متغیرهای محیطی DNS",
+  "cert_dns_provider": "ارائه‌دهنده DNS",
+  "cert_mode": "حالت گواهی",
   "cipher": "الگوریتم رمزنگاری",
   "city": "شهر",
-  "config": {
-    "actions": {
-      "cancel": "لغو",
-      "save": "ذخیره"
-    },
-    "communicationKey": "کلید ارتباطی",
-    "communicationKeyDescription": "برای احراز هویت نود استفاده می‌شود.",
-    "description": "مدیریت کلیدهای ارتباطی نود، فواصل کشیدن/فشردن و ضریب‌های دینامیک.",
-    "dynamicMultiplier": "ضریب دینامیک",
-    "dynamicMultiplierDescription": "تعریف زمان‌های مشخص و ضریب‌ها برای تنظیم حسابداری ترافیک.",
-    "endTime": "زمان پایان",
-    "inputPlaceholder": "لطفاً وارد کنید",
-    "multiplier": "ضریب",
-    "nodePullInterval": "فاصله کشیدن نود",
-    "nodePullIntervalDescription": "چند وقت یکبار نود پیکربندی را می‌کشد (ثانیه).",
-    "nodePushInterval": "فاصله فشردن نود",
-    "nodePushIntervalDescription": "چند وقت یکبار نود آمار را فشرده می‌کند (ثانیه).",
-    "reset": "بازنشانی",
-    "save": "ذخیره",
-    "saveSuccess": "با موفقیت ذخیره شد",
-    "startTime": "زمان شروع",
-    "timeSlot": "زمان‌بندی",
-    "title": "پیکربندی نود"
-  },
   "confirm": "تأیید",
   "confirmDeleteDesc": "این عمل قابل بازگشت نیست.",
   "confirmDeleteTitle": "آیا این سرور را حذف کنید؟",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "رشته هگز (حداکثر 16 کاراکتر)",
   "security_sni": "SNI",
   "select_encryption_method": "روش رمزنگاری را انتخاب کنید",
+  "server_config": {
+    "description": "مدیریت کلیدهای ارتباط نود، فواصل کشیدن/فشردن.",
+    "dynamic_multiplier": "ضریب دینامیک",
+    "dynamic_multiplier_desc": "زمان‌های مشخص و ضرایب را برای تنظیم حسابداری ترافیک تعریف کنید.",
+    "fields": {
+      "block_rules_placeholder": "یک قانون دامنه در هر خط، پشتیبانی می‌کند:\nkeyword:google (مطابقت با کلمه کلیدی)\nsuffix:google.com (مطابقت با پسوند)\nregex:.*\\.example\\.com$ (مطابقت با regex)\nexample.com (مطابقت دقیق)",
+      "communication_key": "کلید ارتباطی",
+      "communication_key_desc": "برای احراز هویت نود استفاده می‌شود.",
+      "communication_key_placeholder": "لطفاً وارد کنید",
+      "dns_config": "پیکربندی DNS",
+      "dns_domains_placeholder": "یک قانون دامنه در هر خط، پشتیبانی می‌کند:\nkeyword:google (مطابقت با کلمه کلیدی)\nsuffix:google.com (مطابقت با پسوند)\nregex:.*\\.example\\.com$ (مطابقت با regex)\nexample.com (مطابقت دقیق)",
+      "dns_proto_placeholder": "نوع را انتخاب کنید",
+      "end_time": "زمان پایان",
+      "ip_strategy": "استراتژی IP",
+      "ip_strategy_desc": "ترجیح نسخه IP را برای اتصالات شبکه انتخاب کنید",
+      "ip_strategy_ipv4": "ترجیح IPv4",
+      "ip_strategy_ipv6": "ترجیح IPv6",
+      "ip_strategy_placeholder": "استراتژی IP را انتخاب کنید",
+      "multiplier": "ضریب",
+      "node_pull_interval": "فاصله کشیدن نود",
+      "node_pull_interval_desc": "چند وقت یکبار نود پیکربندی را می‌کشد (ثانیه).",
+      "node_push_interval": "فاصله فشردن نود",
+      "node_push_interval_desc": "چند وقت یکبار نود آمار را فشرده می‌کند (ثانیه).",
+      "outbound_address_placeholder": "آدرس سرور",
+      "outbound_name_placeholder": "نام پیکربندی",
+      "outbound_password_placeholder": "رمز عبور (اختیاری)",
+      "outbound_port_placeholder": "شماره پورت",
+      "outbound_protocol_placeholder": "پروتکل را انتخاب کنید",
+      "outbound_rules_placeholder": "یک قانون در هر خط، پشتیبانی می‌کند:\nkeyword:google (مطابقت با کلمه کلیدی)\nsuffix:google.com (مطابقت با پسوند)\nregex:.*\\.example\\.com$ (مطابقت با regex)\nexample.com (مطابقت دقیق)\nبرای مسیریابی پیش‌فرض خالی بگذارید",
+      "reset": "تنظیم مجدد",
+      "save": "ذخیره",
+      "start_time": "زمان شروع",
+      "time_slot": "بازه زمانی",
+      "traffic_report_threshold": "آستانه گزارش ترافیک",
+      "traffic_report_threshold_desc": "حداقل آستانه برای گزارش ترافیک را تنظیم کنید. ترافیک فقط زمانی گزارش می‌شود که از این مقدار فراتر رود. برای گزارش همه ترافیک، مقدار را 0 تنظیم کنید یا خالی بگذارید."
+    },
+    "saveSuccess": "با موفقیت ذخیره شد",
+    "tabs": {
+      "basic": "پیکربندی پایه",
+      "block": "قوانین مسدود",
+      "dns": "پیکربندی DNS",
+      "outbound": "قوانین خروجی"
+    },
+    "title": "پیکربندی نود"
+  },
   "server_key": "کلید سرور",
   "service_name": "نام سرویس",
   "sorted_success": "با موفقیت مرتب شد",
diff --git a/apps/admin/locales/fi-FI/servers.json b/apps/admin/locales/fi-FI/servers.json
index 1a313aa..48834f6 100644
--- a/apps/admin/locales/fi-FI/servers.json
+++ b/apps/admin/locales/fi-FI/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Peruuta",
+    "save": "Tallenna"
+  },
   "address": "Osoite",
   "address_placeholder": "Palvelimen osoite",
   "bandwidth_placeholder": "Syötä kaistanleveys, jätä tyhjäksi BBR:lle",
   "basic": "Perusasetukset",
   "cancel": "Peruuta",
+  "cert_dns_env": "DNS-ympäristömuuttujat",
+  "cert_dns_provider": "DNS-toimittaja",
+  "cert_mode": "Sertifikaattitila",
   "cipher": "Salausalgoritmi",
   "city": "Kaupunki",
-  "config": {
-    "actions": {
-      "cancel": "Peruuta",
-      "save": "Tallenna"
-    },
-    "communicationKey": "Viestintäavain",
-    "communicationKeyDescription": "Käytetään solmun todennukseen.",
-    "description": "Hallitse solmun viestintäavaimia, vetovälejä ja dynaamisia kertoimia.",
-    "dynamicMultiplier": "Dynaaminen kerroin",
-    "dynamicMultiplierDescription": "Määritä aikaväli ja kertoimet liikenteen laskentaa varten.",
-    "endTime": "Lopetusaika",
-    "inputPlaceholder": "Ole hyvä ja syötä",
-    "multiplier": "Kerroin",
-    "nodePullInterval": "Solmun vetoväli",
-    "nodePullIntervalDescription": "Kuinka usein solmu vetää konfiguraation (sekunteina).",
-    "nodePushInterval": "Solmun työntöväli",
-    "nodePushIntervalDescription": "Kuinka usein solmu työntää tilastoja (sekunteina).",
-    "reset": "Nollaa",
-    "save": "Tallenna",
-    "saveSuccess": "Tallennus onnistui",
-    "startTime": "Aloitusaika",
-    "timeSlot": "Aikaväli",
-    "title": "Solmun konfigurointi"
-  },
   "confirm": "Vahvista",
   "confirmDeleteDesc": "Tätä toimintoa ei voi peruuttaa.",
   "confirmDeleteTitle": "Poista tämä palvelin?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hex-merkkijono (enintään 16 merkkiä)",
   "security_sni": "SNI",
   "select_encryption_method": "Valitse salausmenetelmä",
+  "server_config": {
+    "description": "Hallitse solmun viestintäavaimia, vetämis-/työntövälejä.",
+    "dynamic_multiplier": "Dynaaminen kerroin",
+    "dynamic_multiplier_desc": "Määritä aikavälit ja kertoimet liikenteen laskentaa varten.",
+    "fields": {
+      "block_rules_placeholder": "Yksi domain-sääntö per rivi, tukee:\nkeyword:google (avainsanan vastaavuus)\nsuffix:google.com (päätteiden vastaavuus)\nregex:.*\\.example\\.com$ (regex-vastaavuus)\nexample.com (täsmällinen vastaavuus)",
+      "communication_key": "Viestintäavain",
+      "communication_key_desc": "Käytetään solmun todennukseen.",
+      "communication_key_placeholder": "Ole hyvä ja syötä",
+      "dns_config": "DNS-asetukset",
+      "dns_domains_placeholder": "Yksi domain-sääntö per rivi, tukee:\nkeyword:google (avainsanan vastaavuus)\nsuffix:google.com (päätteiden vastaavuus)\nregex:.*\\.example\\.com$ (regex-vastaavuus)\nexample.com (täsmällinen vastaavuus)",
+      "dns_proto_placeholder": "Valitse tyyppi",
+      "end_time": "Lopetusaika",
+      "ip_strategy": "IP-strategia",
+      "ip_strategy_desc": "Valitse IP-version mieltymys verkkoyhteyksille",
+      "ip_strategy_ipv4": "Suosi IPv4:ää",
+      "ip_strategy_ipv6": "Suosi IPv6:ta",
+      "ip_strategy_placeholder": "Valitse IP-strategia",
+      "multiplier": "Kerroin",
+      "node_pull_interval": "Solmun vetoväli",
+      "node_pull_interval_desc": "Kuinka usein solmu vetää konfiguraation (sekunteina).",
+      "node_push_interval": "Solmun työntöväli",
+      "node_push_interval_desc": "Kuinka usein solmu työntää tilastoja (sekunteina).",
+      "outbound_address_placeholder": "Palvelimen osoite",
+      "outbound_name_placeholder": "Konfiguraation nimi",
+      "outbound_password_placeholder": "Salasana (valinnainen)",
+      "outbound_port_placeholder": "Porttinumero",
+      "outbound_protocol_placeholder": "Valitse protokolla",
+      "outbound_rules_placeholder": "Yksi sääntö per rivi, tukee:\nkeyword:google (avainsanan vastaavuus)\nsuffix:google.com (päätteiden vastaavuus)\nregex:.*\\.example\\.com$ (regex-vastaavuus)\nexample.com (täsmällinen vastaavuus)\nJätä tyhjäksi oletusreititykselle",
+      "reset": "Nollaa",
+      "save": "Tallenna",
+      "start_time": "Aloitusaika",
+      "time_slot": "Aikaväli",
+      "traffic_report_threshold": "Liikennetiedotuksen kynnysarvo",
+      "traffic_report_threshold_desc": "Aseta liikennetiedotuksen vähimmäiskynnys. Liikennettä raportoidaan vain, kun se ylittää tämän arvon. Aseta 0 tai jätä tyhjäksi, jotta kaikki liikenne raportoidaan."
+    },
+    "saveSuccess": "Tallennus onnistui",
+    "tabs": {
+      "basic": "Perusasetukset",
+      "block": "Estosäännöt",
+      "dns": "DNS-asetukset",
+      "outbound": "Ulkosäännöt"
+    },
+    "title": "Solmun konfiguraatio"
+  },
   "server_key": "Palvelimen avain",
   "service_name": "Palvelun nimi",
   "sorted_success": "Lajiteltu onnistuneesti",
diff --git a/apps/admin/locales/fr-FR/servers.json b/apps/admin/locales/fr-FR/servers.json
index e7a2bde..da37b98 100644
--- a/apps/admin/locales/fr-FR/servers.json
+++ b/apps/admin/locales/fr-FR/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Annuler",
+    "save": "Enregistrer"
+  },
   "address": "Adresse",
   "address_placeholder": "Adresse du serveur",
   "bandwidth_placeholder": "Entrez la bande passante, laissez vide pour BBR",
   "basic": "Configuration de base",
   "cancel": "Annuler",
+  "cert_dns_env": "Variables d'environnement DNS",
+  "cert_dns_provider": "Fournisseur DNS",
+  "cert_mode": "Mode de certificat",
   "cipher": "Algorithme de chiffrement",
   "city": "Ville",
-  "config": {
-    "actions": {
-      "cancel": "Annuler",
-      "save": "Enregistrer"
-    },
-    "communicationKey": "Clé de communication",
-    "communicationKeyDescription": "Utilisé pour l'authentification du nœud.",
-    "description": "Gérer les clés de communication du nœud, les intervalles de tirage/poussée et les multiplicateurs dynamiques.",
-    "dynamicMultiplier": "Multiplicateur dynamique",
-    "dynamicMultiplierDescription": "Définir des créneaux horaires et des multiplicateurs pour ajuster le comptage du trafic.",
-    "endTime": "Heure de fin",
-    "inputPlaceholder": "Veuillez entrer",
-    "multiplier": "Multiplicateur",
-    "nodePullInterval": "Intervalle de tirage du nœud",
-    "nodePullIntervalDescription": "À quelle fréquence le nœud tire la configuration (secondes).",
-    "nodePushInterval": "Intervalle de poussée du nœud",
-    "nodePushIntervalDescription": "À quelle fréquence le nœud pousse les statistiques (secondes).",
-    "reset": "Réinitialiser",
-    "save": "Enregistrer",
-    "saveSuccess": "Enregistré avec succès",
-    "startTime": "Heure de début",
-    "timeSlot": "Créneau horaire",
-    "title": "Configuration du nœud"
-  },
   "confirm": "Confirmer",
   "confirmDeleteDesc": "Cette action ne peut pas être annulée.",
   "confirmDeleteTitle": "Supprimer ce serveur ?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Chaîne hexadécimale (jusqu'à 16 caractères)",
   "security_sni": "SNI",
   "select_encryption_method": "Sélectionner la méthode de chiffrement",
+  "server_config": {
+    "description": "Gérer les clés de communication du nœud, les intervalles de pull/push.",
+    "dynamic_multiplier": "Multiplicateur dynamique",
+    "dynamic_multiplier_desc": "Définir des créneaux horaires et des multiplicateurs pour ajuster le comptage du trafic.",
+    "fields": {
+      "block_rules_placeholder": "Une règle de domaine par ligne, prend en charge :\nkeyword:google (correspondance par mot-clé)\nsuffix:google.com (correspondance par suffixe)\nregex:.*\\.example\\.com$ (correspondance regex)\nexample.com (correspondance exacte)",
+      "communication_key": "Clé de communication",
+      "communication_key_desc": "Utilisé pour l'authentification du nœud.",
+      "communication_key_placeholder": "Veuillez entrer",
+      "dns_config": "Configuration DNS",
+      "dns_domains_placeholder": "Une règle de domaine par ligne, prend en charge :\nkeyword:google (correspondance par mot-clé)\nsuffix:google.com (correspondance par suffixe)\nregex:.*\\.example\\.com$ (correspondance regex)\nexample.com (correspondance exacte)",
+      "dns_proto_placeholder": "Sélectionnez le type",
+      "end_time": "Heure de fin",
+      "ip_strategy": "Stratégie IP",
+      "ip_strategy_desc": "Choisissez la préférence de version IP pour les connexions réseau",
+      "ip_strategy_ipv4": "Préférer IPv4",
+      "ip_strategy_ipv6": "Préférer IPv6",
+      "ip_strategy_placeholder": "Sélectionnez la stratégie IP",
+      "multiplier": "Multiplicateur",
+      "node_pull_interval": "Intervalle de pull du nœud",
+      "node_pull_interval_desc": "À quelle fréquence le nœud récupère la configuration (secondes).",
+      "node_push_interval": "Intervalle de push du nœud",
+      "node_push_interval_desc": "À quelle fréquence le nœud envoie des statistiques (secondes).",
+      "outbound_address_placeholder": "Adresse du serveur",
+      "outbound_name_placeholder": "Nom de la configuration",
+      "outbound_password_placeholder": "Mot de passe (optionnel)",
+      "outbound_port_placeholder": "Numéro de port",
+      "outbound_protocol_placeholder": "Sélectionnez le protocole",
+      "outbound_rules_placeholder": "Une règle par ligne, prend en charge :\nkeyword:google (correspondance par mot-clé)\nsuffix:google.com (correspondance par suffixe)\nregex:.*\\.example\\.com$ (correspondance regex)\nexample.com (correspondance exacte)\nLaisser vide pour le routage par défaut",
+      "reset": "Réinitialiser",
+      "save": "Enregistrer",
+      "start_time": "Heure de début",
+      "time_slot": "Créneau horaire",
+      "traffic_report_threshold": "Seuil de rapport de trafic",
+      "traffic_report_threshold_desc": "Définir le seuil minimum pour le rapport de trafic. Le trafic ne sera rapporté que s'il dépasse cette valeur. Mettre à 0 ou laisser vide pour rapporter tout le trafic."
+    },
+    "saveSuccess": "Enregistré avec succès",
+    "tabs": {
+      "basic": "Configuration de base",
+      "block": "Règles de blocage",
+      "dns": "Configuration DNS",
+      "outbound": "Règles sortantes"
+    },
+    "title": "Configuration du nœud"
+  },
   "server_key": "Clé du serveur",
   "service_name": "Nom du service",
   "sorted_success": "Trié avec succès",
diff --git a/apps/admin/locales/hi-IN/servers.json b/apps/admin/locales/hi-IN/servers.json
index f3666f8..9a6e0b3 100644
--- a/apps/admin/locales/hi-IN/servers.json
+++ b/apps/admin/locales/hi-IN/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "रद्द करें",
+    "save": "सहेजें"
+  },
   "address": "पता",
   "address_placeholder": "सर्वर का पता",
   "bandwidth_placeholder": "बैंडविड्थ दर्ज करें, BBR के लिए खाली छोड़ें",
   "basic": "बुनियादी कॉन्फ़िगरेशन",
   "cancel": "रद्द करें",
+  "cert_dns_env": "DNS पर्यावरण चर",
+  "cert_dns_provider": "DNS प्रदाता",
+  "cert_mode": "प्रमाणपत्र मोड",
   "cipher": "एन्क्रिप्शन एल्गोरिदम",
   "city": "शहर",
-  "config": {
-    "actions": {
-      "cancel": "रद्द करें",
-      "save": "सहेजें"
-    },
-    "communicationKey": "संचार कुंजी",
-    "communicationKeyDescription": "नोड प्रमाणीकरण के लिए उपयोग किया जाता है।",
-    "description": "नोड संचार कुंजी, पुल/धक्का अंतराल, और गतिशील गुणांक प्रबंधित करें।",
-    "dynamicMultiplier": "गतिशील गुणांक",
-    "dynamicMultiplierDescription": "यातायात लेखांकन को समायोजित करने के लिए समय स्लॉट और गुणांक परिभाषित करें।",
-    "endTime": "समाप्ति का समय",
-    "inputPlaceholder": "कृपया दर्ज करें",
-    "multiplier": "गुणांक",
-    "nodePullInterval": "नोड पुल अंतराल",
-    "nodePullIntervalDescription": "नोड कितनी बार कॉन्फ़िगरेशन खींचता है (सेकंड में)।",
-    "nodePushInterval": "नोड धक्का अंतराल",
-    "nodePushIntervalDescription": "नोड कितनी बार आँकड़े धकेलता है (सेकंड में)।",
-    "reset": "रीसेट करें",
-    "save": "सहेजें",
-    "saveSuccess": "सफलता से सहेजा गया",
-    "startTime": "शुरुआत का समय",
-    "timeSlot": "समय स्लॉट",
-    "title": "नोड कॉन्फ़िगरेशन"
-  },
   "confirm": "पुष्टि करें",
   "confirmDeleteDesc": "यह क्रिया पूर्ववत नहीं की जा सकती।",
   "confirmDeleteTitle": "क्या इस सर्वर को हटाएं?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "हेक्स स्ट्रिंग (16 अक्षरों तक)",
   "security_sni": "SNI",
   "select_encryption_method": "एन्क्रिप्शन विधि चुनें",
+  "server_config": {
+    "description": "नोड संचार कुंजी, खींचने/धकेलने के अंतराल प्रबंधित करें।",
+    "dynamic_multiplier": "गतिशील गुणांक",
+    "dynamic_multiplier_desc": "यातायात लेखांकन को समायोजित करने के लिए समय स्लॉट और गुणांक परिभाषित करें।",
+    "fields": {
+      "block_rules_placeholder": "प्रति पंक्ति एक डोमेन नियम, समर्थन:\nकीवर्ड:google (कीवर्ड मिलान)\nsuffix:google.com (सफिक्स मिलान)\nregex:.*\\.example\\.com$ (regex मिलान)\nexample.com (सटीक मिलान)",
+      "communication_key": "संचार कुंजी",
+      "communication_key_desc": "नोड प्रमाणीकरण के लिए उपयोग किया जाता है।",
+      "communication_key_placeholder": "कृपया दर्ज करें",
+      "dns_config": "DNS कॉन्फ़िगरेशन",
+      "dns_domains_placeholder": "प्रति पंक्ति एक डोमेन नियम, समर्थन:\nकीवर्ड:google (कीवर्ड मिलान)\nsuffix:google.com (सफिक्स मिलान)\nregex:.*\\.example\\.com$ (regex मिलान)\nexample.com (सटीक मिलान)",
+      "dns_proto_placeholder": "प्रकार चुनें",
+      "end_time": "समाप्ति का समय",
+      "ip_strategy": "IP रणनीति",
+      "ip_strategy_desc": "नेटवर्क कनेक्शनों के लिए IP संस्करण प्राथमिकता चुनें",
+      "ip_strategy_ipv4": "IPv4 को प्राथमिकता दें",
+      "ip_strategy_ipv6": "IPv6 को प्राथमिकता दें",
+      "ip_strategy_placeholder": "IP रणनीति चुनें",
+      "multiplier": "गुणांक",
+      "node_pull_interval": "नोड खींचने का अंतराल",
+      "node_pull_interval_desc": "नोड कितनी बार कॉन्फ़िगरेशन खींचता है (सेकंड में)।",
+      "node_push_interval": "नोड धकेलने का अंतराल",
+      "node_push_interval_desc": "नोड कितनी बार आँकड़े धकेलता है (सेकंड में)।",
+      "outbound_address_placeholder": "सर्वर पता",
+      "outbound_name_placeholder": "कॉन्फ़िगरेशन नाम",
+      "outbound_password_placeholder": "पासवर्ड (वैकल्पिक)",
+      "outbound_port_placeholder": "पोर्ट संख्या",
+      "outbound_protocol_placeholder": "प्रोटोकॉल चुनें",
+      "outbound_rules_placeholder": "प्रति पंक्ति एक नियम, समर्थन:\nकीवर्ड:google (कीवर्ड मिलान)\nsuffix:google.com (सफिक्स मिलान)\nregex:.*\\.example\\.com$ (regex मिलान)\nexample.com (सटीक मिलान)\nडिफ़ॉल्ट रूटिंग के लिए खाली छोड़ें",
+      "reset": "रीसेट करें",
+      "save": "सहेजें",
+      "start_time": "शुरुआत का समय",
+      "time_slot": "समय स्लॉट",
+      "traffic_report_threshold": "यातायात रिपोर्ट थ्रेशोल्ड",
+      "traffic_report_threshold_desc": "यातायात रिपोर्टिंग के लिए न्यूनतम थ्रेशोल्ड सेट करें। जब यातायात इस मान को पार करेगा तभी रिपोर्ट किया जाएगा। सभी यातायात रिपोर्ट करने के लिए 0 पर सेट करें या खाली छोड़ें।"
+    },
+    "saveSuccess": "सफलता से सहेजा गया",
+    "tabs": {
+      "basic": "बुनियादी कॉन्फ़िगरेशन",
+      "block": "ब्लॉक नियम",
+      "dns": "DNS कॉन्फ़िगरेशन",
+      "outbound": "आउटबाउंड नियम"
+    },
+    "title": "नोड कॉन्फ़िगरेशन"
+  },
   "server_key": "सर्वर कुंजी",
   "service_name": "सेवा का नाम",
   "sorted_success": "सफलता से क्रमबद्ध किया गया",
diff --git a/apps/admin/locales/hu-HU/servers.json b/apps/admin/locales/hu-HU/servers.json
index 130e313..b6b3679 100644
--- a/apps/admin/locales/hu-HU/servers.json
+++ b/apps/admin/locales/hu-HU/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Mégse",
+    "save": "Mentés"
+  },
   "address": "Cím",
   "address_placeholder": "Szerver cím",
   "bandwidth_placeholder": "Adja meg a sávszélességet, hagyja üresen a BBR-hez",
   "basic": "Alapértelmezett Beállítások",
   "cancel": "Mégse",
+  "cert_dns_env": "DNS Környezeti Változók",
+  "cert_dns_provider": "DNS Szolgáltató",
+  "cert_mode": "Tanúsítvány Mód",
   "cipher": "Titkosítási algoritmus",
   "city": "Város",
-  "config": {
-    "actions": {
-      "cancel": "Mégse",
-      "save": "Mentés"
-    },
-    "communicationKey": "Kommunikációs kulcs",
-    "communicationKeyDescription": "A node hitelesítéséhez használatos.",
-    "description": "A node kommunikációs kulcsainak, pull/push időközeinek és dinamikus szorzóinak kezelése.",
-    "dynamicMultiplier": "Dinamikus szorzó",
-    "dynamicMultiplierDescription": "Időszakok és szorzók meghatározása a forgalom elszámolásának módosításához.",
-    "endTime": "Befejezési idő",
-    "inputPlaceholder": "Kérjük, adja meg",
-    "multiplier": "Szorzó",
-    "nodePullInterval": "Node pull időköz",
-    "nodePullIntervalDescription": "Milyen gyakran húzza a node a konfigurációt (másodperc).",
-    "nodePushInterval": "Node push időköz",
-    "nodePushIntervalDescription": "Milyen gyakran tolja a node a statisztikákat (másodperc).",
-    "reset": "Visszaállítás",
-    "save": "Mentés",
-    "saveSuccess": "Sikeresen mentve",
-    "startTime": "Kezdési idő",
-    "timeSlot": "Időszak",
-    "title": "Node konfiguráció"
-  },
   "confirm": "Megerősítés",
   "confirmDeleteDesc": "Ez a művelet nem vonható vissza.",
   "confirmDeleteTitle": "Törölni szeretné ezt a szervert?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hexadecimális karakterlánc (legfeljebb 16 karakter)",
   "security_sni": "SNI",
   "select_encryption_method": "Válassza ki a titkosítási módszert",
+  "server_config": {
+    "description": "Node kommunikációs kulcsok kezelése, pull/push időközök.",
+    "dynamic_multiplier": "Dinamikus szorzó",
+    "dynamic_multiplier_desc": "Időszakok és szorzók meghatározása a forgalom elszámolásának módosításához.",
+    "fields": {
+      "block_rules_placeholder": "Egy domain szabály soronként, támogatja:\nkeyword:google (kulcsszó egyezés)\nsuffix:google.com (végződés egyezés)\nregex:.*\\.example\\.com$ (regex egyezés)\nexample.com (pontos egyezés)",
+      "communication_key": "Kommunikációs kulcs",
+      "communication_key_desc": "A node hitelesítéséhez használatos.",
+      "communication_key_placeholder": "Kérjük, adja meg",
+      "dns_config": "DNS Beállítások",
+      "dns_domains_placeholder": "Egy domain szabály soronként, támogatja:\nkeyword:google (kulcsszó egyezés)\nsuffix:google.com (végződés egyezés)\nregex:.*\\.example\\.com$ (regex egyezés)\nexample.com (pontos egyezés)",
+      "dns_proto_placeholder": "Válassza ki a típust",
+      "end_time": "Befejezési idő",
+      "ip_strategy": "IP Stratégia",
+      "ip_strategy_desc": "Válassza ki az IP verzió preferenciát a hálózati kapcsolatokhoz",
+      "ip_strategy_ipv4": "IPv4 előnyben",
+      "ip_strategy_ipv6": "IPv6 előnyben",
+      "ip_strategy_placeholder": "Válassza ki az IP stratégiát",
+      "multiplier": "Szorzó",
+      "node_pull_interval": "Node lehúzási időköz",
+      "node_pull_interval_desc": "Milyen gyakran húzza le a node a konfigurációt (másodperc).",
+      "node_push_interval": "Node feltöltési időköz",
+      "node_push_interval_desc": "Milyen gyakran tölti fel a node a statisztikákat (másodperc).",
+      "outbound_address_placeholder": "Szerver címe",
+      "outbound_name_placeholder": "Konfiguráció neve",
+      "outbound_password_placeholder": "Jelszó (opcionális)",
+      "outbound_port_placeholder": "Port szám",
+      "outbound_protocol_placeholder": "Válassza ki a protokollt",
+      "outbound_rules_placeholder": "Egy szabály soronként, támogatja:\nkeyword:google (kulcsszó egyezés)\nsuffix:google.com (végződés egyezés)\nregex:.*\\.example\\.com$ (regex egyezés)\nexample.com (pontos egyezés)\nHagyja üresen az alapértelmezett útvonalhoz",
+      "reset": "Visszaállítás",
+      "save": "Mentés",
+      "start_time": "Kezdési idő",
+      "time_slot": "Időszak",
+      "traffic_report_threshold": "Forgalom Jelentési Küszöb",
+      "traffic_report_threshold_desc": "Állítsa be a forgalom jelentésének minimális küszöbét. A forgalmat csak akkor jelentjük, ha meghaladja ezt az értéket. Állítsa 0-ra vagy hagyja üresen, hogy minden forgalmat jelenteni tudjon."
+    },
+    "saveSuccess": "Sikeresen mentve",
+    "tabs": {
+      "basic": "Alapértelmezett Beállítások",
+      "block": "Blokkolási Szabályok",
+      "dns": "DNS Beállítások",
+      "outbound": "Kimenő Szabályok"
+    },
+    "title": "Node konfiguráció"
+  },
   "server_key": "Szerver kulcs",
   "service_name": "Szolgáltatás neve",
   "sorted_success": "Sikeresen rendezve",
diff --git a/apps/admin/locales/ja-JP/servers.json b/apps/admin/locales/ja-JP/servers.json
index 420575e..bab660c 100644
--- a/apps/admin/locales/ja-JP/servers.json
+++ b/apps/admin/locales/ja-JP/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "キャンセル",
+    "save": "保存"
+  },
   "address": "アドレス",
   "address_placeholder": "サーバーアドレス",
   "bandwidth_placeholder": "帯域幅を入力してください。BBRの場合は空白のままにしてください。",
   "basic": "基本設定",
   "cancel": "キャンセル",
+  "cert_dns_env": "DNS環境変数",
+  "cert_dns_provider": "DNSプロバイダー",
+  "cert_mode": "証明書モード",
   "cipher": "暗号化アルゴリズム",
   "city": "都市",
-  "config": {
-    "actions": {
-      "cancel": "キャンセル",
-      "save": "保存"
-    },
-    "communicationKey": "通信キー",
-    "communicationKeyDescription": "ノード認証に使用されます。",
-    "description": "ノードの通信キー、プル/プッシュ間隔、動的倍率を管理します。",
-    "dynamicMultiplier": "動的倍率",
-    "dynamicMultiplierDescription": "トラフィック計算を調整するための時間スロットと倍率を定義します。",
-    "endTime": "終了時間",
-    "inputPlaceholder": "入力してください",
-    "multiplier": "倍率",
-    "nodePullInterval": "ノードプル間隔",
-    "nodePullIntervalDescription": "ノードが設定をプルする頻度（秒）。",
-    "nodePushInterval": "ノードプッシュ間隔",
-    "nodePushIntervalDescription": "ノードが統計をプッシュする頻度（秒）。",
-    "reset": "リセット",
-    "save": "保存",
-    "saveSuccess": "保存に成功しました",
-    "startTime": "開始時間",
-    "timeSlot": "時間スロット",
-    "title": "ノード設定"
-  },
   "confirm": "確認",
   "confirmDeleteDesc": "この操作は元に戻せません。",
   "confirmDeleteTitle": "このサーバーを削除しますか？",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "16文字以内の16進数文字列",
   "security_sni": "SNI",
   "select_encryption_method": "暗号化方式を選択",
+  "server_config": {
+    "description": "ノード通信キー、プル/プッシュ間隔を管理します。",
+    "dynamic_multiplier": "動的乗数",
+    "dynamic_multiplier_desc": "トラフィック計算を調整するための時間スロットと乗数を定義します。",
+    "fields": {
+      "block_rules_placeholder": "1行に1つのドメインルール、サポート:\nkeyword:google（キーワードマッチング）\nsuffix:google.com（サフィックスマッチング）\nregex:.*\\.example\\.com$（正規表現マッチング）\nexample.com（完全一致）",
+      "communication_key": "通信キー",
+      "communication_key_desc": "ノード認証に使用されます。",
+      "communication_key_placeholder": "入力してください",
+      "dns_config": "DNS設定",
+      "dns_domains_placeholder": "1行に1つのドメインルール、サポート:\nkeyword:google（キーワードマッチング）\nsuffix:google.com（サフィックスマッチング）\nregex:.*\\.example\\.com$（正規表現マッチング）\nexample.com（完全一致）",
+      "dns_proto_placeholder": "タイプを選択",
+      "end_time": "終了時間",
+      "ip_strategy": "IP戦略",
+      "ip_strategy_desc": "ネットワーク接続のためのIPバージョンの優先度を選択します。",
+      "ip_strategy_ipv4": "IPv4を優先",
+      "ip_strategy_ipv6": "IPv6を優先",
+      "ip_strategy_placeholder": "IP戦略を選択",
+      "multiplier": "乗数",
+      "node_pull_interval": "ノードプル間隔",
+      "node_pull_interval_desc": "ノードが設定をプルする頻度（秒）。",
+      "node_push_interval": "ノードプッシュ間隔",
+      "node_push_interval_desc": "ノードが統計をプッシュする頻度（秒）。",
+      "outbound_address_placeholder": "サーバーアドレス",
+      "outbound_name_placeholder": "設定名",
+      "outbound_password_placeholder": "パスワード（オプション）",
+      "outbound_port_placeholder": "ポート番号",
+      "outbound_protocol_placeholder": "プロトコルを選択",
+      "outbound_rules_placeholder": "1行に1つのルール、サポート:\nkeyword:google（キーワードマッチング）\nsuffix:google.com（サフィックスマッチング）\nregex:.*\\.example\\.com$（正規表現マッチング）\nexample.com（完全一致）\nデフォルトルーティングには空白のままにしてください",
+      "reset": "リセット",
+      "save": "保存",
+      "start_time": "開始時間",
+      "time_slot": "時間スロット",
+      "traffic_report_threshold": "トラフィックレポートの閾値",
+      "traffic_report_threshold_desc": "トラフィック報告の最小閾値を設定します。この値を超えた場合のみトラフィックが報告されます。すべてのトラフィックを報告するには0に設定するか、空白のままにしてください。"
+    },
+    "saveSuccess": "正常に保存されました",
+    "tabs": {
+      "basic": "基本設定",
+      "block": "ブロックルール",
+      "dns": "DNS設定",
+      "outbound": "アウトバウンドルール"
+    },
+    "title": "ノード設定"
+  },
   "server_key": "サーバーキー",
   "service_name": "サービス名",
   "sorted_success": "正常にソートされました",
diff --git a/apps/admin/locales/ko-KR/servers.json b/apps/admin/locales/ko-KR/servers.json
index 55ee217..e0dc946 100644
--- a/apps/admin/locales/ko-KR/servers.json
+++ b/apps/admin/locales/ko-KR/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "취소",
+    "save": "저장"
+  },
   "address": "주소",
   "address_placeholder": "서버 주소",
   "bandwidth_placeholder": "대역폭을 입력하세요. BBR을 사용하려면 비워 두세요.",
   "basic": "기본 설정",
   "cancel": "취소",
+  "cert_dns_env": "DNS 환경 변수",
+  "cert_dns_provider": "DNS 제공자",
+  "cert_mode": "인증서 모드",
   "cipher": "암호화 알고리즘",
   "city": "도시",
-  "config": {
-    "actions": {
-      "cancel": "취소",
-      "save": "저장"
-    },
-    "communicationKey": "통신 키",
-    "communicationKeyDescription": "노드 인증에 사용됩니다.",
-    "description": "노드 통신 키, 풀/푸시 간격 및 동적 배수를 관리합니다.",
-    "dynamicMultiplier": "동적 배수",
-    "dynamicMultiplierDescription": "트래픽 회계를 조정하기 위한 시간 슬롯 및 배수를 정의합니다.",
-    "endTime": "종료 시간",
-    "inputPlaceholder": "입력해 주세요",
-    "multiplier": "배수",
-    "nodePullInterval": "노드 풀 간격",
-    "nodePullIntervalDescription": "노드가 구성을 가져오는 빈도(초 단위).",
-    "nodePushInterval": "노드 푸시 간격",
-    "nodePushIntervalDescription": "노드가 통계를 푸시하는 빈도(초 단위).",
-    "reset": "초기화",
-    "save": "저장",
-    "saveSuccess": "저장 성공",
-    "startTime": "시작 시간",
-    "timeSlot": "시간 슬롯",
-    "title": "노드 구성"
-  },
   "confirm": "확인",
   "confirmDeleteDesc": "이 작업은 실행 취소할 수 없습니다.",
   "confirmDeleteTitle": "이 서버를 삭제하시겠습니까?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "16자 이내의 헥스 문자열",
   "security_sni": "SNI",
   "select_encryption_method": "암호화 방법 선택",
+  "server_config": {
+    "description": "노드 통신 키, 풀/푸시 간격 관리.",
+    "dynamic_multiplier": "동적 배수",
+    "dynamic_multiplier_desc": "트래픽 회계를 조정하기 위한 시간 슬롯과 배수를 정의합니다.",
+    "fields": {
+      "block_rules_placeholder": "한 줄에 하나의 도메인 규칙, 지원:\nkeyword:google (키워드 일치)\nsuffix:google.com (접미사 일치)\nregex:.*\\.example\\.com$ (정규 표현식 일치)\nexample.com (정확한 일치)",
+      "communication_key": "통신 키",
+      "communication_key_desc": "노드 인증에 사용됩니다.",
+      "communication_key_placeholder": "입력해 주세요",
+      "dns_config": "DNS 구성",
+      "dns_domains_placeholder": "한 줄에 하나의 도메인 규칙, 지원:\nkeyword:google (키워드 일치)\nsuffix:google.com (접미사 일치)\nregex:.*\\.example\\.com$ (정규 표현식 일치)\nexample.com (정확한 일치)",
+      "dns_proto_placeholder": "유형 선택",
+      "end_time": "종료 시간",
+      "ip_strategy": "IP 전략",
+      "ip_strategy_desc": "네트워크 연결을 위한 IP 버전 선호도를 선택합니다.",
+      "ip_strategy_ipv4": "IPv4 우선",
+      "ip_strategy_ipv6": "IPv6 우선",
+      "ip_strategy_placeholder": "IP 전략 선택",
+      "multiplier": "배수",
+      "node_pull_interval": "노드 풀 간격",
+      "node_pull_interval_desc": "노드가 구성을 가져오는 빈도(초).",
+      "node_push_interval": "노드 푸시 간격",
+      "node_push_interval_desc": "노드가 통계를 푸시하는 빈도(초).",
+      "outbound_address_placeholder": "서버 주소",
+      "outbound_name_placeholder": "구성 이름",
+      "outbound_password_placeholder": "비밀번호 (선택 사항)",
+      "outbound_port_placeholder": "포트 번호",
+      "outbound_protocol_placeholder": "프로토콜 선택",
+      "outbound_rules_placeholder": "한 줄에 하나의 규칙, 지원:\nkeyword:google (키워드 일치)\nsuffix:google.com (접미사 일치)\nregex:.*\\.example\\.com$ (정규 표현식 일치)\nexample.com (정확한 일치)\n기본 라우팅을 위해 비워두기",
+      "reset": "초기화",
+      "save": "저장",
+      "start_time": "시작 시간",
+      "time_slot": "시간 슬롯",
+      "traffic_report_threshold": "트래픽 보고 임계값",
+      "traffic_report_threshold_desc": "트래픽 보고를 위한 최소 임계값을 설정합니다. 이 값을 초과할 때만 트래픽이 보고됩니다. 0으로 설정하거나 비워두면 모든 트래픽이 보고됩니다."
+    },
+    "saveSuccess": "성공적으로 저장되었습니다.",
+    "tabs": {
+      "basic": "기본 구성",
+      "block": "차단 규칙",
+      "dns": "DNS 구성",
+      "outbound": "아웃바운드 규칙"
+    },
+    "title": "노드 구성"
+  },
   "server_key": "서버 키",
   "service_name": "서비스 이름",
   "sorted_success": "정렬이 완료되었습니다.",
diff --git a/apps/admin/locales/no-NO/servers.json b/apps/admin/locales/no-NO/servers.json
index 107e6db..37f1607 100644
--- a/apps/admin/locales/no-NO/servers.json
+++ b/apps/admin/locales/no-NO/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Avbryt",
+    "save": "Lagre"
+  },
   "address": "Adresse",
   "address_placeholder": "Serveradresse",
   "bandwidth_placeholder": "Skriv inn båndbredde, la stå tomt for BBR",
   "basic": "Grunnleggende Konfigurasjon",
   "cancel": "Avbryt",
+  "cert_dns_env": "DNS-miljøvariabler",
+  "cert_dns_provider": "DNS-leverandør",
+  "cert_mode": "Sertifikatmodus",
   "cipher": "Krypteringsalgoritme",
   "city": "By",
-  "config": {
-    "actions": {
-      "cancel": "Avbryt",
-      "save": "Lagre"
-    },
-    "communicationKey": "Kommunikasjonsnøkkel",
-    "communicationKeyDescription": "Brukes for nodeautentisering.",
-    "description": "Administrer nodekommunikasjonsnøkler, pull/push-intervaller og dynamiske multiplikatorer.",
-    "dynamicMultiplier": "Dynamisk multiplikator",
-    "dynamicMultiplierDescription": "Definer tidsluker og multiplikatorer for å justere trafikkregnskap.",
-    "endTime": "Sluttid",
-    "inputPlaceholder": "Vennligst skriv inn",
-    "multiplier": "Multiplikator",
-    "nodePullInterval": "Node pull-intervall",
-    "nodePullIntervalDescription": "Hvor ofte noden henter konfigurasjon (sekunder).",
-    "nodePushInterval": "Node push-intervall",
-    "nodePushIntervalDescription": "Hvor ofte noden sender statistikk (sekunder).",
-    "reset": "Tilbakestill",
-    "save": "Lagre",
-    "saveSuccess": "Lagring vellykket",
-    "startTime": "Starttid",
-    "timeSlot": "Tidsluke",
-    "title": "Nodekonfigurasjon"
-  },
   "confirm": "Bekreft",
   "confirmDeleteDesc": "Denne handlingen kan ikke angres.",
   "confirmDeleteTitle": "Slette denne serveren?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hex-streng (opptil 16 tegn)",
   "security_sni": "SNI",
   "select_encryption_method": "Velg krypteringsmetode",
+  "server_config": {
+    "description": "Administrer nodekommunikasjonsnøkler, pull/push-intervaller.",
+    "dynamic_multiplier": "Dynamisk multiplikator",
+    "dynamic_multiplier_desc": "Definer tidsluker og multiplikatorer for å justere trafikkregnskap.",
+    "fields": {
+      "block_rules_placeholder": "Én domene regel per linje, støtter:\nkeyword:google (nøkkelordmatching)\nsuffix:google.com (suffixmatching)\nregex:.*\\.example\\.com$ (regexmatching)\nexample.com (nøyaktig matching)",
+      "communication_key": "Kommunikasjonsnøkkel",
+      "communication_key_desc": "Brukes for nodeautentisering.",
+      "communication_key_placeholder": "Vennligst skriv inn",
+      "dns_config": "DNS-konfigurasjon",
+      "dns_domains_placeholder": "Én domene regel per linje, støtter:\nkeyword:google (nøkkelordmatching)\nsuffix:google.com (suffixmatching)\nregex:.*\\.example\\.com$ (regexmatching)\nexample.com (nøyaktig matching)",
+      "dns_proto_placeholder": "Velg type",
+      "end_time": "Sluttid",
+      "ip_strategy": "IP-strategi",
+      "ip_strategy_desc": "Velg IP-versjon preferanse for nettverksforbindelser",
+      "ip_strategy_ipv4": "Foretrekk IPv4",
+      "ip_strategy_ipv6": "Foretrekk IPv6",
+      "ip_strategy_placeholder": "Velg IP-strategi",
+      "multiplier": "Multiplikator",
+      "node_pull_interval": "Node pull-intervall",
+      "node_pull_interval_desc": "Hvor ofte noden henter konfigurasjon (sekunder).",
+      "node_push_interval": "Node push-intervall",
+      "node_push_interval_desc": "Hvor ofte noden sender statistikk (sekunder).",
+      "outbound_address_placeholder": "Serveradresse",
+      "outbound_name_placeholder": "Konfigurasjonsnavn",
+      "outbound_password_placeholder": "Passord (valgfritt)",
+      "outbound_port_placeholder": "Portnummer",
+      "outbound_protocol_placeholder": "Velg protokoll",
+      "outbound_rules_placeholder": "Én regel per linje, støtter:\nkeyword:google (nøkkelordmatching)\nsuffix:google.com (suffixmatching)\nregex:.*\\.example\\.com$ (regexmatching)\nexample.com (nøyaktig matching)\nLa stå tomt for standard ruting",
+      "reset": "Tilbakestill",
+      "save": "Lagre",
+      "start_time": "Starttid",
+      "time_slot": "Tidsluke",
+      "traffic_report_threshold": "Trafikkrapportgrense",
+      "traffic_report_threshold_desc": "Sett minimumsgrensen for trafikkrapportering. Trafikk vil kun bli rapportert når den overstiger denne verdien. Sett til 0 eller la stå tomt for å rapportere all trafikk."
+    },
+    "saveSuccess": "Lagring vellykket",
+    "tabs": {
+      "basic": "Grunnleggende konfigurasjon",
+      "block": "Blokker regler",
+      "dns": "DNS-konfigurasjon",
+      "outbound": "Utgående regler"
+    },
+    "title": "Nodekonfigurasjon"
+  },
   "server_key": "Servernøkkel",
   "service_name": "Tjenestenavn",
   "sorted_success": "Sortert med suksess",
diff --git a/apps/admin/locales/pl-PL/servers.json b/apps/admin/locales/pl-PL/servers.json
index 8ab65af..44f2206 100644
--- a/apps/admin/locales/pl-PL/servers.json
+++ b/apps/admin/locales/pl-PL/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Anuluj",
+    "save": "Zapisz"
+  },
   "address": "Adres",
   "address_placeholder": "Adres serwera",
   "bandwidth_placeholder": "Wprowadź przepustowość, pozostaw puste dla BBR",
   "basic": "Podstawowa konfiguracja",
   "cancel": "Anuluj",
+  "cert_dns_env": "Zmienne środowiskowe DNS",
+  "cert_dns_provider": "Dostawca DNS",
+  "cert_mode": "Tryb certyfikatu",
   "cipher": "Algorytm szyfrowania",
   "city": "Miasto",
-  "config": {
-    "actions": {
-      "cancel": "Anuluj",
-      "save": "Zapisz"
-    },
-    "communicationKey": "Klucz komunikacyjny",
-    "communicationKeyDescription": "Używany do uwierzytelniania węzła.",
-    "description": "Zarządzaj kluczami komunikacyjnymi węzła, interwałami pobierania/wysyłania oraz dynamicznymi mnożnikami.",
-    "dynamicMultiplier": "Dynamiczny mnożnik",
-    "dynamicMultiplierDescription": "Zdefiniuj przedziały czasowe i mnożniki, aby dostosować rozliczanie ruchu.",
-    "endTime": "Czas zakończenia",
-    "inputPlaceholder": "Proszę wpisać",
-    "multiplier": "Mnożnik",
-    "nodePullInterval": "Interwał pobierania węzła",
-    "nodePullIntervalDescription": "Jak często węzeł pobiera konfigurację (sekundy).",
-    "nodePushInterval": "Interwał wysyłania węzła",
-    "nodePushIntervalDescription": "Jak często węzeł wysyła statystyki (sekundy).",
-    "reset": "Resetuj",
-    "save": "Zapisz",
-    "saveSuccess": "Zapisano pomyślnie",
-    "startTime": "Czas rozpoczęcia",
-    "timeSlot": "Przedział czasowy",
-    "title": "Konfiguracja węzła"
-  },
   "confirm": "Potwierdź",
   "confirmDeleteDesc": "Ta akcja nie może być cofnięta.",
   "confirmDeleteTitle": "Usunąć ten serwer?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Ciąg szesnastkowy (do 16 znaków)",
   "security_sni": "SNI",
   "select_encryption_method": "Wybierz metodę szyfrowania",
+  "server_config": {
+    "description": "Zarządzaj kluczami komunikacyjnymi węzła, interwałami pobierania/wysyłania.",
+    "dynamic_multiplier": "Dynamiczny mnożnik",
+    "dynamic_multiplier_desc": "Zdefiniuj przedziały czasowe i mnożniki do dostosowania rozliczania ruchu.",
+    "fields": {
+      "block_rules_placeholder": "Jedna reguła domeny na linię, wspiera:\nkeyword:google (dopasowanie słów kluczowych)\nsuffix:google.com (dopasowanie sufiksu)\nregex:.*\\.example\\.com$ (dopasowanie regex)\nexample.com (dokładne dopasowanie)",
+      "communication_key": "Klucz komunikacyjny",
+      "communication_key_desc": "Używany do uwierzytelniania węzła.",
+      "communication_key_placeholder": "Proszę wpisać",
+      "dns_config": "Konfiguracja DNS",
+      "dns_domains_placeholder": "Jedna reguła domeny na linię, wspiera:\nkeyword:google (dopasowanie słów kluczowych)\nsuffix:google.com (dopasowanie sufiksu)\nregex:.*\\.example\\.com$ (dopasowanie regex)\nexample.com (dokładne dopasowanie)",
+      "dns_proto_placeholder": "Wybierz typ",
+      "end_time": "Czas zakończenia",
+      "ip_strategy": "Strategia IP",
+      "ip_strategy_desc": "Wybierz preferencje wersji IP dla połączeń sieciowych",
+      "ip_strategy_ipv4": "Preferuj IPv4",
+      "ip_strategy_ipv6": "Preferuj IPv6",
+      "ip_strategy_placeholder": "Wybierz strategię IP",
+      "multiplier": "Mnożnik",
+      "node_pull_interval": "Interwał pobierania węzła",
+      "node_pull_interval_desc": "Jak często węzeł pobiera konfigurację (sekundy).",
+      "node_push_interval": "Interwał wysyłania węzła",
+      "node_push_interval_desc": "Jak często węzeł wysyła statystyki (sekundy).",
+      "outbound_address_placeholder": "Adres serwera",
+      "outbound_name_placeholder": "Nazwa konfiguracji",
+      "outbound_password_placeholder": "Hasło (opcjonalnie)",
+      "outbound_port_placeholder": "Numer portu",
+      "outbound_protocol_placeholder": "Wybierz protokół",
+      "outbound_rules_placeholder": "Jedna reguła na linię, wspiera:\nkeyword:google (dopasowanie słów kluczowych)\nsuffix:google.com (dopasowanie sufiksu)\nregex:.*\\.example\\.com$ (dopasowanie regex)\nexample.com (dokładne dopasowanie)\nPozostaw puste dla domyślnego routingu",
+      "reset": "Resetuj",
+      "save": "Zapisz",
+      "start_time": "Czas rozpoczęcia",
+      "time_slot": "Przedział czasowy",
+      "traffic_report_threshold": "Próg raportu ruchu",
+      "traffic_report_threshold_desc": "Ustaw minimalny próg dla raportowania ruchu. Ruch będzie raportowany tylko wtedy, gdy przekroczy tę wartość. Ustaw na 0 lub pozostaw puste, aby raportować cały ruch."
+    },
+    "saveSuccess": "Zapisano pomyślnie",
+    "tabs": {
+      "basic": "Podstawowa konfiguracja",
+      "block": "Reguły blokowania",
+      "dns": "Konfiguracja DNS",
+      "outbound": "Reguły wychodzące"
+    },
+    "title": "Konfiguracja węzła"
+  },
   "server_key": "Klucz serwera",
   "service_name": "Nazwa usługi",
   "sorted_success": "Posortowano pomyślnie",
diff --git a/apps/admin/locales/pt-BR/servers.json b/apps/admin/locales/pt-BR/servers.json
index 8d19002..bb9de8d 100644
--- a/apps/admin/locales/pt-BR/servers.json
+++ b/apps/admin/locales/pt-BR/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Cancelar",
+    "save": "Salvar"
+  },
   "address": "Endereço",
   "address_placeholder": "Endereço do servidor",
   "bandwidth_placeholder": "Insira a largura de banda, deixe em branco para BBR",
   "basic": "Configuração Básica",
   "cancel": "Cancelar",
+  "cert_dns_env": "Variáveis de Ambiente DNS",
+  "cert_dns_provider": "Provedor DNS",
+  "cert_mode": "Modo de Certificado",
   "cipher": "Algoritmo de Criptografia",
   "city": "Cidade",
-  "config": {
-    "actions": {
-      "cancel": "Cancelar",
-      "save": "Salvar"
-    },
-    "communicationKey": "Chave de comunicação",
-    "communicationKeyDescription": "Usado para autenticação do nó.",
-    "description": "Gerenciar chaves de comunicação do nó, intervalos de pull/push e multiplicadores dinâmicos.",
-    "dynamicMultiplier": "Multiplicador dinâmico",
-    "dynamicMultiplierDescription": "Defina intervalos de tempo e multiplicadores para ajustar a contagem de tráfego.",
-    "endTime": "Hora de término",
-    "inputPlaceholder": "Por favor, insira",
-    "multiplier": "Multiplicador",
-    "nodePullInterval": "Intervalo de pull do nó",
-    "nodePullIntervalDescription": "Com que frequência o nó puxa a configuração (segundos).",
-    "nodePushInterval": "Intervalo de push do nó",
-    "nodePushIntervalDescription": "Com que frequência o nó envia estatísticas (segundos).",
-    "reset": "Redefinir",
-    "save": "Salvar",
-    "saveSuccess": "Salvo com sucesso",
-    "startTime": "Hora de início",
-    "timeSlot": "Intervalo de tempo",
-    "title": "Configuração do nó"
-  },
   "confirm": "Confirmar",
   "confirmDeleteDesc": "Esta ação não pode ser desfeita.",
   "confirmDeleteTitle": "Excluir este servidor?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "String hexadecimal (até 16 caracteres)",
   "security_sni": "SNI",
   "select_encryption_method": "Selecionar método de criptografia",
+  "server_config": {
+    "description": "Gerenciar chaves de comunicação do nó, intervalos de pull/push.",
+    "dynamic_multiplier": "Multiplicador Dinâmico",
+    "dynamic_multiplier_desc": "Defina intervalos de tempo e multiplicadores para ajustar a contagem de tráfego.",
+    "fields": {
+      "block_rules_placeholder": "Uma regra de domínio por linha, suporta:\nkeyword:google (correspondência de palavra-chave)\nsuffix:google.com (correspondência de sufixo)\nregex:.*\\.example\\.com$ (correspondência regex)\nexample.com (correspondência exata)",
+      "communication_key": "Chave de Comunicação",
+      "communication_key_desc": "Usado para autenticação do nó.",
+      "communication_key_placeholder": "Por favor, insira",
+      "dns_config": "Configuração DNS",
+      "dns_domains_placeholder": "Uma regra de domínio por linha, suporta:\nkeyword:google (correspondência de palavra-chave)\nsuffix:google.com (correspondência de sufixo)\nregex:.*\\.example\\.com$ (correspondência regex)\nexample.com (correspondência exata)",
+      "dns_proto_placeholder": "Selecione o tipo",
+      "end_time": "Hora de Término",
+      "ip_strategy": "Estratégia de IP",
+      "ip_strategy_desc": "Escolha a preferência de versão de IP para conexões de rede",
+      "ip_strategy_ipv4": "Preferir IPv4",
+      "ip_strategy_ipv6": "Preferir IPv6",
+      "ip_strategy_placeholder": "Selecione a estratégia de IP",
+      "multiplier": "Multiplicador",
+      "node_pull_interval": "Intervalo de Pull do Nó",
+      "node_pull_interval_desc": "Com que frequência o nó puxa a configuração (segundos).",
+      "node_push_interval": "Intervalo de Push do Nó",
+      "node_push_interval_desc": "Com que frequência o nó envia estatísticas (segundos).",
+      "outbound_address_placeholder": "Endereço do servidor",
+      "outbound_name_placeholder": "Nome da configuração",
+      "outbound_password_placeholder": "Senha (opcional)",
+      "outbound_port_placeholder": "Número da porta",
+      "outbound_protocol_placeholder": "Selecione o protocolo",
+      "outbound_rules_placeholder": "Uma regra por linha, suporta:\nkeyword:google (correspondência de palavra-chave)\nsuffix:google.com (correspondência de sufixo)\nregex:.*\\.example\\.com$ (correspondência regex)\nexample.com (correspondência exata)\nDeixe em branco para roteamento padrão",
+      "reset": "Redefinir",
+      "save": "Salvar",
+      "start_time": "Hora de Início",
+      "time_slot": "Intervalo de Tempo",
+      "traffic_report_threshold": "Limite de Relatório de Tráfego",
+      "traffic_report_threshold_desc": "Defina o limite mínimo para o relatório de tráfego. O tráfego só será relatado quando exceder este valor. Defina como 0 ou deixe em branco para relatar todo o tráfego."
+    },
+    "saveSuccess": "Salvo com sucesso",
+    "tabs": {
+      "basic": "Configuração Básica",
+      "block": "Regras de Bloqueio",
+      "dns": "Configuração DNS",
+      "outbound": "Regras de Saída"
+    },
+    "title": "Configuração do Nó"
+  },
   "server_key": "Chave do servidor",
   "service_name": "Nome do serviço",
   "sorted_success": "Ordenado com sucesso",
diff --git a/apps/admin/locales/ro-RO/servers.json b/apps/admin/locales/ro-RO/servers.json
index dc54cf7..7e69bc9 100644
--- a/apps/admin/locales/ro-RO/servers.json
+++ b/apps/admin/locales/ro-RO/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Anulează",
+    "save": "Salvează"
+  },
   "address": "Adresă",
   "address_placeholder": "Adresă server",
   "bandwidth_placeholder": "Introduceți lățimea de bandă, lăsați liber pentru BBR",
   "basic": "Configurare de bază",
   "cancel": "Anulează",
+  "cert_dns_env": "Variabile de mediu DNS",
+  "cert_dns_provider": "Furnizor DNS",
+  "cert_mode": "Mod certificat",
   "cipher": "Algoritm de criptare",
   "city": "Oraș",
-  "config": {
-    "actions": {
-      "cancel": "Anulează",
-      "save": "Salvează"
-    },
-    "communicationKey": "Cheie de comunicare",
-    "communicationKeyDescription": "Utilizată pentru autentificarea nodului.",
-    "description": "Gestionează cheile de comunicare ale nodului, intervalele de pull/push și multiplicatorii dinamici.",
-    "dynamicMultiplier": "Multiplicator dinamic",
-    "dynamicMultiplierDescription": "Definirea intervalelor de timp și a multiplicatorilor pentru ajustarea contabilizării traficului.",
-    "endTime": "Ora de sfârșit",
-    "inputPlaceholder": "Te rog introdu",
-    "multiplier": "Multiplicator",
-    "nodePullInterval": "Interval de pull al nodului",
-    "nodePullIntervalDescription": "Cât de des nodul trage configurația (secunde).",
-    "nodePushInterval": "Interval de push al nodului",
-    "nodePushIntervalDescription": "Cât de des nodul trimite statistici (secunde).",
-    "reset": "Resetare",
-    "save": "Salvează",
-    "saveSuccess": "Salvat cu succes",
-    "startTime": "Ora de început",
-    "timeSlot": "Interval de timp",
-    "title": "Configurarea nodului"
-  },
   "confirm": "Confirmă",
   "confirmDeleteDesc": "Această acțiune nu poate fi anulată.",
   "confirmDeleteTitle": "Șterge acest server?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Șir hexazecimal (până la 16 caractere)",
   "security_sni": "SNI",
   "select_encryption_method": "Selectează metoda de criptare",
+  "server_config": {
+    "description": "Gestionează cheile de comunicare ale nodului, intervalele de pull/push.",
+    "dynamic_multiplier": "Înmulțitor dinamic",
+    "dynamic_multiplier_desc": "Definiți intervalele de timp și înmulțitorii pentru a ajusta contabilizarea traficului.",
+    "fields": {
+      "block_rules_placeholder": "O regulă de domeniu pe linie, suportă:\nkeyword:google (potrivire cu cuvântul cheie)\nsuffix:google.com (potrivire cu sufixul)\nregex:.*\\.example\\.com$ (potrivire regex)\nexample.com (potrivire exactă)",
+      "communication_key": "Cheie de comunicare",
+      "communication_key_desc": "Utilizată pentru autentificarea nodului.",
+      "communication_key_placeholder": "Vă rugăm să introduceți",
+      "dns_config": "Configurare DNS",
+      "dns_domains_placeholder": "O regulă de domeniu pe linie, suportă:\nkeyword:google (potrivire cu cuvântul cheie)\nsuffix:google.com (potrivire cu sufixul)\nregex:.*\\.example\\.com$ (potrivire regex)\nexample.com (potrivire exactă)",
+      "dns_proto_placeholder": "Selectați tipul",
+      "end_time": "Ora de sfârșit",
+      "ip_strategy": "Strategie IP",
+      "ip_strategy_desc": "Alegeți preferința versiunii IP pentru conexiunile de rețea",
+      "ip_strategy_ipv4": "Preferă IPv4",
+      "ip_strategy_ipv6": "Preferă IPv6",
+      "ip_strategy_placeholder": "Selectați strategia IP",
+      "multiplier": "Înmulțitor",
+      "node_pull_interval": "Interval de pull al nodului",
+      "node_pull_interval_desc": "Cât de des nodul trage configurația (secunde).",
+      "node_push_interval": "Interval de push al nodului",
+      "node_push_interval_desc": "Cât de des nodul trimite statistici (secunde).",
+      "outbound_address_placeholder": "Adresa serverului",
+      "outbound_name_placeholder": "Numele configurației",
+      "outbound_password_placeholder": "Parola (opțional)",
+      "outbound_port_placeholder": "Numărul portului",
+      "outbound_protocol_placeholder": "Selectați protocolul",
+      "outbound_rules_placeholder": "O regulă pe linie, suportă:\nkeyword:google (potrivire cu cuvântul cheie)\nsuffix:google.com (potrivire cu sufixul)\nregex:.*\\.example\\.com$ (potrivire regex)\nexample.com (potrivire exactă)\nLăsați gol pentru rutare implicită",
+      "reset": "Resetare",
+      "save": "Salvează",
+      "start_time": "Ora de început",
+      "time_slot": "Interval de timp",
+      "traffic_report_threshold": "Prag raportare trafic",
+      "traffic_report_threshold_desc": "Stabiliți pragul minim pentru raportarea traficului. Traficul va fi raportat doar când depășește această valoare. Setați la 0 sau lăsați gol pentru a raporta tot traficul."
+    },
+    "saveSuccess": "Salvat cu succes",
+    "tabs": {
+      "basic": "Configurare de bază",
+      "block": "Reguli de blocare",
+      "dns": "Configurare DNS",
+      "outbound": "Reguli de ieșire"
+    },
+    "title": "Configurarea nodului"
+  },
   "server_key": "Cheie server",
   "service_name": "Nume serviciu",
   "sorted_success": "Sortat cu succes",
diff --git a/apps/admin/locales/ru-RU/servers.json b/apps/admin/locales/ru-RU/servers.json
index 5ba03ef..cb17b8a 100644
--- a/apps/admin/locales/ru-RU/servers.json
+++ b/apps/admin/locales/ru-RU/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Отмена",
+    "save": "Сохранить"
+  },
   "address": "Адрес",
   "address_placeholder": "Адрес сервера",
   "bandwidth_placeholder": "Введите пропускную способность, оставьте пустым для BBR",
   "basic": "Базовая конфигурация",
   "cancel": "Отмена",
+  "cert_dns_env": "Переменные окружения DNS",
+  "cert_dns_provider": "Поставщик DNS",
+  "cert_mode": "Режим сертификата",
   "cipher": "Алгоритм шифрования",
   "city": "Город",
-  "config": {
-    "actions": {
-      "cancel": "Отмена",
-      "save": "Сохранить"
-    },
-    "communicationKey": "Ключ связи",
-    "communicationKeyDescription": "Используется для аутентификации узла.",
-    "description": "Управление ключами связи узла, интервалами получения/отправки и динамическими множителями.",
-    "dynamicMultiplier": "Динамический множитель",
-    "dynamicMultiplierDescription": "Определите временные слоты и множители для корректировки учета трафика.",
-    "endTime": "Время окончания",
-    "inputPlaceholder": "Пожалуйста, введите",
-    "multiplier": "Множитель",
-    "nodePullInterval": "Интервал получения узлом",
-    "nodePullIntervalDescription": "Как часто узел получает конфигурацию (в секундах).",
-    "nodePushInterval": "Интервал отправки узлом",
-    "nodePushIntervalDescription": "Как часто узел отправляет статистику (в секундах).",
-    "reset": "Сброс",
-    "save": "Сохранить",
-    "saveSuccess": "Успешно сохранено",
-    "startTime": "Время начала",
-    "timeSlot": "Временной слот",
-    "title": "Конфигурация узла"
-  },
   "confirm": "Подтвердить",
   "confirmDeleteDesc": "Это действие нельзя отменить.",
   "confirmDeleteTitle": "Удалить этот сервер?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Шестнадцатеричная строка (до 16 символов)",
   "security_sni": "SNI",
   "select_encryption_method": "Выберите метод шифрования",
+  "server_config": {
+    "description": "Управление ключами связи узла, интервалами получения/отправки.",
+    "dynamic_multiplier": "Динамический множитель",
+    "dynamic_multiplier_desc": "Определите временные слоты и множители для корректировки учета трафика.",
+    "fields": {
+      "block_rules_placeholder": "Одно правило домена на строку, поддерживает:\nkeyword:google (совпадение по ключевому слову)\nsuffix:google.com (совпадение по суффиксу)\nregex:.*\\.example\\.com$ (совпадение по регулярному выражению)\nexample.com (точное совпадение)",
+      "communication_key": "Ключ связи",
+      "communication_key_desc": "Используется для аутентификации узла.",
+      "communication_key_placeholder": "Пожалуйста, введите",
+      "dns_config": "Конфигурация DNS",
+      "dns_domains_placeholder": "Одно правило домена на строку, поддерживает:\nkeyword:google (совпадение по ключевому слову)\nsuffix:google.com (совпадение по суффиксу)\nregex:.*\\.example\\.com$ (совпадение по регулярному выражению)\nexample.com (точное совпадение)",
+      "dns_proto_placeholder": "Выберите тип",
+      "end_time": "Время окончания",
+      "ip_strategy": "Стратегия IP",
+      "ip_strategy_desc": "Выберите предпочтение версии IP для сетевых подключений",
+      "ip_strategy_ipv4": "Предпочитать IPv4",
+      "ip_strategy_ipv6": "Предпочитать IPv6",
+      "ip_strategy_placeholder": "Выберите стратегию IP",
+      "multiplier": "Множитель",
+      "node_pull_interval": "Интервал получения узлом",
+      "node_pull_interval_desc": "Как часто узел получает конфигурацию (в секундах).",
+      "node_push_interval": "Интервал отправки узлом",
+      "node_push_interval_desc": "Как часто узел отправляет статистику (в секундах).",
+      "outbound_address_placeholder": "Адрес сервера",
+      "outbound_name_placeholder": "Имя конфигурации",
+      "outbound_password_placeholder": "Пароль (необязательно)",
+      "outbound_port_placeholder": "Номер порта",
+      "outbound_protocol_placeholder": "Выберите протокол",
+      "outbound_rules_placeholder": "Одно правило на строку, поддерживает:\nkeyword:google (совпадение по ключевому слову)\nsuffix:google.com (совпадение по суффиксу)\nregex:.*\\.example\\.com$ (совпадение по регулярному выражению)\nexample.com (точное совпадение)\nОставьте пустым для маршрутизации по умолчанию",
+      "reset": "Сброс",
+      "save": "Сохранить",
+      "start_time": "Время начала",
+      "time_slot": "Временной слот",
+      "traffic_report_threshold": "Порог отчета о трафике",
+      "traffic_report_threshold_desc": "Установите минимальный порог для отчета о трафике. Трафик будет сообщаться только при превышении этого значения. Установите 0 или оставьте пустым, чтобы сообщать о всем трафике."
+    },
+    "saveSuccess": "Успешно сохранено",
+    "tabs": {
+      "basic": "Основная конфигурация",
+      "block": "Правила блокировки",
+      "dns": "Конфигурация DNS",
+      "outbound": "Исходящие правила"
+    },
+    "title": "Конфигурация узла"
+  },
   "server_key": "Ключ сервера",
   "service_name": "Имя службы",
   "sorted_success": "Успешно отсортировано",
diff --git a/apps/admin/locales/th-TH/servers.json b/apps/admin/locales/th-TH/servers.json
index 97006e5..1ba599f 100644
--- a/apps/admin/locales/th-TH/servers.json
+++ b/apps/admin/locales/th-TH/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "ยกเลิก",
+    "save": "บันทึก"
+  },
   "address": "ที่อยู่",
   "address_placeholder": "ที่อยู่เซิร์ฟเวอร์",
   "bandwidth_placeholder": "กรุณากรอกแบนด์วิธ ทิ้งว่างไว้สำหรับ BBR",
   "basic": "การตั้งค่าพื้นฐาน",
   "cancel": "ยกเลิก",
+  "cert_dns_env": "ตัวแปรสภาพแวดล้อม DNS",
+  "cert_dns_provider": "ผู้ให้บริการ DNS",
+  "cert_mode": "โหมดใบรับรอง",
   "cipher": "อัลกอริธึมการเข้ารหัส",
   "city": "เมือง",
-  "config": {
-    "actions": {
-      "cancel": "ยกเลิก",
-      "save": "บันทึก"
-    },
-    "communicationKey": "คีย์การสื่อสาร",
-    "communicationKeyDescription": "ใช้สำหรับการตรวจสอบสิทธิ์โหนด",
-    "description": "จัดการคีย์การสื่อสารของโหนด, ช่วงเวลาในการดึง/ส่งข้อมูล, และตัวคูณแบบไดนามิก",
-    "dynamicMultiplier": "ตัวคูณแบบไดนามิก",
-    "dynamicMultiplierDescription": "กำหนดช่วงเวลาและตัวคูณเพื่อปรับการคำนวณการจราจร",
-    "endTime": "เวลาสิ้นสุด",
-    "inputPlaceholder": "กรุณาใส่",
-    "multiplier": "ตัวคูณ",
-    "nodePullInterval": "ช่วงเวลาการดึงข้อมูลของโหนด",
-    "nodePullIntervalDescription": "ความถี่ที่โหนดดึงการตั้งค่า (วินาที)",
-    "nodePushInterval": "ช่วงเวลาการส่งข้อมูลของโหนด",
-    "nodePushIntervalDescription": "ความถี่ที่โหนดส่งสถิติ (วินาที)",
-    "reset": "รีเซ็ต",
-    "save": "บันทึก",
-    "saveSuccess": "บันทึกสำเร็จ",
-    "startTime": "เวลาเริ่มต้น",
-    "timeSlot": "ช่วงเวลา",
-    "title": "การตั้งค่าโหนด"
-  },
   "confirm": "ยืนยัน",
   "confirmDeleteDesc": "การกระทำนี้ไม่สามารถย้อนกลับได้",
   "confirmDeleteTitle": "ลบเซิร์ฟเวอร์นี้หรือไม่?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "สตริงฮีซ (สูงสุด 16 ตัวอักษร)",
   "security_sni": "SNI",
   "select_encryption_method": "เลือกวิธีการเข้ารหัส",
+  "server_config": {
+    "description": "จัดการกุญแจการสื่อสารของโหนด, ช่วงเวลาในการดึง/ส่งข้อมูล.",
+    "dynamic_multiplier": "ตัวคูณแบบไดนามิก",
+    "dynamic_multiplier_desc": "กำหนดช่วงเวลาและตัวคูณเพื่อปรับการคำนวณการจราจร.",
+    "fields": {
+      "block_rules_placeholder": "กฎโดเมนหนึ่งกฎต่อหนึ่งบรรทัด, รองรับ:\nkeyword:google (การจับคู่คำสำคัญ)\nsuffix:google.com (การจับคู่ส่วนท้าย)\nregex:.*\\.example\\.com$ (การจับคู่ regex)\nexample.com (การจับคู่ที่แน่นอน)",
+      "communication_key": "กุญแจการสื่อสาร",
+      "communication_key_desc": "ใช้สำหรับการตรวจสอบสิทธิ์ของโหนด.",
+      "communication_key_placeholder": "กรุณาใส่",
+      "dns_config": "การกำหนดค่า DNS",
+      "dns_domains_placeholder": "กฎโดเมนหนึ่งกฎต่อหนึ่งบรรทัด, รองรับ:\nkeyword:google (การจับคู่คำสำคัญ)\nsuffix:google.com (การจับคู่ส่วนท้าย)\nregex:.*\\.example\\.com$ (การจับคู่ regex)\nexample.com (การจับคู่ที่แน่นอน)",
+      "dns_proto_placeholder": "เลือกประเภท",
+      "end_time": "เวลาสิ้นสุด",
+      "ip_strategy": "กลยุทธ์ IP",
+      "ip_strategy_desc": "เลือกความชอบเวอร์ชัน IP สำหรับการเชื่อมต่อเครือข่าย",
+      "ip_strategy_ipv4": "ชอบ IPv4",
+      "ip_strategy_ipv6": "ชอบ IPv6",
+      "ip_strategy_placeholder": "เลือกกลยุทธ์ IP",
+      "multiplier": "ตัวคูณ",
+      "node_pull_interval": "ช่วงเวลาการดึงของโหนด",
+      "node_pull_interval_desc": "ความถี่ที่โหนดดึงการกำหนดค่า (วินาที).",
+      "node_push_interval": "ช่วงเวลาการส่งของโหนด",
+      "node_push_interval_desc": "ความถี่ที่โหนดส่งสถิติ (วินาที).",
+      "outbound_address_placeholder": "ที่อยู่เซิร์ฟเวอร์",
+      "outbound_name_placeholder": "ชื่อการกำหนดค่า",
+      "outbound_password_placeholder": "รหัสผ่าน (ไม่บังคับ)",
+      "outbound_port_placeholder": "หมายเลขพอร์ต",
+      "outbound_protocol_placeholder": "เลือกโปรโตคอล",
+      "outbound_rules_placeholder": "กฎหนึ่งกฎต่อหนึ่งบรรทัด, รองรับ:\nkeyword:google (การจับคู่คำสำคัญ)\nsuffix:google.com (การจับคู่ส่วนท้าย)\nregex:.*\\.example\\.com$ (การจับคู่ regex)\nexample.com (การจับคู่ที่แน่นอน)\nเว้นว่างสำหรับการกำหนดเส้นทางเริ่มต้น",
+      "reset": "รีเซ็ต",
+      "save": "บันทึก",
+      "start_time": "เวลาเริ่มต้น",
+      "time_slot": "ช่วงเวลา",
+      "traffic_report_threshold": "เกณฑ์รายงานการจราจร",
+      "traffic_report_threshold_desc": "ตั้งค่าเกณฑ์ขั้นต่ำสำหรับการรายงานการจราจร. การจราจรจะถูกบันทึกเมื่อเกินค่าที่ตั้งไว้. ตั้งค่าเป็น 0 หรือเว้นว่างเพื่อรายงานการจราจรทั้งหมด."
+    },
+    "saveSuccess": "บันทึกสำเร็จ",
+    "tabs": {
+      "basic": "การกำหนดค่าพื้นฐาน",
+      "block": "กฎการบล็อก",
+      "dns": "การกำหนดค่า DNS",
+      "outbound": "กฎการส่งออก"
+    },
+    "title": "การกำหนดค่าของโหนด"
+  },
   "server_key": "คีย์เซิร์ฟเวอร์",
   "service_name": "ชื่อบริการ",
   "sorted_success": "เรียงลำดับเรียบร้อยแล้ว",
diff --git a/apps/admin/locales/tr-TR/servers.json b/apps/admin/locales/tr-TR/servers.json
index eeaae71..50c9109 100644
--- a/apps/admin/locales/tr-TR/servers.json
+++ b/apps/admin/locales/tr-TR/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "İptal",
+    "save": "Kaydet"
+  },
   "address": "Adres",
   "address_placeholder": "Sunucu adresi",
   "bandwidth_placeholder": "Bant genişliğini girin, BBR için boş bırakın",
   "basic": "Temel Yapılandırma",
   "cancel": "İptal",
+  "cert_dns_env": "DNS Ortam Değişkenleri",
+  "cert_dns_provider": "DNS Sağlayıcısı",
+  "cert_mode": "Sertifika Modu",
   "cipher": "Şifreleme Algoritması",
   "city": "Şehir",
-  "config": {
-    "actions": {
-      "cancel": "İptal",
-      "save": "Kaydet"
-    },
-    "communicationKey": "İletişim anahtarı",
-    "communicationKeyDescription": "Düğüm kimlik doğrulaması için kullanılır.",
-    "description": "Düğüm iletişim anahtarlarını, çekme/itme aralıklarını ve dinamik çarpanları yönetin.",
-    "dynamicMultiplier": "Dinamik çarpan",
-    "dynamicMultiplierDescription": "Trafik hesaplamasını ayarlamak için zaman dilimleri ve çarpanlar tanımlayın.",
-    "endTime": "Bitiş zamanı",
-    "inputPlaceholder": "Lütfen girin",
-    "multiplier": "Çarpan",
-    "nodePullInterval": "Düğüm çekme aralığı",
-    "nodePullIntervalDescription": "Düğümün yapılandırmayı ne sıklıkla çektiği (saniye).",
-    "nodePushInterval": "Düğüm itme aralığı",
-    "nodePushIntervalDescription": "Düğümün istatistikleri ne sıklıkla ittiği (saniye).",
-    "reset": "Sıfırla",
-    "save": "Kaydet",
-    "saveSuccess": "Başarıyla kaydedildi",
-    "startTime": "Başlangıç zamanı",
-    "timeSlot": "Zaman dilimi",
-    "title": "Düğüm yapılandırması"
-  },
   "confirm": "Onayla",
   "confirmDeleteDesc": "Bu işlem geri alınamaz.",
   "confirmDeleteTitle": "Bu sunucuyu silmek istiyor musunuz?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Hex dizesi (en fazla 16 karakter)",
   "security_sni": "SNI",
   "select_encryption_method": "Şifreleme yöntemini seçin",
+  "server_config": {
+    "description": "Düğüm iletişim anahtarlarını, çekme/itme aralıklarını yönetin.",
+    "dynamic_multiplier": "Dinamik çarpan",
+    "dynamic_multiplier_desc": "Trafik hesaplamasını ayarlamak için zaman dilimleri ve çarpanlar tanımlayın.",
+    "fields": {
+      "block_rules_placeholder": "Her satıra bir alan kuralı, destekler:\nkeyword:google (anahtar kelime eşleştirme)\nsuffix:google.com (son ek eşleştirme)\nregex:.*\\.example\\.com$ (regex eşleştirme)\nexample.com (tam eşleşme)",
+      "communication_key": "İletişim anahtarı",
+      "communication_key_desc": "Düğüm kimlik doğrulaması için kullanılır.",
+      "communication_key_placeholder": "Lütfen girin",
+      "dns_config": "DNS Yapılandırması",
+      "dns_domains_placeholder": "Her satıra bir alan kuralı, destekler:\nkeyword:google (anahtar kelime eşleştirme)\nsuffix:google.com (son ek eşleştirme)\nregex:.*\\.example\\.com$ (regex eşleştirme)\nexample.com (tam eşleşme)",
+      "dns_proto_placeholder": "Türü seçin",
+      "end_time": "Bitiş zamanı",
+      "ip_strategy": "IP Stratejisi",
+      "ip_strategy_desc": "Ağ bağlantıları için IP versiyon tercihini seçin",
+      "ip_strategy_ipv4": "IPv4'ü Tercih Et",
+      "ip_strategy_ipv6": "IPv6'yı Tercih Et",
+      "ip_strategy_placeholder": "IP stratejisini seçin",
+      "multiplier": "Çarpan",
+      "node_pull_interval": "Düğüm çekme aralığı",
+      "node_pull_interval_desc": "Düğümün yapılandırmayı ne sıklıkla çektiği (saniye).",
+      "node_push_interval": "Düğüm itme aralığı",
+      "node_push_interval_desc": "Düğümün istatistikleri ne sıklıkla ittiği (saniye).",
+      "outbound_address_placeholder": "Sunucu adresi",
+      "outbound_name_placeholder": "Yapılandırma adı",
+      "outbound_password_placeholder": "Şifre (isteğe bağlı)",
+      "outbound_port_placeholder": "Port numarası",
+      "outbound_protocol_placeholder": "Protokolü seçin",
+      "outbound_rules_placeholder": "Her satıra bir kural, destekler:\nkeyword:google (anahtar kelime eşleştirme)\nsuffix:google.com (son ek eşleştirme)\nregex:.*\\.example\\.com$ (regex eşleştirme)\nexample.com (tam eşleşme)\nVarsayılan yönlendirme için boş bırakın",
+      "reset": "Sıfırla",
+      "save": "Kaydet",
+      "start_time": "Başlangıç zamanı",
+      "time_slot": "Zaman dilimi",
+      "traffic_report_threshold": "Trafik Raporu Eşiği",
+      "traffic_report_threshold_desc": "Trafik raporlaması için minimum eşiği ayarlayın. Trafik yalnızca bu değeri aştığında raporlanacaktır. Tüm trafiği raporlamak için 0 olarak ayarlayın veya boş bırakın."
+    },
+    "saveSuccess": "Başarıyla kaydedildi",
+    "tabs": {
+      "basic": "Temel Yapılandırma",
+      "block": "Engelleme Kuralları",
+      "dns": "DNS Yapılandırması",
+      "outbound": "Giden Kurallar"
+    },
+    "title": "Düğüm yapılandırması"
+  },
   "server_key": "Sunucu anahtarı",
   "service_name": "Hizmet adı",
   "sorted_success": "Başarıyla sıralandı",
diff --git a/apps/admin/locales/uk-UA/servers.json b/apps/admin/locales/uk-UA/servers.json
index 3d6629e..23f6b63 100644
--- a/apps/admin/locales/uk-UA/servers.json
+++ b/apps/admin/locales/uk-UA/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Скасувати",
+    "save": "Зберегти"
+  },
   "address": "Адреса",
   "address_placeholder": "Адреса сервера",
   "bandwidth_placeholder": "Введіть пропускну здатність, залиште порожнім для BBR",
   "basic": "Базова конфігурація",
   "cancel": "Скасувати",
+  "cert_dns_env": "DNS Змінні середовища",
+  "cert_dns_provider": "DNS Провайдер",
+  "cert_mode": "Режим сертифіката",
   "cipher": "Алгоритм шифрування",
   "city": "Місто",
-  "config": {
-    "actions": {
-      "cancel": "Скасувати",
-      "save": "Зберегти"
-    },
-    "communicationKey": "Ключ комунікації",
-    "communicationKeyDescription": "Використовується для аутентифікації вузла.",
-    "description": "Керуйте ключами комунікації вузла, інтервалами витягування/відправлення та динамічними множниками.",
-    "dynamicMultiplier": "Динамічний множник",
-    "dynamicMultiplierDescription": "Визначте часові слоти та множники для коригування обліку трафіку.",
-    "endTime": "Час закінчення",
-    "inputPlaceholder": "Будь ласка, введіть",
-    "multiplier": "Множник",
-    "nodePullInterval": "Інтервал витягування вузла",
-    "nodePullIntervalDescription": "Як часто вузол витягує конфігурацію (секунди).",
-    "nodePushInterval": "Інтервал відправлення вузла",
-    "nodePushIntervalDescription": "Як часто вузол відправляє статистику (секунди).",
-    "reset": "Скинути",
-    "save": "Зберегти",
-    "saveSuccess": "Успішно збережено",
-    "startTime": "Час початку",
-    "timeSlot": "Часовий слот",
-    "title": "Налаштування вузла"
-  },
   "confirm": "Підтвердити",
   "confirmDeleteDesc": "Цю дію не можна скасувати.",
   "confirmDeleteTitle": "Видалити цей сервер?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Шістнадцятковий рядок (до 16 символів)",
   "security_sni": "SNI",
   "select_encryption_method": "Виберіть метод шифрування",
+  "server_config": {
+    "description": "Керування ключами комунікації вузла, інтервалами витягування/надсилання.",
+    "dynamic_multiplier": "Динамічний множник",
+    "dynamic_multiplier_desc": "Визначте часові слоти та множники для коригування обліку трафіку.",
+    "fields": {
+      "block_rules_placeholder": "Одне правило домену на рядок, підтримує:\nkeyword:google (збіг за ключовим словом)\nsuffix:google.com (збіг за суфіксом)\nregex:.*\\.example\\.com$ (збіг за регулярним виразом)\nexample.com (точний збіг)",
+      "communication_key": "Ключ комунікації",
+      "communication_key_desc": "Використовується для аутентифікації вузла.",
+      "communication_key_placeholder": "Будь ласка, введіть",
+      "dns_config": "Конфігурація DNS",
+      "dns_domains_placeholder": "Одне правило домену на рядок, підтримує:\nkeyword:google (збіг за ключовим словом)\nsuffix:google.com (збіг за суфіксом)\nregex:.*\\.example\\.com$ (збіг за регулярним виразом)\nexample.com (точний збіг)",
+      "dns_proto_placeholder": "Виберіть тип",
+      "end_time": "Час закінчення",
+      "ip_strategy": "Стратегія IP",
+      "ip_strategy_desc": "Виберіть перевагу версії IP для мережевих з'єднань",
+      "ip_strategy_ipv4": "Віддавати перевагу IPv4",
+      "ip_strategy_ipv6": "Віддавати перевагу IPv6",
+      "ip_strategy_placeholder": "Виберіть стратегію IP",
+      "multiplier": "Множник",
+      "node_pull_interval": "Інтервал витягування вузла",
+      "node_pull_interval_desc": "Як часто вузол витягує конфігурацію (в секундах).",
+      "node_push_interval": "Інтервал надсилання вузла",
+      "node_push_interval_desc": "Як часто вузол надсилає статистику (в секундах).",
+      "outbound_address_placeholder": "Адреса сервера",
+      "outbound_name_placeholder": "Назва конфігурації",
+      "outbound_password_placeholder": "Пароль (необов'язково)",
+      "outbound_port_placeholder": "Номер порту",
+      "outbound_protocol_placeholder": "Виберіть протокол",
+      "outbound_rules_placeholder": "Одне правило на рядок, підтримує:\nkeyword:google (збіг за ключовим словом)\nsuffix:google.com (збіг за суфіксом)\nregex:.*\\.example\\.com$ (збіг за регулярним виразом)\nexample.com (точний збіг)\nЗалиште порожнім для маршрутизації за замовчуванням",
+      "reset": "Скинути",
+      "save": "Зберегти",
+      "start_time": "Час початку",
+      "time_slot": "Часовий слот",
+      "traffic_report_threshold": "Поріг звіту про трафік",
+      "traffic_report_threshold_desc": "Встановіть мінімальний поріг для звітування про трафік. Трафік буде звітуватися лише тоді, коли перевищить це значення. Встановіть 0 або залиште порожнім, щоб звітувати про весь трафік."
+    },
+    "saveSuccess": "Успішно збережено",
+    "tabs": {
+      "basic": "Основна конфігурація",
+      "block": "Правила блокування",
+      "dns": "Конфігурація DNS",
+      "outbound": "Вихідні правила"
+    },
+    "title": "Конфігурація вузла"
+  },
   "server_key": "Ключ сервера",
   "service_name": "Назва служби",
   "sorted_success": "Успішно відсортовано",
diff --git a/apps/admin/locales/vi-VN/servers.json b/apps/admin/locales/vi-VN/servers.json
index bade98b..0aee6db 100644
--- a/apps/admin/locales/vi-VN/servers.json
+++ b/apps/admin/locales/vi-VN/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "Hủy",
+    "save": "Lưu"
+  },
   "address": "Địa chỉ",
   "address_placeholder": "Địa chỉ máy chủ",
   "bandwidth_placeholder": "Nhập băng thông, để trống cho BBR",
   "basic": "Cấu Hình Cơ Bản",
   "cancel": "Hủy",
+  "cert_dns_env": "Biến môi trường DNS",
+  "cert_dns_provider": "Nhà cung cấp DNS",
+  "cert_mode": "Chế độ chứng chỉ",
   "cipher": "Thuật toán Mã hóa",
   "city": "Thành phố",
-  "config": {
-    "actions": {
-      "cancel": "Hủy",
-      "save": "Lưu"
-    },
-    "communicationKey": "Khóa giao tiếp",
-    "communicationKeyDescription": "Dùng để xác thực nút.",
-    "description": "Quản lý khóa giao tiếp nút, khoảng thời gian kéo/đẩy, và các hệ số động.",
-    "dynamicMultiplier": "Hệ số động",
-    "dynamicMultiplierDescription": "Định nghĩa khoảng thời gian và hệ số để điều chỉnh tính toán lưu lượng.",
-    "endTime": "Thời gian kết thúc",
-    "inputPlaceholder": "Vui lòng nhập",
-    "multiplier": "Hệ số",
-    "nodePullInterval": "Khoảng thời gian kéo nút",
-    "nodePullIntervalDescription": "Tần suất nút kéo cấu hình (giây).",
-    "nodePushInterval": "Khoảng thời gian đẩy nút",
-    "nodePushIntervalDescription": "Tần suất nút đẩy thống kê (giây).",
-    "reset": "Đặt lại",
-    "save": "Lưu",
-    "saveSuccess": "Lưu thành công",
-    "startTime": "Thời gian bắt đầu",
-    "timeSlot": "Khung thời gian",
-    "title": "Cấu hình nút"
-  },
   "confirm": "Xác nhận",
   "confirmDeleteDesc": "Hành động này không thể hoàn tác.",
   "confirmDeleteTitle": "Xóa máy chủ này?",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "Chuỗi hex (tối đa 16 ký tự)",
   "security_sni": "SNI",
   "select_encryption_method": "Chọn phương pháp mã hóa",
+  "server_config": {
+    "description": "Quản lý khóa giao tiếp nút, khoảng thời gian kéo/đẩy.",
+    "dynamic_multiplier": "Hệ số động",
+    "dynamic_multiplier_desc": "Định nghĩa các khoảng thời gian và hệ số để điều chỉnh việc tính toán lưu lượng.",
+    "fields": {
+      "block_rules_placeholder": "Một quy tắc miền mỗi dòng, hỗ trợ:\nkeyword:google (khớp từ khóa)\nsuffix:google.com (khớp hậu tố)\nregex:.*\\.example\\.com$ (khớp regex)\nexample.com (khớp chính xác)",
+      "communication_key": "Khóa giao tiếp",
+      "communication_key_desc": "Dùng để xác thực nút.",
+      "communication_key_placeholder": "Vui lòng nhập",
+      "dns_config": "Cấu hình DNS",
+      "dns_domains_placeholder": "Một quy tắc miền mỗi dòng, hỗ trợ:\nkeyword:google (khớp từ khóa)\nsuffix:google.com (khớp hậu tố)\nregex:.*\\.example\\.com$ (khớp regex)\nexample.com (khớp chính xác)",
+      "dns_proto_placeholder": "Chọn loại",
+      "end_time": "Thời gian kết thúc",
+      "ip_strategy": "Chiến lược IP",
+      "ip_strategy_desc": "Chọn sở thích phiên bản IP cho các kết nối mạng",
+      "ip_strategy_ipv4": "Ưu tiên IPv4",
+      "ip_strategy_ipv6": "Ưu tiên IPv6",
+      "ip_strategy_placeholder": "Chọn chiến lược IP",
+      "multiplier": "Hệ số",
+      "node_pull_interval": "Khoảng thời gian kéo nút",
+      "node_pull_interval_desc": "Tần suất nút kéo cấu hình (giây).",
+      "node_push_interval": "Khoảng thời gian đẩy nút",
+      "node_push_interval_desc": "Tần suất nút đẩy thống kê (giây).",
+      "outbound_address_placeholder": "Địa chỉ máy chủ",
+      "outbound_name_placeholder": "Tên cấu hình",
+      "outbound_password_placeholder": "Mật khẩu (tùy chọn)",
+      "outbound_port_placeholder": "Số cổng",
+      "outbound_protocol_placeholder": "Chọn giao thức",
+      "outbound_rules_placeholder": "Một quy tắc mỗi dòng, hỗ trợ:\nkeyword:google (khớp từ khóa)\nsuffix:google.com (khớp hậu tố)\nregex:.*\\.example\\.com$ (khớp regex)\nexample.com (khớp chính xác)\nĐể trống cho định tuyến mặc định",
+      "reset": "Đặt lại",
+      "save": "Lưu",
+      "start_time": "Thời gian bắt đầu",
+      "time_slot": "Khoảng thời gian",
+      "traffic_report_threshold": "Ngưỡng báo cáo lưu lượng",
+      "traffic_report_threshold_desc": "Đặt ngưỡng tối thiểu cho báo cáo lưu lượng. Lưu lượng chỉ được báo cáo khi vượt quá giá trị này. Đặt thành 0 hoặc để trống để báo cáo tất cả lưu lượng."
+    },
+    "saveSuccess": "Lưu thành công",
+    "tabs": {
+      "basic": "Cấu hình cơ bản",
+      "block": "Quy tắc chặn",
+      "dns": "Cấu hình DNS",
+      "outbound": "Quy tắc ra"
+    },
+    "title": "Cấu hình nút"
+  },
   "server_key": "Khóa máy chủ",
   "service_name": "Tên dịch vụ",
   "sorted_success": "Sắp xếp thành công",
diff --git a/apps/admin/locales/zh-CN/servers.json b/apps/admin/locales/zh-CN/servers.json
index 9e66187..861d573 100644
--- a/apps/admin/locales/zh-CN/servers.json
+++ b/apps/admin/locales/zh-CN/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "取消",
+    "save": "保存"
+  },
   "address": "地址",
   "address_placeholder": "服务器地址",
   "bandwidth_placeholder": "请输入带宽，留空则使用BBR",
   "basic": "基础配置",
   "cancel": "取消",
+  "cert_dns_env": "DNS 环境变量",
+  "cert_dns_provider": "DNS 提供商",
+  "cert_mode": "证书模式",
   "cipher": "加密算法",
   "city": "城市",
-  "config": {
-    "actions": {
-      "cancel": "取消",
-      "save": "保存"
-    },
-    "communicationKey": "通信密钥",
-    "communicationKeyDescription": "用于节点鉴权。",
-    "description": "管理节点通信密钥、拉取/推送间隔。",
-    "dynamicMultiplier": "动态倍率",
-    "dynamicMultiplierDescription": "按时间段设置倍率，用于调节流量或计费。",
-    "endTime": "结束时间",
-    "inputPlaceholder": "请输入",
-    "multiplier": "倍率",
-    "nodePullInterval": "节点拉取间隔",
-    "nodePullIntervalDescription": "节点拉取配置的频率（秒）。",
-    "nodePushInterval": "节点推送间隔",
-    "nodePushIntervalDescription": "节点上报状态的频率（秒）。",
-    "reset": "重置",
-    "save": "保存",
-    "saveSuccess": "保存成功",
-    "startTime": "开始时间",
-    "timeSlot": "时间段",
-    "title": "节点配置"
-  },
   "confirm": "确认",
   "confirmDeleteDesc": "该操作不可撤销。",
   "confirmDeleteTitle": "确认删除该服务器？",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "16 位内十六进制",
   "security_sni": "SNI",
   "select_encryption_method": "选择加密方式",
+  "server_config": {
+    "description": "管理节点通信密钥、拉取/推送间隔。",
+    "dynamic_multiplier": "动态倍率",
+    "dynamic_multiplier_desc": "按时间段设置倍率，用于调节流量或计费。",
+    "fields": {
+      "block_rules_placeholder": "每行一个域名规则，支持:\nkeyword:google (关键字匹配)\nsuffix:google.com (后缀匹配)\nregex:.*\\.example\\.com$ (正则匹配)\nexample.com (完全匹配)",
+      "communication_key": "通信密钥",
+      "communication_key_desc": "用于节点鉴权。",
+      "communication_key_placeholder": "请输入",
+      "dns_config": "DNS 配置",
+      "dns_domains_placeholder": "每行一个域名规则，支持:\nkeyword:google (关键字匹配)\nsuffix:google.com (后缀匹配)\nregex:.*\\.example\\.com$ (正则匹配)\nexample.com (完全匹配)",
+      "dns_proto_placeholder": "选择类型",
+      "end_time": "结束时间",
+      "ip_strategy": "IP 策略",
+      "ip_strategy_desc": "选择网络连接时的 IP 版本偏好",
+      "ip_strategy_ipv4": "优先 IPv4",
+      "ip_strategy_ipv6": "优先 IPv6",
+      "ip_strategy_placeholder": "选择 IP 策略",
+      "multiplier": "倍率",
+      "node_pull_interval": "节点拉取间隔",
+      "node_pull_interval_desc": "节点拉取配置的频率（秒）。",
+      "node_push_interval": "节点推送间隔",
+      "node_push_interval_desc": "节点上报状态的频率（秒）。",
+      "outbound_address_placeholder": "服务器地址",
+      "outbound_name_placeholder": "配置名称",
+      "outbound_password_placeholder": "密码 (可选)",
+      "outbound_port_placeholder": "端口号",
+      "outbound_protocol_placeholder": "选择协议",
+      "outbound_rules_placeholder": "每行一个规则，支持:\nkeyword:google (关键字匹配)\nsuffix:google.com (后缀匹配)\nregex:.*\\.example\\.com$ (正则匹配)\nexample.com (完全匹配)\n留空表示默认路由",
+      "reset": "重置",
+      "save": "保存",
+      "start_time": "开始时间",
+      "time_slot": "时间段",
+      "traffic_report_threshold": "流量上报阈值",
+      "traffic_report_threshold_desc": "设置流量上报的最小阈值，只有当流量超过此值时才会上报。设置为 0 或留空表示上报所有流量。"
+    },
+    "saveSuccess": "保存成功",
+    "tabs": {
+      "basic": "基础配置",
+      "block": "禁止规则",
+      "dns": "DNS 配置",
+      "outbound": "出站规则"
+    },
+    "title": "节点配置"
+  },
   "server_key": "服务器密钥",
   "service_name": "服务名",
   "sorted_success": "排序成功",
diff --git a/apps/admin/locales/zh-HK/servers.json b/apps/admin/locales/zh-HK/servers.json
index 3576f60..9f833a7 100644
--- a/apps/admin/locales/zh-HK/servers.json
+++ b/apps/admin/locales/zh-HK/servers.json
@@ -1,35 +1,18 @@
 {
+  "actions": {
+    "cancel": "取消",
+    "save": "保存"
+  },
   "address": "地址",
   "address_placeholder": "伺服器地址",
   "bandwidth_placeholder": "輸入帶寬，留空以使用BBR",
   "basic": "基本配置",
   "cancel": "取消",
+  "cert_dns_env": "DNS 環境變數",
+  "cert_dns_provider": "DNS 提供者",
+  "cert_mode": "證書模式",
   "cipher": "加密算法",
   "city": "城市",
-  "config": {
-    "actions": {
-      "cancel": "取消",
-      "save": "保存"
-    },
-    "communicationKey": "通信密鑰",
-    "communicationKeyDescription": "用於節點身份驗證。",
-    "description": "管理節點通信密鑰、拉取/推送間隔和動態乘數。",
-    "dynamicMultiplier": "動態乘數",
-    "dynamicMultiplierDescription": "定義時間段和乘數以調整流量計算。",
-    "endTime": "結束時間",
-    "inputPlaceholder": "請輸入",
-    "multiplier": "乘數",
-    "nodePullInterval": "節點拉取間隔",
-    "nodePullIntervalDescription": "節點拉取配置的頻率（秒）。",
-    "nodePushInterval": "節點推送間隔",
-    "nodePushIntervalDescription": "節點推送統計的頻率（秒）。",
-    "reset": "重置",
-    "save": "保存",
-    "saveSuccess": "保存成功",
-    "startTime": "開始時間",
-    "timeSlot": "時間段",
-    "title": "節點配置"
-  },
   "confirm": "確認",
   "confirmDeleteDesc": "此操作無法撤銷。",
   "confirmDeleteTitle": "刪除此伺服器？",
@@ -114,6 +97,51 @@
   "security_short_id_placeholder": "十六進制字符串（最多 16 個字符）",
   "security_sni": "SNI",
   "select_encryption_method": "選擇加密方法",
+  "server_config": {
+    "description": "管理節點通信密鑰、拉取/推送間隔。",
+    "dynamic_multiplier": "動態倍增器",
+    "dynamic_multiplier_desc": "定義時間段和倍增器以調整流量計算。",
+    "fields": {
+      "block_rules_placeholder": "每行一個域名規則，支持：\nkeyword:google（關鍵字匹配）\nsuffix:google.com（後綴匹配）\nregex:.*\\.example\\.com$（正則表達式匹配）\nexample.com（精確匹配）",
+      "communication_key": "通信密鑰",
+      "communication_key_desc": "用於節點身份驗證。",
+      "communication_key_placeholder": "請輸入",
+      "dns_config": "DNS 配置",
+      "dns_domains_placeholder": "每行一個域名規則，支持：\nkeyword:google（關鍵字匹配）\nsuffix:google.com（後綴匹配）\nregex:.*\\.example\\.com$（正則表達式匹配）\nexample.com（精確匹配）",
+      "dns_proto_placeholder": "選擇類型",
+      "end_time": "結束時間",
+      "ip_strategy": "IP 策略",
+      "ip_strategy_desc": "選擇網絡連接的 IP 版本偏好",
+      "ip_strategy_ipv4": "優先使用 IPv4",
+      "ip_strategy_ipv6": "優先使用 IPv6",
+      "ip_strategy_placeholder": "選擇 IP 策略",
+      "multiplier": "倍增器",
+      "node_pull_interval": "節點拉取間隔",
+      "node_pull_interval_desc": "節點拉取配置的頻率（秒）。",
+      "node_push_interval": "節點推送間隔",
+      "node_push_interval_desc": "節點推送統計的頻率（秒）。",
+      "outbound_address_placeholder": "服務器地址",
+      "outbound_name_placeholder": "配置名稱",
+      "outbound_password_placeholder": "密碼（可選）",
+      "outbound_port_placeholder": "端口號",
+      "outbound_protocol_placeholder": "選擇協議",
+      "outbound_rules_placeholder": "每行一個規則，支持：\nkeyword:google（關鍵字匹配）\nsuffix:google.com（後綴匹配）\nregex:.*\\.example\\.com$（正則表達式匹配）\nexample.com（精確匹配）\n留空以使用默認路由",
+      "reset": "重置",
+      "save": "保存",
+      "start_time": "開始時間",
+      "time_slot": "時間段",
+      "traffic_report_threshold": "流量報告閾值",
+      "traffic_report_threshold_desc": "設置流量報告的最小閾值。只有當流量超過此值時才會報告。設置為 0 或留空以報告所有流量。"
+    },
+    "saveSuccess": "保存成功",
+    "tabs": {
+      "basic": "基本配置",
+      "block": "阻止規則",
+      "dns": "DNS 配置",
+      "outbound": "出站規則"
+    },
+    "title": "節點配置"
+  },
   "server_key": "伺服器密鑰",
   "service_name": "服務名稱",
   "sorted_success": "排序成功",
diff --git a/packages/ui/src/custom-components/dynamic-Inputs.tsx b/packages/ui/src/custom-components/dynamic-Inputs.tsx
index 0e6f99a..b3a5a60 100644
--- a/packages/ui/src/custom-components/dynamic-Inputs.tsx
+++ b/packages/ui/src/custom-components/dynamic-Inputs.tsx
@@ -1,6 +1,7 @@
 import { Button } from '@workspace/ui/components/button';
 import { Label } from '@workspace/ui/components/label';
 import { Switch } from '@workspace/ui/components/switch';
+import { Textarea } from '@workspace/ui/components/textarea';
 import { Combobox } from '@workspace/ui/custom-components/combobox';
 import { EnhancedInput, EnhancedInputProps } from '@workspace/ui/custom-components/enhanced-input';
 import { cn } from '@workspace/ui/lib/utils';
@@ -9,7 +10,7 @@ import { useEffect, useState } from 'react';
 
 interface FieldConfig extends Omit<EnhancedInputProps, 'type'> {
   name: string;
-  type: 'text' | 'number' | 'select' | 'time' | 'boolean';
+  type: 'text' | 'number' | 'select' | 'time' | 'boolean' | 'textarea';
   options?: { label: string; value: string }[];
 }
 
@@ -61,6 +62,18 @@ export function ObjectInput<T extends Record<string, any>>({
             {field.placeholder && <Label>{field.placeholder}</Label>}
           </div>
         );
+      case 'textarea':
+        return (
+          <div className='w-full space-y-2'>
+            {field.prefix && <Label className='text-sm font-medium'>{field.prefix}</Label>}
+            <Textarea
+              value={internalState[field.name] || ''}
+              onChange={(e) => updateField(field.name, e.target.value)}
+              placeholder={field.placeholder}
+              className='min-h-32'
+            />
+          </div>
+        );
       default:
         return (
           <EnhancedInput