VLESS-Reality: The Stealth Protocol for China in 2026
VLESS-Reality is the proxy protocol that beats China's active probing by borrowing a real website's TLS handshake. How it works and why it wins.
The most frustrating kind of VPN failure in China is not the one that never connects. It is the one that connects, works for a few minutes, and then quietly dies. The app still says "connected." The page still will not load. That pattern is almost never a speed problem. It is a detection problem, and it is the exact problem VLESS-Reality was designed to solve.
VLESS-Reality is the protocol combination that, in 2026, most reliably gets a tunnel through the Great Firewall without being recognized as a tunnel. It does something clever: instead of trying to hide that it is using encryption, it disguises the whole connection as an ordinary visit to a real, popular website, in a way that holds up even when the firewall actively probes the server to check. This guide explains what VLESS-Reality is, how that disguise works in plain terms, why older protocols fail where it survives, and how it fits into a setup that actually holds up inside mainland China.
Table of contents
- Why connections get detected, not just slowed
- What VLESS and Reality each do
- How Reality borrows a real website's handshake
- Why it beats the protocols that came before it
- What VLESS-Reality does not fix
- The working China stack in 2026
Why connections get detected, not just slowed
The Great Firewall has more than one way to stop a VPN. It can congest the route, which makes a connection slow. But it can also identify the connection as a proxy and reset it, which makes a connection die. The second method is the one that catches most VPNs, and it works in two main ways.
The first is deep packet inspection that looks at the shape of traffic, not just its destination. Many proxy protocols wrap encryption inside another layer of encryption, which produces a recognizable pattern often called a TLS-in-TLS fingerprint. Once the firewall learns that pattern, it can flag the connection even though it cannot read the contents.
The second is active probing. After spotting a suspicious server, the firewall connects to it directly, pretending to be a normal client, to see how it responds. A typical proxy server answers in a way only a proxy would, which confirms what it is and gets the address blocked. This is why a server can work one day and be dead the next, and why this guide on whether VPNs work in China keeps stressing that connecting once is not the same as staying connected.
The core insight: in China, the question is not only "is my traffic encrypted?" It is "does my traffic look like a VPN?" Encryption hides content. It does not hide identity.
What VLESS and Reality each do
VLESS-Reality is really two pieces with two jobs, both part of the Xray-core project.
VLESS is the transport protocol. It is a deliberately lightweight, stateless successor to older designs like VMess. On its own, VLESS carries no heavy built-in encryption and adds almost no fingerprint of its own. That sounds like a weakness, but it is the point: VLESS leaves the disguise to the layer on top, so it does not introduce a pattern of its own for the firewall to catch.
Reality (formally XTLS-REALITY) is that layer on top, and it is where the censorship resistance lives. Reality handles the TLS handshake, the part of a connection a censor inspects most closely, and it does so without the operator needing to own a domain or buy a certificate. Instead of presenting its own identity, it presents someone else's.
Together, VLESS provides a clean pipe and Reality makes that pipe look like normal HTTPS traffic to a legitimate site. The combination is why people refer to the pairing as a single thing.
How Reality borrows a real website's handshake
This is the mechanism that makes Reality different from everything before it, and it is worth understanding in plain language.
When you open a normal HTTPS site, your browser and the server perform a TLS handshake. Part of that handshake includes the SNI, the name of the site you are reaching, sent in a way the network can see. Older privacy attempts tried to hide the SNI. Censors responded by treating hidden or unusual SNI as suspicious in itself.
Reality takes the opposite approach. It does not hide the SNI. It presents a real one, borrowed from a genuine, popular website that supports modern TLS 1.3 and HTTP/2. The Reality server is configured to point at that target site. To anyone watching the network, the handshake looks exactly like a connection to that well-known, allowed site.
The clever part is what happens to unwanted visitors:
- An authorized client carries a secret key. The server recognizes it and steers the connection into the proxy. The client also uses a library called uTLS to imitate a real Chrome browser's TLS fingerprint, so even the fine details of the handshake look like an ordinary browser.
- An unauthorized client or an active probe does not carry that key. The server transparently forwards it to the real target website. The probe gets the genuine site's real certificate and a normal response, and learns nothing. There is no proxy-shaped answer to detect.
The result is that probing the server is indistinguishable from visiting the legitimate site it borrows. There is no TLS-in-TLS fingerprint to flag, no self-signed certificate to expose the server, and no unusual SNI to blocklist. The censor's two best tools, fingerprinting and active probing, both come up empty.
Reality does not try to look like nothing. It tries to look like a specific, real website that the firewall has already decided to allow. That is a much stronger disguise than invisibility.
Why it beats the protocols that came before it
Every China-capable protocol is an answer to the detection methods of its time, and the firewall keeps adapting. The table below shows why VLESS-Reality currently sits at the top of the list for stealth.
| Protocol | How it hides | Main weakness in China today |
|---|---|---|
| Shadowsocks | Lightweight obfuscation of traffic | Increasingly recognizable to modern deep packet inspection and probing |
| VMess | Custom encrypted protocol | Has its own detectable patterns and timing tells |
| Trojan | Disguises as TLS to a server you own | Still produces a TLS-in-TLS fingerprint and needs your own domain and certificate |
| Plain OpenVPN / WireGuard | Encryption only, no disguise | Recognizable protocol signatures, reliably detected and dropped |
| VLESS-Reality | Borrows a real site's TLS handshake; falls back to that site under probing | No self-owned cert needed; no TLS-in-TLS tell; survives active probing |
The pattern across the older options is that each one eventually presented something the firewall could learn to recognize: a signature, a timing pattern, a self-hosted certificate, or an unusual handshake. Reality removes those tells by piggybacking on the real internet rather than building a parallel one. That is also why it has become the default recommendation in serious circumvention communities, and why it appears in nearly every current discussion of how to get around blocked sites in China.
For readers who think in terms of traditional enterprise VPNs, it helps to compare this with the older protocol debate in our guide to IPSec VPN versus SSL VPN for China. The conclusion is the same: in China, the disguise matters more than the textbook protocol family.
What VLESS-Reality does not fix
VLESS-Reality is the strongest stealth layer available, but it is not magic, and treating it as a complete solution leads to disappointment.
- It does not make a slow route fast. Reality hides the connection. It does nothing about congestion. If the underlying path is the cheap, crowded standard backbone, the connection can be perfectly undetectable and still crawl at 9 p.m. Stealth and speed are different problems, and the route is covered separately in our explainer on CN2 GIA.
- It is sensitive to configuration. The borrowed target site, the fingerprint, and the keys all have to be set correctly. A sloppy deployment can still stand out. This is one reason running it yourself is more fragile than it looks.
- It is mainly a TCP-based transport. When a network is not just inspected but also lossy and throttled, a TCP-based tunnel can still stall. That is the gap the next protocol fills.
The working China stack in 2026
The setup that holds up inside mainland China is not one protocol. It is a layered stack where each piece covers a weakness of the others.
- CN2 GIA is the premium route, so the path does not congest during the evening rush. See CN2 GIA explained.
- VLESS-Reality is the primary transport, so the connection is not detected or reset, even under active probing.
- Hysteria2 is the fallback, a QUIC-based protocol that keeps pushing data through packet loss when a TCP-based tunnel would stall.
Put together, the stack answers all three failure modes at once: the route stays fast, the protocol stays invisible, and the fallback stays usable on a bad evening. That combination is the reason the strongest services feel boringly reliable while consumer apps feel like a gamble, a contrast our ranked guide to the best VPN for China is built around.
Speed is the route. Survival is the protocol. VLESS-Reality is the protocol that survives, but it needs a real route under it to also be fast.
Throughwire runs VLESS-Reality as its primary transport over CN2 GIA premium routing, with Hysteria2 as a peak-hour fallback, so the disguise and the route are handled as one product rather than a do-it-yourself project. For people who need a connection that stays both undetected and fast from inside mainland China, Throughwire is built on exactly the stack this article describes.