diff --git a/server/admin/api_group.go b/server/admin/api_group.go
index 44522a9..f5fa6d7 100644
--- a/server/admin/api_group.go
+++ b/server/admin/api_group.go
@@ -75,6 +75,10 @@ func GroupDetail(w http.ResponseWriter, r *http.Request) {
 	if len(data.Auth) == 0 {
 		data.Auth["type"] = "local"
 	}
+	// 兼容旧数据
+	if data.SplitDns == nil {
+		data.SplitDns = []dbdata.ValData{}
+	}
 	RespSucess(w, data)
 }
 
diff --git a/server/conf/profile.xml b/server/conf/profile.xml
index 914f53d..a821a88 100644
--- a/server/conf/profile.xml
+++ b/server/conf/profile.xml
@@ -9,6 +9,7 @@
         <RestrictTunnelProtocols>IPSec</RestrictTunnelProtocols>
         <BypassDownloader>true</BypassDownloader>
         <AutoUpdate UserControllable="false">false</AutoUpdate>
+        <LocalLanAccess UserControllable="true">true</LocalLanAccess>
         <WindowsVPNEstablishment>AllowRemoteUsers</WindowsVPNEstablishment>
         <LinuxVPNEstablishment>AllowRemoteUsers</LinuxVPNEstablishment>
         <CertEnrollmentPin>pinAllowed</CertEnrollmentPin>
diff --git a/server/dbdata/group.go b/server/dbdata/group.go
index fa2270e..81a48cd 100644
--- a/server/dbdata/group.go
+++ b/server/dbdata/group.go
@@ -215,6 +215,7 @@ func SetGroup(g *Group) error {
 	// DNS 判断
 	clientDns := []ValData{}
 	for _, v := range g.ClientDns {
+		v.Val = strings.TrimSpace(v.Val)
 		if v.Val != "" {
 			ip := net.ParseIP(v.Val)
 			if ip.String() != v.Val {
@@ -229,6 +230,20 @@ func SetGroup(g *Group) error {
 		return errors.New("默认路由，必须设置一个DNS")
 	}
 	g.ClientDns = clientDns
+
+	splitDns := []ValData{}
+	for _, v := range g.SplitDns {
+		v.Val = strings.TrimSpace(v.Val)
+		if v.Val != "" {
+			ValidateDomainName(v.Val)
+			if !ValidateDomainName(v.Val) {
+				return errors.New("域名 错误")
+			}
+			splitDns = append(splitDns, v)
+		}
+	}
+	g.SplitDns = splitDns
+
 	// 域名拆分隧道，不能同时填写
 	g.DsIncludeDomains = strings.TrimSpace(g.DsIncludeDomains)
 	g.DsExcludeDomains = strings.TrimSpace(g.DsExcludeDomains)
diff --git a/server/dbdata/tables.go b/server/dbdata/tables.go
index b70e45a..752a2a0 100644
--- a/server/dbdata/tables.go
+++ b/server/dbdata/tables.go
@@ -11,6 +11,7 @@ type Group struct {
 	Note             string                 `json:"note" xorm:"varchar(255)"`
 	AllowLan         bool                   `json:"allow_lan" xorm:"Bool"`
 	ClientDns        []ValData              `json:"client_dns" xorm:"Text"`
+	SplitDns         []ValData              `json:"split_dns" xorm:"Text"`
 	RouteInclude     []ValData              `json:"route_include" xorm:"Text"`
 	RouteExclude     []ValData              `json:"route_exclude" xorm:"Text"`
 	DsExcludeDomains string                 `json:"ds_exclude_domains" xorm:"Text"`
diff --git a/server/handler/link_tunnel.go b/server/handler/link_tunnel.go
index a854a07..cf618b0 100644
--- a/server/handler/link_tunnel.go
+++ b/server/handler/link_tunnel.go
@@ -86,7 +86,7 @@ func LinkTunnel(w http.ResponseWriter, r *http.Request) {
 	}
 	cSess.CstpDpd = cstpDpd
 
-	dtlsPort := "4433"
+	dtlsPort := "443"
 	if strings.Contains(base.Cfg.ServerDTLSAddr, ":") {
 		ss := strings.Split(base.Cfg.ServerDTLSAddr, ":")
 		dtlsPort = ss[1]
@@ -131,6 +131,11 @@ func LinkTunnel(w http.ResponseWriter, r *http.Request) {
 	for _, v := range cSess.Group.ClientDns {
 		HttpAddHeader(w, "X-CSTP-DNS", v.Val)
 	}
+	// 分割dns
+	for _, v := range cSess.Group.SplitDns {
+		HttpAddHeader(w, "X-CSTP-Split-DNS", v.Val)
+	}
+
 	// 允许的路由
 	for _, v := range cSess.Group.RouteInclude {
 		if strings.ToLower(v.Val) == dbdata.All {
@@ -156,9 +161,9 @@ func LinkTunnel(w http.ResponseWriter, r *http.Request) {
 	HttpSetHeader(w, "X-CSTP-Keep", "true")
 	HttpSetHeader(w, "X-CSTP-Tunnel-All-DNS", "false")
 
-	HttpSetHeader(w, "X-CSTP-Rekey-Time", "43200") // 172800
+	HttpSetHeader(w, "X-CSTP-Rekey-Time", "86400") // 172800
 	HttpSetHeader(w, "X-CSTP-Rekey-Method", "new-tunnel")
-	HttpSetHeader(w, "X-DTLS-Rekey-Time", "43200")
+	HttpSetHeader(w, "X-DTLS-Rekey-Time", "86400")
 	HttpSetHeader(w, "X-DTLS-Rekey-Method", "new-tunnel")
 
 	HttpSetHeader(w, "X-CSTP-DPD", fmt.Sprintf("%d", cstpDpd))
@@ -180,7 +185,7 @@ func LinkTunnel(w http.ResponseWriter, r *http.Request) {
 	HttpSetHeader(w, "X-CSTP-Routing-Filtering-Ignore", "false")
 	HttpSetHeader(w, "X-CSTP-Quarantine", "false")
 	HttpSetHeader(w, "X-CSTP-Disable-Always-On-VPN", "false")
-	HttpSetHeader(w, "X-CSTP-Client-Bypass-Protocol", "false")
+	HttpSetHeader(w, "X-CSTP-Client-Bypass-Protocol", "true")
 	HttpSetHeader(w, "X-CSTP-TCP-Keepalive", "false")
 	// 设置域名拆分隧道（移动端不支持）
 	if mobile != "mobile" {
diff --git a/version b/version
index aa3545d..aac2dac 100644
--- a/version
+++ b/version
@@ -1 +1 @@
-0.11.4
\ No newline at end of file
+0.12.1
\ No newline at end of file
diff --git a/web/src/pages/group/List.vue b/web/src/pages/group/List.vue
index cc8fc55..e06ce3f 100644
--- a/web/src/pages/group/List.vue
+++ b/web/src/pages/group/List.vue
@@ -49,10 +49,11 @@
             prop="bandwidth"
             label="带宽限制"
             width="90">
-            <template slot-scope="scope">
-                <el-row v-if="scope.row.bandwidth > 0">{{ convertBandwidth(scope.row.bandwidth, 'BYTE', 'Mbps') }} Mbps</el-row>
-                <el-row v-else>不限</el-row>
-            </template>
+          <template slot-scope="scope">
+            <el-row v-if="scope.row.bandwidth > 0">{{ convertBandwidth(scope.row.bandwidth, 'BYTE', 'Mbps') }} Mbps
+            </el-row>
+            <el-row v-else>不限</el-row>
+          </template>
         </el-table-column>
 
         <el-table-column
@@ -69,12 +70,20 @@
             label="路由包含"
             width="180">
           <template slot-scope="scope">
-            <el-row v-for="(item,inx) in scope.row.route_include.slice(0, readMinRows)" :key="inx">{{ item.val }}</el-row>
+            <el-row v-for="(item,inx) in scope.row.route_include.slice(0, readMinRows)" :key="inx">{{
+                item.val
+              }}
+            </el-row>
             <div v-if="scope.row.route_include.length > readMinRows">
               <div v-if="readMore[`ri_${ scope.row.id }`]">
-                <el-row v-for="(item,inx) in scope.row.route_include.slice(readMinRows)" :key="inx">{{ item.val }}</el-row>
+                <el-row v-for="(item,inx) in scope.row.route_include.slice(readMinRows)" :key="inx">{{
+                    item.val
+                  }}
+                </el-row>
               </div>
-              <el-button size="mini" type="text" @click="toggleMore(`ri_${ scope.row.id }`)">{{ readMore[`ri_${ scope.row.id }`] ? "▲ 收起" : "▼ 更多" }}</el-button>
+              <el-button size="mini" type="text" @click="toggleMore(`ri_${ scope.row.id }`)">
+                {{ readMore[`ri_${scope.row.id}`] ? "▲ 收起" : "▼ 更多" }}
+              </el-button>
             </div>
           </template>
         </el-table-column>
@@ -84,12 +93,20 @@
             label="路由排除"
             width="180">
           <template slot-scope="scope">
-            <el-row v-for="(item,inx) in scope.row.route_exclude.slice(0, readMinRows)" :key="inx">{{ item.val }}</el-row>
+            <el-row v-for="(item,inx) in scope.row.route_exclude.slice(0, readMinRows)" :key="inx">{{
+                item.val
+              }}
+            </el-row>
             <div v-if="scope.row.route_exclude.length > readMinRows">
               <div v-if="readMore[`re_${ scope.row.id }`]">
-                <el-row v-for="(item,inx) in scope.row.route_exclude.slice(readMinRows)" :key="inx">{{ item.val }}</el-row>
+                <el-row v-for="(item,inx) in scope.row.route_exclude.slice(readMinRows)" :key="inx">{{
+                    item.val
+                  }}
+                </el-row>
               </div>
-              <el-button size="mini" type="text" @click="toggleMore(`re_${ scope.row.id }`)">{{ readMore[`re_${ scope.row.id }`] ? "▲ 收起" : "▼ 更多" }}</el-button>
+              <el-button size="mini" type="text" @click="toggleMore(`re_${ scope.row.id }`)">
+                {{ readMore[`re_${scope.row.id}`] ? "▲ 收起" : "▼ 更多" }}
+              </el-button>
             </div>
           </template>
         </el-table-column>
@@ -108,7 +125,9 @@
                   {{ item.action }} => {{ item.val }} : {{ item.port }}
                 </el-row>
               </div>
-              <el-button size="mini" type="text" @click="toggleMore(`la_${ scope.row.id }`)">{{ readMore[`la_${ scope.row.id }`] ? "▲ 收起" : "▼ 更多" }}</el-button>
+              <el-button size="mini" type="text" @click="toggleMore(`la_${ scope.row.id }`)">
+                {{ readMore[`la_${scope.row.id}`] ? "▲ 收起" : "▼ 更多" }}
+              </el-button>
             </div>
           </template>
         </el-table-column>
@@ -178,221 +197,263 @@
 
       <el-form :model="ruleForm" :rules="rules" ref="ruleForm" label-width="100px" class="ruleForm">
         <el-tabs v-model="activeTab" :before-leave="beforeTabLeave">
-           <el-tab-pane label="通用" name="general">
-                <el-form-item label="用户组ID" prop="id">
-                <el-input v-model="ruleForm.id" disabled></el-input>
-                </el-form-item>
-
-                <el-form-item label="组名" prop="name">
-                <el-input v-model="ruleForm.name" :disabled="ruleForm.id > 0"></el-input>
-                </el-form-item>
-
-                <el-form-item label="备注" prop="note">
-                <el-input v-model="ruleForm.note"></el-input>
-                </el-form-item>
-
-                <el-form-item label="带宽限制" prop="bandwidth_format" style="width:260px;">
-                <el-input v-model="ruleForm.bandwidth_format" oninput="value= value.match(/\d+(\.\d{0,2})?/) ? value.match(/\d+(\.\d{0,2})?/)[0] : ''">
-                    <template slot="append">Mbps</template>
-                </el-input>
-                </el-form-item>
-                <el-form-item label="排除本地网络" prop="allow_lan">
-                <!--  active-text="开启后 用户本地所在网段将不通过anylink加密传输" -->
-                <el-switch v-model="ruleForm.allow_lan"></el-switch>
-                <div class="msg-info">
-                 注：本地网络 指的是：
-                 运行 anyconnect 客户端的PC 所在的的网络，即本地路由网段。
-                 开启后，PC本地路由网段的数据就不会走隧道链路转发数据了。
-                 同时 anyconnect 客户端需要勾选本地网络(Allow Local Lan)的开关，功能才能生效。
-                 </div>
-                </el-form-item>
-
-                <el-form-item label="客户端DNS" prop="client_dns">
-                <el-row class="msg-info">
-                    <el-col :span="20">输入IP格式如: 192.168.0.10</el-col>
-                    <el-col :span="4">
-                    <el-button size="mini" type="success" icon="el-icon-plus" circle
-                                @click.prevent="addDomain(ruleForm.client_dns)"></el-button>
-                    </el-col>
-                </el-row>
-                <el-row v-for="(item,index) in ruleForm.client_dns"
-                        :key="index" style="margin-bottom: 5px" :gutter="10">
-                    <el-col :span="10">
-                    <el-input v-model="item.val"></el-input>
-                    </el-col>
-                    <el-col :span="12">
-                    <el-input v-model="item.note" placeholder="备注"></el-input>
-                    </el-col>
-                    <el-col :span="2">
-                    <el-button size="mini" type="danger" icon="el-icon-minus" circle
-                                @click.prevent="removeDomain(ruleForm.client_dns,index)"></el-button>
-                    </el-col>
-                </el-row>
-                </el-form-item>
-                <el-form-item label="状态" prop="status">
-                    <el-radio-group v-model="ruleForm.status">
-                        <el-radio :label="1" border>启用</el-radio>
-                        <el-radio :label="0" border>停用</el-radio>
-                    </el-radio-group>
-                </el-form-item>
-            </el-tab-pane>
-
-            <el-tab-pane label="认证方式" name="authtype">
-                <el-form-item label="认证" prop="authtype">
-                    <el-radio-group v-model="ruleForm.auth.type" @change="authTypeChange">
-                        <el-radio label="local" border>本地</el-radio>
-                        <el-radio label="radius" border>Radius</el-radio>
-                        <el-radio label="ldap" border>LDAP</el-radio>
-                    </el-radio-group>
-                </el-form-item>
-                <template v-if="ruleForm.auth.type == 'radius'">
-                  <el-form-item label="服务器地址" prop="auth.radius.addr" :rules="this.ruleForm.auth.type== 'radius' ? this.rules['auth.radius.addr'] : [{ required: false }]">
-                      <el-input v-model="ruleForm.auth.radius.addr" placeholder="例如 ip:1812"></el-input>
-                  </el-form-item>
-                  <el-form-item label="密钥" prop="auth.radius.secret" :rules="this.ruleForm.auth.type== 'radius' ? this.rules['auth.radius.secret'] : [{ required: false }]">
-                      <el-input v-model="ruleForm.auth.radius.secret" placeholder=""></el-input>
-                  </el-form-item>
-                </template>
-
-                <template v-if="ruleForm.auth.type == 'ldap'">
-                  <el-form-item label="服务器地址" prop="auth.ldap.addr" :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.addr'] : [{ required: false }]">
-                      <el-input v-model="ruleForm.auth.ldap.addr" placeholder="例如 ip:389 / 域名:389"></el-input>
-                  </el-form-item>
-                  <el-form-item label="开启TLS" prop="auth.ldap.tls">
-                    <el-switch v-model="ruleForm.auth.ldap.tls"></el-switch>
-                  </el-form-item>
-                  <el-form-item label="管理员 DN" prop="auth.ldap.bind_name" :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.bind_name'] : [{ required: false }]">
-                    <el-input v-model="ruleForm.auth.ldap.bind_name" placeholder="例如 CN=bindadmin,DC=abc,DC=COM"></el-input>
-                  </el-form-item>
-                  <el-form-item label="管理员密码" prop="auth.ldap.bind_pwd" :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.bind_pwd'] : [{ required: false }]">
-                    <el-input type="password" v-model="ruleForm.auth.ldap.bind_pwd" placeholder=""></el-input>
-                  </el-form-item>
-                  <el-form-item label="Base DN" prop="auth.ldap.base_dn" :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.base_dn'] : [{ required: false }]">
-                    <el-input v-model="ruleForm.auth.ldap.base_dn" placeholder="例如 DC=abc,DC=com"></el-input>
-                  </el-form-item>
-                  <el-form-item label="用户对象类" prop="auth.ldap.object_class" :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.object_class'] : [{ required: false }]">
-                    <el-input v-model="ruleForm.auth.ldap.object_class" placeholder="例如 person / user / posixAccount"></el-input>
-                  </el-form-item>
-                  <el-form-item label="用户唯一ID" prop="auth.ldap.search_attr" :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.search_attr'] : [{ required: false }]">
-                    <el-input v-model="ruleForm.auth.ldap.search_attr" placeholder="例如 sAMAccountName / uid / cn"></el-input>
-                  </el-form-item>
-                  <el-form-item label="受限用户组" prop="auth.ldap.member_of">
-                    <el-input v-model="ruleForm.auth.ldap.member_of" placeholder="选填, 只允许指定组登入, 例如 CN=HomeWork,DC=abc,DC=com"></el-input>
-                  </el-form-item>
-                </template>
-            </el-tab-pane>
-
-            <el-tab-pane label="路由设置" name="route">
-                <el-form-item label="包含路由" prop="route_include">
-                <el-row class="msg-info">
-                    <el-col :span="18">输入CIDR格式如: 192.168.1.0/24</el-col>
-                    <el-col :span="2">
-                    <el-button size="mini" type="success" icon="el-icon-plus" circle
-                                @click.prevent="addDomain(ruleForm.route_include)"></el-button>
-                    </el-col>
-                    <el-col :span="4">
-                      <el-button size="mini" type="info" icon="el-icon-edit" circle
-                                @click.prevent="openIpListDialog('route_include')"></el-button>
-                    </el-col>
-                </el-row>
-                <templete v-if="activeTab == 'route'">
-                    <el-row v-for="(item,index) in ruleForm.route_include"
-                            :key="index" style="margin-bottom: 5px" :gutter="10">
-                        <el-col :span="10">
-                        <el-input v-model="item.val"></el-input>
-                        </el-col>
-                        <el-col :span="12">
-                        <el-input v-model="item.note" placeholder="备注"></el-input>
-                        </el-col>
-                        <el-col :span="2">
-                        <el-button size="mini" type="danger" icon="el-icon-minus" circle
-                                    @click.prevent="removeDomain(ruleForm.route_include,index)"></el-button>
-                        </el-col>
-                    </el-row>
-                </templete>
-                </el-form-item>
-
-                <el-form-item label="排除路由" prop="route_exclude">
-                <el-row class="msg-info">
-                    <el-col :span="18">输入CIDR格式如: 192.168.2.0/24</el-col>
-                    <el-col :span="2">
-                    <el-button size="mini" type="success" icon="el-icon-plus" circle
-                                @click.prevent="addDomain(ruleForm.route_exclude)"></el-button>
-                    </el-col>
-                    <el-col :span="4">
-                      <el-button size="mini" type="info" icon="el-icon-edit" circle
-                                @click.prevent="openIpListDialog('route_exclude')"></el-button>
-                    </el-col>
-                </el-row>
-                <templete v-if="activeTab == 'route'">
-                    <el-row v-for="(item,index) in ruleForm.route_exclude"
-                            :key="index" style="margin-bottom: 5px" :gutter="10">
-                        <el-col :span="10">
-                        <el-input v-model="item.val"></el-input>
-                        </el-col>
-                        <el-col :span="12">
-                        <el-input v-model="item.note" placeholder="备注"></el-input>
-                        </el-col>
-                        <el-col :span="2">
-                        <el-button size="mini" type="danger" icon="el-icon-minus" circle
-                                    @click.prevent="removeDomain(ruleForm.route_exclude,index)"></el-button>
-                        </el-col>
-                    </el-row>
-                </templete>
-                </el-form-item>
-            </el-tab-pane>
-            <el-tab-pane label="权限控制" name="link_acl">
-                <el-form-item label="权限控制" prop="link_acl">
-                <el-row class="msg-info">
-                    <el-col :span="22">输入CIDR格式如: 192.168.3.0/24 端口0表示所有端口,多个端口用','号分隔,连续端口:1234-5678</el-col>
-                    <el-col :span="2">
-                    <el-button size="mini" type="success" icon="el-icon-plus" circle
-                                @click.prevent="addDomain(ruleForm.link_acl)"></el-button>
-                    </el-col>
-                </el-row>
-
-                <el-row v-for="(item,index) in ruleForm.link_acl"
-                        :key="index" style="margin-bottom: 5px" :gutter="1">
-                    <el-col :span="10">
-                    <el-input placeholder="请输入CIDR地址" v-model="item.val">
-                        <el-select v-model="item.action" slot="prepend">
-                        <el-option label="允许" value="allow"></el-option>
-                        <el-option label="禁止" value="deny"></el-option>
-                        </el-select>
-                    </el-input>
-                    </el-col>
-                    <el-col :span="6">
-                    <el-input type="textarea" :autosize="{ minRows: 1, maxRows: 2}" v-model="item.port"  placeholder="多端口,号分隔"></el-input>
-                    </el-col>
-                    <el-col :span="6">
-                    <el-input v-model="item.note" placeholder="备注"></el-input>
-                    </el-col>
-                    <el-col :span="2">
-                    <el-button size="mini" type="danger" icon="el-icon-minus" circle
-                                @click.prevent="removeDomain(ruleForm.link_acl,index)"></el-button>
-                    </el-col>
-                </el-row>
-                </el-form-item>
-            </el-tab-pane>
-
-            <el-tab-pane label="域名拆分隧道" name="ds_domains">
-                <el-form-item label="包含域名" prop="ds_include_domains">
-                    <el-input type="textarea" :rows="5" v-model="ruleForm.ds_include_domains" placeholder="输入域名用,号分隔，默认匹配所有子域名, 如baidu.com,163.com"></el-input>
-                </el-form-item>
-                <el-form-item label="排除域名" prop="ds_exclude_domains">
-                    <el-input type="textarea" :rows="5" v-model="ruleForm.ds_exclude_domains" placeholder="输入域名用,号分隔，默认匹配所有子域名, 如baidu.com,163.com"></el-input>
-                    <div class="msg-info">注：域名拆分隧道，仅支持AnyConnect的windows和MacOS桌面客户端，不支持移动端.</div>
-                </el-form-item>
-            </el-tab-pane>
-            <el-form-item>
-                <templete v-if="activeTab == 'authtype' && ruleForm.auth.type != 'local'">
-                    <el-button @click="openAuthLoginDialog()" style="margin-right:10px">测试登录</el-button>
-                </templete>
-                <el-button type="primary" @click="submitForm('ruleForm')">保存</el-button>
-                <el-button @click="closeDialog">取消</el-button>
+          <el-tab-pane label="通用" name="general">
+            <el-form-item label="用户组ID" prop="id">
+              <el-input v-model="ruleForm.id" disabled></el-input>
             </el-form-item>
-          </el-tabs>
-        </el-form>
+
+            <el-form-item label="组名" prop="name">
+              <el-input v-model="ruleForm.name" :disabled="ruleForm.id > 0"></el-input>
+            </el-form-item>
+
+            <el-form-item label="备注" prop="note">
+              <el-input v-model="ruleForm.note"></el-input>
+            </el-form-item>
+
+            <el-form-item label="带宽限制" prop="bandwidth_format" style="width:260px;">
+              <el-input v-model="ruleForm.bandwidth_format"
+                        oninput="value= value.match(/\d+(\.\d{0,2})?/) ? value.match(/\d+(\.\d{0,2})?/)[0] : ''">
+                <template slot="append">Mbps</template>
+              </el-input>
+            </el-form-item>
+            <el-form-item label="排除本地网络" prop="allow_lan">
+              <!--  active-text="开启后 用户本地所在网段将不通过anylink加密传输" -->
+              <el-switch v-model="ruleForm.allow_lan"></el-switch>
+              <div class="msg-info">
+                注：本地网络 指的是：
+                运行 anyconnect 客户端的PC 所在的的网络，即本地路由网段。
+                开启后，PC本地路由网段的数据就不会走隧道链路转发数据了。
+                同时 anyconnect 客户端需要勾选本地网络(Allow Local Lan)的开关，功能才能生效。
+              </div>
+            </el-form-item>
+
+            <el-form-item label="客户端DNS" prop="client_dns">
+              <el-row class="msg-info">
+                <el-col :span="20">输入IP格式如: 192.168.0.10</el-col>
+                <el-col :span="4">
+                  <el-button size="mini" type="success" icon="el-icon-plus" circle
+                             @click.prevent="addDomain(ruleForm.client_dns)"></el-button>
+                </el-col>
+              </el-row>
+              <el-row v-for="(item,index) in ruleForm.client_dns"
+                      :key="index" style="margin-bottom: 5px" :gutter="10">
+                <el-col :span="10">
+                  <el-input v-model="item.val"></el-input>
+                </el-col>
+                <el-col :span="12">
+                  <el-input v-model="item.note" placeholder="备注"></el-input>
+                </el-col>
+                <el-col :span="2">
+                  <el-button size="mini" type="danger" icon="el-icon-minus" circle
+                             @click.prevent="removeDomain(ruleForm.client_dns,index)"></el-button>
+                </el-col>
+              </el-row>
+            </el-form-item>
+
+            <el-form-item label="分割DNS" prop="split_dns">
+              <el-row class="msg-info">
+                <el-col :span="20">一般留空。如果输入域名，只有配置的域名(包含子域名)走配置的dns</el-col>
+                <el-col :span="4">
+                  <el-button size="mini" type="success" icon="el-icon-plus" circle
+                             @click.prevent="addDomain(ruleForm.split_dns)"></el-button>
+                </el-col>
+              </el-row>
+              <el-row v-for="(item,index) in ruleForm.split_dns"
+                      :key="index" style="margin-bottom: 5px" :gutter="10">
+                <el-col :span="10">
+                  <el-input v-model="item.val"></el-input>
+                </el-col>
+                <el-col :span="12">
+                  <el-input v-model="item.note" placeholder="备注"></el-input>
+                </el-col>
+                <el-col :span="2">
+                  <el-button size="mini" type="danger" icon="el-icon-minus" circle
+                             @click.prevent="removeDomain(ruleForm.split_dns,index)"></el-button>
+                </el-col>
+              </el-row>
+            </el-form-item>
+
+            <el-form-item label="状态" prop="status">
+              <el-radio-group v-model="ruleForm.status">
+                <el-radio :label="1" border>启用</el-radio>
+                <el-radio :label="0" border>停用</el-radio>
+              </el-radio-group>
+            </el-form-item>
+          </el-tab-pane>
+
+          <el-tab-pane label="认证方式" name="authtype">
+            <el-form-item label="认证" prop="authtype">
+              <el-radio-group v-model="ruleForm.auth.type" @change="authTypeChange">
+                <el-radio label="local" border>本地</el-radio>
+                <el-radio label="radius" border>Radius</el-radio>
+                <el-radio label="ldap" border>LDAP</el-radio>
+              </el-radio-group>
+            </el-form-item>
+            <template v-if="ruleForm.auth.type == 'radius'">
+              <el-form-item label="服务器地址" prop="auth.radius.addr"
+                            :rules="this.ruleForm.auth.type== 'radius' ? this.rules['auth.radius.addr'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.radius.addr" placeholder="例如 ip:1812"></el-input>
+              </el-form-item>
+              <el-form-item label="密钥" prop="auth.radius.secret"
+                            :rules="this.ruleForm.auth.type== 'radius' ? this.rules['auth.radius.secret'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.radius.secret" placeholder=""></el-input>
+              </el-form-item>
+            </template>
+
+            <template v-if="ruleForm.auth.type == 'ldap'">
+              <el-form-item label="服务器地址" prop="auth.ldap.addr"
+                            :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.addr'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.ldap.addr" placeholder="例如 ip:389 / 域名:389"></el-input>
+              </el-form-item>
+              <el-form-item label="开启TLS" prop="auth.ldap.tls">
+                <el-switch v-model="ruleForm.auth.ldap.tls"></el-switch>
+              </el-form-item>
+              <el-form-item label="管理员 DN" prop="auth.ldap.bind_name"
+                            :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.bind_name'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.ldap.bind_name"
+                          placeholder="例如 CN=bindadmin,DC=abc,DC=COM"></el-input>
+              </el-form-item>
+              <el-form-item label="管理员密码" prop="auth.ldap.bind_pwd"
+                            :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.bind_pwd'] : [{ required: false }]">
+                <el-input type="password" v-model="ruleForm.auth.ldap.bind_pwd" placeholder=""></el-input>
+              </el-form-item>
+              <el-form-item label="Base DN" prop="auth.ldap.base_dn"
+                            :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.base_dn'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.ldap.base_dn" placeholder="例如 DC=abc,DC=com"></el-input>
+              </el-form-item>
+              <el-form-item label="用户对象类" prop="auth.ldap.object_class"
+                            :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.object_class'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.ldap.object_class"
+                          placeholder="例如 person / user / posixAccount"></el-input>
+              </el-form-item>
+              <el-form-item label="用户唯一ID" prop="auth.ldap.search_attr"
+                            :rules="this.ruleForm.auth.type== 'ldap' ? this.rules['auth.ldap.search_attr'] : [{ required: false }]">
+                <el-input v-model="ruleForm.auth.ldap.search_attr"
+                          placeholder="例如 sAMAccountName / uid / cn"></el-input>
+              </el-form-item>
+              <el-form-item label="受限用户组" prop="auth.ldap.member_of">
+                <el-input v-model="ruleForm.auth.ldap.member_of"
+                          placeholder="选填, 只允许指定组登入, 例如 CN=HomeWork,DC=abc,DC=com"></el-input>
+              </el-form-item>
+            </template>
+          </el-tab-pane>
+
+          <el-tab-pane label="路由设置" name="route">
+            <el-form-item label="包含路由" prop="route_include">
+              <el-row class="msg-info">
+                <el-col :span="18">输入CIDR格式如: 192.168.1.0/24</el-col>
+                <el-col :span="2">
+                  <el-button size="mini" type="success" icon="el-icon-plus" circle
+                             @click.prevent="addDomain(ruleForm.route_include)"></el-button>
+                </el-col>
+                <el-col :span="4">
+                  <el-button size="mini" type="info" icon="el-icon-edit" circle
+                             @click.prevent="openIpListDialog('route_include')"></el-button>
+                </el-col>
+              </el-row>
+              <templete v-if="activeTab == 'route'">
+                <el-row v-for="(item,index) in ruleForm.route_include"
+                        :key="index" style="margin-bottom: 5px" :gutter="10">
+                  <el-col :span="10">
+                    <el-input v-model="item.val"></el-input>
+                  </el-col>
+                  <el-col :span="12">
+                    <el-input v-model="item.note" placeholder="备注"></el-input>
+                  </el-col>
+                  <el-col :span="2">
+                    <el-button size="mini" type="danger" icon="el-icon-minus" circle
+                               @click.prevent="removeDomain(ruleForm.route_include,index)"></el-button>
+                  </el-col>
+                </el-row>
+              </templete>
+            </el-form-item>
+
+            <el-form-item label="排除路由" prop="route_exclude">
+              <el-row class="msg-info">
+                <el-col :span="18">输入CIDR格式如: 192.168.2.0/24</el-col>
+                <el-col :span="2">
+                  <el-button size="mini" type="success" icon="el-icon-plus" circle
+                             @click.prevent="addDomain(ruleForm.route_exclude)"></el-button>
+                </el-col>
+                <el-col :span="4">
+                  <el-button size="mini" type="info" icon="el-icon-edit" circle
+                             @click.prevent="openIpListDialog('route_exclude')"></el-button>
+                </el-col>
+              </el-row>
+              <templete v-if="activeTab == 'route'">
+                <el-row v-for="(item,index) in ruleForm.route_exclude"
+                        :key="index" style="margin-bottom: 5px" :gutter="10">
+                  <el-col :span="10">
+                    <el-input v-model="item.val"></el-input>
+                  </el-col>
+                  <el-col :span="12">
+                    <el-input v-model="item.note" placeholder="备注"></el-input>
+                  </el-col>
+                  <el-col :span="2">
+                    <el-button size="mini" type="danger" icon="el-icon-minus" circle
+                               @click.prevent="removeDomain(ruleForm.route_exclude,index)"></el-button>
+                  </el-col>
+                </el-row>
+              </templete>
+            </el-form-item>
+          </el-tab-pane>
+          <el-tab-pane label="权限控制" name="link_acl">
+            <el-form-item label="权限控制" prop="link_acl">
+              <el-row class="msg-info">
+                <el-col :span="22">输入CIDR格式如: 192.168.3.0/24
+                  端口0表示所有端口,多个端口用','号分隔,连续端口:1234-5678
+                </el-col>
+                <el-col :span="2">
+                  <el-button size="mini" type="success" icon="el-icon-plus" circle
+                             @click.prevent="addDomain(ruleForm.link_acl)"></el-button>
+                </el-col>
+              </el-row>
+
+              <el-row v-for="(item,index) in ruleForm.link_acl"
+                      :key="index" style="margin-bottom: 5px" :gutter="1">
+                <el-col :span="10">
+                  <el-input placeholder="请输入CIDR地址" v-model="item.val">
+                    <el-select v-model="item.action" slot="prepend">
+                      <el-option label="允许" value="allow"></el-option>
+                      <el-option label="禁止" value="deny"></el-option>
+                    </el-select>
+                  </el-input>
+                </el-col>
+                <el-col :span="8">
+                  <!--  type="textarea" :autosize="{ minRows: 1, maxRows: 2}"  -->
+                  <el-input v-model="item.port" placeholder="多端口,号分隔"></el-input>
+                </el-col>
+                <el-col :span="4">
+                  <el-input v-model="item.note" placeholder="备注"></el-input>
+                </el-col>
+                <el-col :span="2">
+                  <el-button size="mini" type="danger" icon="el-icon-minus" circle
+                             @click.prevent="removeDomain(ruleForm.link_acl,index)"></el-button>
+                </el-col>
+              </el-row>
+            </el-form-item>
+          </el-tab-pane>
+
+          <el-tab-pane label="域名拆分隧道" name="ds_domains">
+            <el-form-item label="包含域名" prop="ds_include_domains">
+              <el-input type="textarea" :rows="5" v-model="ruleForm.ds_include_domains"
+                        placeholder="输入域名用,号分隔，默认匹配所有子域名, 如baidu.com,163.com"></el-input>
+            </el-form-item>
+            <el-form-item label="排除域名" prop="ds_exclude_domains">
+              <el-input type="textarea" :rows="5" v-model="ruleForm.ds_exclude_domains"
+                        placeholder="输入域名用,号分隔，默认匹配所有子域名, 如baidu.com,163.com"></el-input>
+              <div class="msg-info">注：域名拆分隧道，仅支持AnyConnect的windows和MacOS桌面客户端，不支持移动端.</div>
+            </el-form-item>
+          </el-tab-pane>
+          <el-form-item>
+            <templete v-if="activeTab == 'authtype' && ruleForm.auth.type != 'local'">
+              <el-button @click="openAuthLoginDialog()" style="margin-right:10px">测试登录</el-button>
+            </templete>
+            <el-button type="primary" @click="submitForm('ruleForm')">保存</el-button>
+            <el-button @click="closeDialog">取消</el-button>
+          </el-form-item>
+        </el-tabs>
+      </el-form>
     </el-dialog>
     <!--测试用户登录弹出框-->
     <el-dialog
@@ -402,36 +463,41 @@
         width="600px"
         custom-class="valgin-dialog"
         center>
-        <el-form :model="authLoginForm" :rules="authLoginRules" ref="authLoginForm" label-width="100px">
-            <el-form-item label="账号" prop="name">
-                <el-input v-model="authLoginForm.name" ref="authLoginFormName" @keydown.enter.native="testAuthLogin"></el-input>
-            </el-form-item>
-            <el-form-item label="密码" prop="pwd">
-                <el-input type="password" v-model="authLoginForm.pwd" @keydown.enter.native="testAuthLogin"></el-input>
-            </el-form-item>
-            <el-form-item>
-                <el-button type="primary" @click="testAuthLogin()" :loading="authLoginLoading">登录</el-button>
-                <el-button @click="authLoginDialog = false">取 消</el-button>
-            </el-form-item>
-        </el-form>
+      <el-form :model="authLoginForm" :rules="authLoginRules" ref="authLoginForm" label-width="100px">
+        <el-form-item label="账号" prop="name">
+          <el-input v-model="authLoginForm.name" ref="authLoginFormName"
+                    @keydown.enter.native="testAuthLogin"></el-input>
+        </el-form-item>
+        <el-form-item label="密码" prop="pwd">
+          <el-input type="password" v-model="authLoginForm.pwd" @keydown.enter.native="testAuthLogin"></el-input>
+        </el-form-item>
+        <el-form-item>
+          <el-button type="primary" @click="testAuthLogin()" :loading="authLoginLoading">登录</el-button>
+          <el-button @click="authLoginDialog = false">取 消</el-button>
+        </el-form-item>
+      </el-form>
     </el-dialog>
     <!--编辑模式弹窗-->
     <el-dialog
-    :close-on-click-modal="false"
-    title="编辑模式"
-    :visible.sync="ipListDialog"
-    width="650px"
-    custom-class="valgin-dialog"
-    center>
+        :close-on-click-modal="false"
+        title="编辑模式"
+        :visible.sync="ipListDialog"
+        width="650px"
+        custom-class="valgin-dialog"
+        center>
       <el-form ref="ipEditForm" label-width="80px">
-          <el-form-item label="路由表" prop="ip_list">
-              <el-input type="textarea" :rows="10" v-model="ipEditForm.ip_list" placeholder="每行一条路由，例：192.168.1.0/24,备注 或 192.168.1.0/24"></el-input>
-              <div class="msg-info">当前共 {{ ipEditForm.ip_list.trim() === '' ? 0 : ipEditForm.ip_list.trim().split("\n").length }} 条（注：AnyConnect客户端最多支持{{ this.maxRouteRows }}条路由）</div>
-          </el-form-item>
-          <el-form-item>
-              <el-button type="primary" @click="ipEdit()" :loading="ipEditLoading">更新</el-button>
-              <el-button @click="ipListDialog = false">取 消</el-button>
-          </el-form-item>
+        <el-form-item label="路由表" prop="ip_list">
+          <el-input type="textarea" :rows="10" v-model="ipEditForm.ip_list"
+                    placeholder="每行一条路由，例：192.168.1.0/24,备注 或 192.168.1.0/24"></el-input>
+          <div class="msg-info">当前共
+            {{ ipEditForm.ip_list.trim() === '' ? 0 : ipEditForm.ip_list.trim().split("\n").length }}
+            条（注：AnyConnect客户端最多支持{{ this.maxRouteRows }}条路由）
+          </div>
+        </el-form-item>
+        <el-form-item>
+          <el-button type="primary" @click="ipEdit()" :loading="ipEditLoading">更新</el-button>
+          <el-button @click="ipListDialog = false">取 消</el-button>
+        </el-form-item>
       </el-form>
     </el-dialog>
   </div>
@@ -457,47 +523,48 @@ export default {
       page: 1,
       tableData: [],
       count: 10,
-      activeTab : "general",
+      activeTab: "general",
       readMore: {},
-      readMinRows : 5,
-      maxRouteRows : 2500,
-      defAuth : {
-                type:'local',
-                radius:{addr:"", secret:""},
-                ldap:{
-                      addr:"",
-                      tls:false,
-                      base_dn:"",
-                      object_class:"person",
-                      search_attr:"sAMAccountName",
-                      member_of:"",
-                      bind_name:"",
-                      bind_pwd:"",
-                      },
+      readMinRows: 5,
+      maxRouteRows: 2500,
+      defAuth: {
+        type: 'local',
+        radius: {addr: "", secret: ""},
+        ldap: {
+          addr: "",
+          tls: false,
+          base_dn: "",
+          object_class: "person",
+          search_attr: "sAMAccountName",
+          member_of: "",
+          bind_name: "",
+          bind_pwd: "",
+        },
       },
       ruleForm: {
         bandwidth: 0,
         bandwidth_format: '0',
         status: 1,
         allow_lan: true,
-        client_dns: [{val: '114.114.114.114'}],
+        client_dns: [{val: '114.114.114.114', note: '默认dns'}],
+        split_dns: [],
         route_include: [{val: 'all', note: '默认全局代理'}],
         route_exclude: [],
         link_acl: [],
-        auth : {},
+        auth: {},
       },
-      authLoginDialog : false,
-      ipListDialog : false,
-      authLoginLoading : false,
-      authLoginForm : {
-        name : "",
-        pwd : "",
+      authLoginDialog: false,
+      ipListDialog: false,
+      authLoginLoading: false,
+      authLoginForm: {
+        name: "",
+        pwd: "",
       },
       ipEditForm: {
         ip_list: "",
-        type : "",
+        type: "",
       },
-      ipEditLoading : false,
+      ipEditLoading: false,
       authLoginRules: {
         name: [
           {required: true, message: '请输入账号', trigger: 'blur'},
@@ -548,11 +615,11 @@ export default {
   },
   methods: {
     setAuthData(row) {
-      if (! row) {
+      if (!row) {
         this.ruleForm.auth = JSON.parse(JSON.stringify(this.defAuth));
-        return ;
+        return;
       }
-      if (row.auth.type == "ldap" && ! row.auth.ldap.object_class) {
+      if (row.auth.type == "ldap" && !row.auth.ldap.object_class) {
         row.auth.ldap.object_class = this.defAuth.ldap.object_class;
       }
       this.ruleForm.auth = Object.assign(JSON.parse(JSON.stringify(this.defAuth)), row.auth);
@@ -624,7 +691,8 @@ export default {
       // arr.pop()
     },
     addDomain(arr) {
-      arr.push({val: "", action: "allow", port: 0});
+      console.log("arr", arr)
+      arr.push({val: "", action: "allow", port: "0", note: ""});
     },
     submitForm(formName) {
       this.$refs[formName].validate((valid) => {
@@ -650,29 +718,31 @@ export default {
       });
     },
     testAuthLogin() {
-        this.$refs["authLoginForm"].validate((valid) => {
-            if (!valid) {
-                console.log('error submit!!');
-                return false;
-            }
-            this.authLoginLoading = true;
-            axios.post('/group/auth_login', {name:this.authLoginForm.name,
-                                            pwd:this.authLoginForm.pwd,
-                                            auth:this.ruleForm.auth}).then(resp => {
-                    const rdata = resp.data;
-                    if (rdata.code === 0) {
-                        this.$message.success("登录成功");
-                    } else {
-                        this.$message.error(rdata.msg);
-                    }
-                    this.authLoginLoading = false;
-                    console.log(rdata);
-                }).catch(error => {
-                    this.$message.error('哦，请求出错');
-                    console.log(error);
-                    this.authLoginLoading = false;
-            });
+      this.$refs["authLoginForm"].validate((valid) => {
+        if (!valid) {
+          console.log('error submit!!');
+          return false;
+        }
+        this.authLoginLoading = true;
+        axios.post('/group/auth_login', {
+          name: this.authLoginForm.name,
+          pwd: this.authLoginForm.pwd,
+          auth: this.ruleForm.auth
+        }).then(resp => {
+          const rdata = resp.data;
+          if (rdata.code === 0) {
+            this.$message.success("登录成功");
+          } else {
+            this.$message.error(rdata.msg);
+          }
+          this.authLoginLoading = false;
+          console.log(rdata);
+        }).catch(error => {
+          this.$message.error('哦，请求出错');
+          console.log(error);
+          this.authLoginLoading = false;
         });
+      });
     },
     openAuthLoginDialog() {
       this.$refs["ruleForm"].validate((valid) => {
@@ -683,7 +753,7 @@ export default {
         this.authLoginDialog = true;
         // set authLoginFormName focus
         this.$nextTick(() => {
-            this.$refs['authLoginFormName'].focus();
+          this.$refs['authLoginFormName'].focus();
         });
       });
     },
@@ -693,63 +763,63 @@ export default {
       this.ipEditForm.ip_list = this.ruleForm[type].map(item => item.val + (item.note ? "," + item.note : "")).join("\n");
     },
     ipEdit() {
-        this.ipEditLoading = true;
-        let ipList = [];
-        if (this.ipEditForm.ip_list.trim() !== "") {
-            ipList = this.ipEditForm.ip_list.trim().split("\n");
+      this.ipEditLoading = true;
+      let ipList = [];
+      if (this.ipEditForm.ip_list.trim() !== "") {
+        ipList = this.ipEditForm.ip_list.trim().split("\n");
+      }
+      let arr = [];
+      for (let i = 0; i < ipList.length; i++) {
+        let item = ipList[i];
+        if (item.trim() === "") {
+          continue;
         }
-        let arr = [];
-        for (let i = 0; i < ipList.length; i++) {
-          let item = ipList[i];
-          if (item.trim() === "") {
-            continue;
-          }
-          let ip = item.split(",");
-          if (ip.length > 2) {
-            ip[1] = ip.slice(1).join(",");
-          }
-          let note = ip[1] ? ip[1] : "";
-          const pushToArr = () => {
-            arr.push({val: ip[0], note: note});
-          };
-          if (this.ipEditForm.type == "route_include" && ip[0] == "all") {
-            pushToArr();
-            continue;
-          }
-          let valid = this.isValidCIDR(ip[0]);
-          if (!valid.valid) {
-                this.$message.error("错误：CIDR格式错误，建议 " + ip[0] + " 改为 " + valid.suggestion);
-                this.ipEditLoading = false;
-                return;
-          }
+        let ip = item.split(",");
+        if (ip.length > 2) {
+          ip[1] = ip.slice(1).join(",");
+        }
+        let note = ip[1] ? ip[1] : "";
+        const pushToArr = () => {
+          arr.push({val: ip[0], note: note});
+        };
+        if (this.ipEditForm.type == "route_include" && ip[0] == "all") {
           pushToArr();
+          continue;
         }
-        this.ruleForm[this.ipEditForm.type] = arr;
-        this.ipEditLoading = false;
-        this.ipListDialog = false;
+        let valid = this.isValidCIDR(ip[0]);
+        if (!valid.valid) {
+          this.$message.error("错误：CIDR格式错误，建议 " + ip[0] + " 改为 " + valid.suggestion);
+          this.ipEditLoading = false;
+          return;
+        }
+        pushToArr();
+      }
+      this.ruleForm[this.ipEditForm.type] = arr;
+      this.ipEditLoading = false;
+      this.ipListDialog = false;
     },
     isValidCIDR(input) {
-        const cidrRegex = /^((25[0-5]|2[0-4]\d|[01]?\d\d?)\.){3}(25[0-5]|2[0-4]\d|[01]?\d\d?)\/([12]?\d|3[0-2])$/;
-        if (!cidrRegex.test(input)) {
-            return { valid: false, suggestion: null };
+      const cidrRegex = /^((25[0-5]|2[0-4]\d|[01]?\d\d?)\.){3}(25[0-5]|2[0-4]\d|[01]?\d\d?)\/([12]?\d|3[0-2])$/;
+      if (!cidrRegex.test(input)) {
+        return {valid: false, suggestion: null};
+      }
+      const [ip, mask] = input.split('/');
+      const maskNum = parseInt(mask);
+      const ipParts = ip.split('.').map(part => parseInt(part));
+      const binaryIP = ipParts.map(part => part.toString(2).padStart(8, '0')).join('');
+      for (let i = maskNum; i < 32; i++) {
+        if (binaryIP[i] === '1') {
+          const binaryNetworkPart = binaryIP.substring(0, maskNum).padEnd(32, '0');
+          const networkIPParts = [];
+          for (let j = 0; j < 4; j++) {
+            const octet = binaryNetworkPart.substring(j * 8, (j + 1) * 8);
+            networkIPParts.push(parseInt(octet, 2));
+          }
+          const suggestedIP = networkIPParts.join('.');
+          return {valid: false, suggestion: `${suggestedIP}/${mask}`};
         }
-        const [ip, mask] = input.split('/');
-        const maskNum = parseInt(mask);
-        const ipParts = ip.split('.').map(part => parseInt(part));
-        const binaryIP = ipParts.map(part => part.toString(2).padStart(8, '0')).join('');
-        for (let i = maskNum; i < 32; i++) {
-            if (binaryIP[i] === '1') {
-                const binaryNetworkPart = binaryIP.substring(0, maskNum).padEnd(32, '0');
-                const networkIPParts = [];
-                for (let j = 0; j < 4; j++) {
-                    const octet = binaryNetworkPart.substring(j * 8, (j + 1) * 8);
-                    networkIPParts.push(parseInt(octet, 2));
-                }
-                const suggestedIP = networkIPParts.join('.');
-                return { valid: false, suggestion: `${suggestedIP}/${mask}` };
-            }
-        }
-        return { valid: true, suggestion: null };
+      }
+      return {valid: true, suggestion: null};
     },
     resetForm(formName) {
       this.$refs[formName].resetFields();
@@ -766,7 +836,7 @@ export default {
     },
     beforeTabLeave() {
       var isSwitch = true
-      if (! this.user_edit_dialog) {
+      if (!this.user_edit_dialog) {
         return isSwitch;
       }
       this.$refs['ruleForm'].validate((valid) => {
@@ -783,16 +853,16 @@ export default {
       this.activeTab = "general";
     },
     convertBandwidth(bandwidth, fromUnit, toUnit) {
-        const units = {
-            bps: 1,
-            Kbps: 1000,
-            Mbps: 1000000,
-            Gbps: 1000000000,
-            BYTE: 8,
-        };
-        const result = bandwidth * units[fromUnit] / units[toUnit];
-        const fixedResult = result.toFixed(2);
-        return parseFloat(fixedResult);
+      const units = {
+        bps: 1,
+        Kbps: 1000,
+        Mbps: 1000000,
+        Gbps: 1000000000,
+        BYTE: 8,
+      };
+      const result = bandwidth * units[fromUnit] / units[toUnit];
+      const fixedResult = result.toFixed(2);
+      return parseFloat(fixedResult);
     }
   },
 }
@@ -813,19 +883,20 @@ export default {
   width: 80px;
 }
 
-::v-deep .valgin-dialog{
-    display: flex;
-    flex-direction: column;
-    margin:0 !important;
-    position:absolute;
-    top:50%;
-    left:50%;
-    transform:translate(-50%,-50%);
-    max-height:calc(100% - 30px);
-    max-width:calc(100% - 30px);
+::v-deep .valgin-dialog {
+  display: flex;
+  flex-direction: column;
+  margin: 0 !important;
+  position: absolute;
+  top: 50%;
+  left: 50%;
+  transform: translate(-50%, -50%);
+  max-height: calc(100% - 30px);
+  max-width: calc(100% - 30px);
 }
-::v-deep  .valgin-dialog .el-dialog__body{
-    flex:1;
-    overflow: auto;
+
+::v-deep .valgin-dialog .el-dialog__body {
+  flex: 1;
+  overflow: auto;
 }
 </style>