diff --git a/component/tls/reality.go b/component/tls/reality.go
index 732613d84..dbd4bf410 100644
--- a/component/tls/reality.go
+++ b/component/tls/reality.go
@@ -41,6 +41,7 @@ func GetRealityConn(ctx context.Context, conn net.Conn, ClientFingerprint string
 		}
 		uConfig := &utls.Config{
 			ServerName:             tlsConfig.ServerName,
+			NextProtos:             tlsConfig.NextProtos,
 			InsecureSkipVerify:     true,
 			SessionTicketsDisabled: true,
 			VerifyPeerCertificate:  verifier.VerifyPeerCertificate,
diff --git a/component/tls/utls.go b/component/tls/utls.go
index a7189aa8f..e08ca7eea 100644
--- a/component/tls/utls.go
+++ b/component/tls/utls.go
@@ -89,6 +89,7 @@ func copyConfig(c *tls.Config) *utls.Config {
 	return &utls.Config{
 		RootCAs:               c.RootCAs,
 		ServerName:            c.ServerName,
+		NextProtos:            c.NextProtos,
 		InsecureSkipVerify:    c.InsecureSkipVerify,
 		VerifyPeerCertificate: c.VerifyPeerCertificate,
 	}
diff --git a/transport/gun/gun.go b/transport/gun/gun.go
index 8eafdc50c..ae2ea6a46 100644
--- a/transport/gun/gun.go
+++ b/transport/gun/gun.go
@@ -217,7 +217,7 @@ func NewHTTP2Client(dialFn DialFn, tlsConfig *tls.Config, Fingerprint string, re
 					return utlsConn, nil
 				}
 			} else {
-				realityConn, err := tlsC.GetRealityConn(ctx, pconn, Fingerprint, tlsConfig, realityConfig)
+				realityConn, err := tlsC.GetRealityConn(ctx, pconn, Fingerprint, cfg, realityConfig)
 				if err != nil {
 					pconn.Close()
 					return nil, err