Scribd
Upload
234K views

Socks Proxy Server

The document provides information about configuring and using a SOCKS proxy server on a RouterOS device. It describes the specifications and components of SOCKS, how to configure SOCKS server settings like access lists and active connections, and provides an example of using a SOCKS server for FTP access.

Uploaded by

trezeguet37
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
234K views

Socks Proxy Server

The document provides information about configuring and using a SOCKS proxy server on a RouterOS device. It describes the specifications and components of SOCKS, how to configure SOCKS server settings like access lists and active connections, and provides an example of using a SOCKS server for FTP access.

Uploaded by

trezeguet37
Copyright
© Attribution Non-Commercial (BY-NC)
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

SOCKS Proxy Server

Document revision 1.3 (Fri Apr 15 17:51:27 GMT 2005)


This document applies to V2.9

Table of Contents
Table of Contents
Summary
Specifications
Related Documents
Description
Notes
Additional Documents
SOCKS Configuration
Description
Property Description
Example
Access List
Description
Property Description
Active Connections
Description
Property Description
Example
FTP service through SOCKS server

General Information

Summary

 
         
 
    
   


Specifications
Packages required: system
License required: level1
Home menu level: /ip socks
Standards and Technologies: SOCKS version 4
Hardware usage: Not significant

Related Documents

•• !" #
• $%

Page 1 of 5
Copyright 1999-2006, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Description

       # "    


      & ' 
& 
&  "         


 &   
 '   
"
 & 
 ' (' !!!' )#' *+$*'


% &'
  
 
 

     ' 


    
 access
      
         
 
' &    ' 
           

  


"
   


 


Notes

"  
&(      
 
    


,       


(   
- &     &   
)  
(         
        
'
      &
   
.
    (   

Additional Documents

• /
& 
"  

SOCKS Configuration

Description

/
 
   
  
"     
  
&(  


Property Description
connection-idle-timeout (time; default: 2m) - time after which idle connections are terminated
enabled (yes | no; default: no) - whether to enable or no the SOCKS proxy
max-connections (integer: 1..500; default: 200) - maxumum number of simultaneous connections
port (integer: 1..65535; default: 1080) - TCP port on which the SOCKS server listens for
connections

Example

 
"  0
[admin@MikroTik] ip socks> set enabled=yes
[admin@MikroTik] ip socks> print
enabled: yes
port: 1080
connection-idle-timeout: 2m
max-connections: 200
[admin@MikroTik] ip socks>

Page 2 of 5
Copyright 1999-2006, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
Access List
Home menu level: /ip socks access

Description

/
     
    
          
& 

Property Description
action (allow | deny; default: allow) - action to be performed for this rule
• allow - allow packets, matching this rule to be forwarded for further processing
• deny - deny access for packets, matching this rule
dst-address (IP address | netmask | port) - destination (server's) address
src-address (IP address | netmask | port) - source (client's) address for a packet

Active Connections
Home menu level: /ip socks connections

Description

 % 


   "  # 


'    
 
  (  
 

Property Description
dst-address (read-only: IP address) - destination (application server) IP address
RX (read-only: integer) - bytes received
src-address (read-only: IP address) - source (application client) IP address
TX (read-only: integer) - bytes sent

Example

   
 # 


0
[admin@MikroTik] ip socks connections> print
# SRC-ADDRESS DST-ADDRESS TX RX
0 192.168.0.2:3242 159.148.147.196:80 4847 2880
1 192.168.0.2:3243 159.148.147.196:80 3408 2127
2 192.168.0.2:3246 159.148.95.16:80 10172 25207
3 192.168.0.2:3248 194.8.18.26:80 474 1629
4 192.168.0.2:3249 159.148.95.16:80 6477 18695
5 192.168.0.2:3250 159.148.95.16:80 4137 27568
6 192.168.0.2:3251 159.148.95.16:80 1712 14296
7 192.168.0.2:3258 80.91.34.241:80 314 208
8 192.168.0.2:3259 80.91.34.241:80 934 524
9 192.168.0.2:3260 80.91.34.241:80 930 524
10 192.168.0.2:3261 80.91.34.241:80 312 158
11 192.168.0.2:3262 80.91.34.241:80 312 158

Page 3 of 5
Copyright 1999-2006, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
[admin@MikroTik] ip socks connections>

Application Examples

FTP service through SOCKS server

+  
      
 192.168.0.0/24    1   ' 
(     " 
/# 10.1.0.104/24
  /# 192.168.0.1/24  

 
)#   /#
 10.5.8.8 ! 
      )#  &  
 
  
  /#
 192.168.0.2/24

!      1     
0

[admin@MikroTik] ip firewall nat> print


Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat src-address=192.168.0.0/24 action=masquerade
[admin@MikroTik] ip firewall nat>

%
    "  )#   
 
& 0

[admin@MikroTik] ip firewall filter> print


Flags: X - disabled, I - invalid, D - dynamic
0 chain=forward src-address=192.168.0.0/24 dst-address=:21 action=drop
[admin@MikroTik] ip firewall filter>

!
  
"    0

[admin@MikroTik] ip socks> set enabled=yes


[admin@MikroTik] ip socks> print
enabled: yes
port: 1080
connection-idle-timeout: 2m
max-connections: 200
[admin@MikroTik] ip socks>

%    
 
/#  192.168.0.2/32    '   
& & )#
   
 2  

 & 345  67787 &
 /# 9'
 
(  0

[admin@MikroTik] ip socks access> add src-address=192.168.0.2/32 dst-address=:21


action=allow
[admin@MikroTik] ip socks access> add dst-address=:1024-65535 action=allow
[admin@MikroTik] ip socks access> add action=deny
[admin@MikroTik] ip socks access> print
Flags: X - disabled
0 src-address=192.168.0.2/32 dst-address=:21 action=allow
1 dst-address=:1024-65535 action=allow
2 action=deny
[admin@MikroTik] ip socks access>

 : ;     


&(      



 

 0

[admin@MikroTik] ip socks connections> print


# SRC-ADDRESS DST-ADDRESS TX RX
0 192.168.0.2:1238 10.5.8.8:21 1163 4625
1 192.168.0.2:1258 10.5.8.8:3423 0 3231744
[admin@MikroTik] ip socks connections>

Note! /
      '     &  /# 
 
  )#  
 /

Page 4 of 5
Copyright 1999-2006, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.
   /#   " 192.168.0.1 2 :- :  /#9
 1080

Page 5 of 5
Copyright 1999-2006, MikroTik. All rights reserved. Mikrotik, RouterOS and RouterBOARD are trademarks of Mikrotikls SIA.
Other trademarks and registred trademarks mentioned herein are properties of their respective owners.

You might also like