Configure your socks application – WatchGuard Technologies SOHO User Manual

Firewall Options

72

• SOHO supports SOCKS version 5 only.

• It is a limited version of SOCKS and does not support

authentication, nor does it support Domain Name System
(DNS) resolution.

C

AUTION

Configure the particular application so that it will

not

attempt to make

DNS look-ups with SOCKS. However, some applications use only DNS
through SOCKS and therefore will not function properly with the SOHO.

• Compatible SOCKS-aware applications that can be used

through the SOHO include ICQ, IRC, and AOL Messenger.

• When you open a SOCKS application, it opens a “hole” in

the SOHO firewall that is available to anyone on your
trusted network. SOCKS applications therefore pose a
significant security risk. To disable the port and close the
security risk, see “Disabling SOCKS on the SOHO” on
page 73.

Configure your SOCKS application

Other than ensuring that port 1080 is open to run a SOCKS-
dependent application, the rest of the configuration tasks must be
done with the SOCKS-dependent application. Different
applications may have variations in their settings, but you must
configure the SOCKS-dependent application, using the application
user interface, to certain parameters to enable the SOHO to pass
SOCKS applications:

• If you can choose different services or versions of SOCKS,

choose SOCKS version 5.

• Select port 1080 for the application