Oracle iPlanet Web Proxy Server 4.0.14 Administration Guide

Configuring SOCKS v5 Connection Entries

SOCKS connection entries specify whether the SOCKS daemon should permit or deny a request.

ProcedureTo Create Connection Entries

  1. Access the Server Manager for a server instance and click the SOCKS tab.

  2. Click the Set SOCKS v5 Connections link.

  3. Click the Add button.

  4. From the Authentication Type drop-down list, select the authentication method for which this access control line applies.

  5. From the Connection Type drop-down list, select the type of command the line matches. Possible command types are:

    • Connect

      • Bind

      • UDP

      • All

  6. In the Source Host Mask field, type the IP address or host names of the hosts for which the connection control entry applies.

    If you type an IP address, follow it with a forward slash and the mask to be applied to the source’s IP address. The SOCKS server applies this mask to the source’s IP address to determine if it is a valid host. Do not use spaces in the host mask entry. If you do not type a host mask, the connection entry applies to all hosts.

    For example, you can type 155.25.0.0/255.255.0.0 in the host mask field. If the host’s IP address is 155.25.3.5, the SOCKS server applies the mask to the IP address and determines that the host’s IP address matches the IP address for which the connection control entry applies (155.25.0.0).

  7. In the Port Range field, type the ports on the source computers for which the connection control entry applies.

    Do not use spaces in the port range entry. If you do not specify a port range, the connection entry applies to all ports.

    You can use brackets [ ] to include the ports at each end of the range or parentheses ( ) to exclude them. For example, [1000-1010] means all port numbers between and including 1000 and 1010, while (1000-1010) means all port numbers between, but not including, 1000 and 1010. You can also mix brackets and parentheses. For instance, (1000-1010] means all numbers between 1000 and 1010, excluding 1000, but including 1010.

  8. In the Destination Host Mask field, type the IP address or host name for which the connection entry applies.

    If you type an IP address, follow it with a forward slash and the mask to be applied to the incoming IP address. The SOCKS server applies this mask to the IP address of the destination computer to determine if it is a valid destination host. Do not use spaces in the host mask entry. If you do not type a destination host mask, the connection entry applies to all hosts.

    For example, you can type 155.25.0.0/255.255.0.0 into the destination host mask field. If the destination host’s IP address is 155.25.3.5, the SOCKS server applies the mask to the IP address and determines that the destination host’s IP address matches the IP address for which the proxy entry applies (155.25.0.0).

  9. In the Port Range field, type the ports on the destination host computers for which the connection control entry applies.

    Do not use spaces in the port range entry. If you do not type a port range, the connection entry applies to all ports.


    Note –

    Most SOCKS applications request port 0 for bind requests, meaning they have no port preference. Therefore, the destination port range for bind should always include port 0.


    You can use brackets [ ] to include the ports at each end of the range or parentheses ( ) to exclude them. For example, [1000-1010] means all port numbers between and including 1000 and 1010, while (1000-1010) means all port numbers between, but not including, 1000 and 1010. You can also mix brackets and parentheses. For instance, (1000-1010] means all numbers between 1000 and 1010, excluding 1000, but including 1010.

  10. In the User Group field, type the group to which you want to permit or deny access.

    If a group is not specified, the connection entry applies to all users.

  11. From the Action drop-down list, choose to permit or deny access for the connection you are creating.

  12. From the Insert drop-down list, select the position for this entry in the socks5.conf file and click OK.

    Because you can have multiple connection directives, you must specify the order in which they are evaluated.

ProcedureTo Edit Connection Entries

  1. Access the Server Manager for a server instance and click the SOCKS tab.

  2. Click the Set SOCKS v5 Connections link.

  3. Select the connection entry you want to edit and click the Edit button.

  4. Make changes as desired.

  5. Click OK.

ProcedureTo Delete Connection Entries

  1. Access the Server Manager for a server instance and click the SOCKS tab.

  2. Click the Set SOCKS v5 Connections link.

  3. Select the connection entry you want to delete.

  4. Click the Delete button.

ProcedureTo Move Connection Entries

Entries are evaluated in the order in which they appear in the socks5.conf file. You can change the order by moving them.

  1. Access the Server Manager for a server instance and click the SOCKS tab.

  2. Click the Set SOCKS v5 Connections link.

  3. Select the connection entry you want to move.

  4. Click the Move button.

  5. From the Move drop-down list, select the position for this entry in the socks5.conf file and click OK.