WatchGuard Technologies SOHO Network Card User Manual


 
Firewall Options
72
SOHO supports SOCKS version 5 only.
It is a limited version of SOCKS and does not support
authentication, nor does it support Domain Name System
(DNS) resolution.
CAUTION
Configure the particular application so that it will
not
attempt to make
DNS look-ups with SOCKS. However, some applications use only DNS
through SOCKS and therefore will not function properly with the SOHO.
Compatible SOCKS-aware applications that can be used
through the SOHO include ICQ, IRC, and AOL Messenger.
When you open a SOCKS application, it opens a “hole” in
the SOHO firewall that is available to anyone on your
trusted network. SOCKS applications therefore pose a
significant security risk. To disable the port and close the
security risk, see “Disabling SOCKS on the SOHO” on
page 73.
Configure your SOCKS application
Other than ensuring that port 1080 is open to run a SOCKS-
dependent application, the rest of the configuration tasks must be
done with the SOCKS-dependent application. Different
applications may have variations in their settings, but you must
configure the SOCKS-dependent application, using the application
user interface, to certain parameters to enable the SOHO to pass
SOCKS applications:
If you can choose different services or versions of SOCKS,
choose SOCKS version 5.
Select port 1080 for the application