Introduction to Socks5 Proxy Protocol

Part 01. Socks5 protocol concept

Socks5 is a proxy protocol that plays an intermediary role between the front-end machine and the server using the TCP/IP protocol to communicate, allowing the front-end machine in the intranet to access the server in the Internet. Compared with the earlier SOCKS protocol version, SOCKS5 has the following main functions and features:

(1) Support IPv4 and IPv6 : SOCKS5 protocol can support both IPv4 and IPv6 addresses to meet the needs of different network environments.

(2) User authentication: SOCKS5 supports multiple user authentication methods, such as username/password authentication, GSS-API authentication, etc., which increases the security of the connection.

(3) Data encryption : The SOCKS5 protocol can encrypt data through encryption protocols such as TLS/SSL to protect data security.

(4) UDP forwarding : Compared with the SOCKS4 protocol, the SOCKS5 protocol supports UDP forwarding and can transmit UDP data in the proxy connection.

The commonly used socks5 proxy software are as follows.

• Shadowsocks : An open source proxy software that provides encryption and tunneling technology to protect the security of data transmission
  
• Proxifier : A popular proxy software that allows web applications to connect to the target server through a SOCKS5 proxy
  
• Dante : A high-performance SOCKS5 proxy server that supports multiple authentication methods and flexible configuration options
  
• PuTTY : An SSH and Telnet client that can also be used as a SOCKS5 proxy software, providing secure proxy connections through SSH tunnels
  
• OpenSSH : an open source software for remote login and file transfer, which can also be configured as a SOCKS5 proxy server
  
• Tor : An anonymous network tool that can connect to the Tor network through a SOCKS5 proxy to protect user privacy and anonymity.

Part 02. Sock5 protocol interaction process

The socks protocol interaction process is as follows. The interaction details are shown in Figure 1, and the data packet format is shown in Figure 2.

(1) The PC initiates a connection request to access the server.

(2) The connection request is intercepted by the socks5 client, and then the socks5 client actively establishes a TCP connection with the socks5 proxy server.

(3) The socks5 client actively authenticates with the socks5 proxy server.

(4) After authentication, the socks5 proxy server actively establishes a connection with the server. If the PC initiates a TCP request, a TCP request connection is established; otherwise, a UDP request connection is established.

(5) After the request is established, data is exchanged between the socks5 proxy server and the server.

(6) The socks5 proxy server forwards the data to the socks5 client through the socket.

(7) The socks5 client forwards the data to the PC.

Figure 1 Socks5 protocol interaction process

Figure 2 Socks5 protocol data packet format

Part 03. Sock5 application scenarios

The SOCKS5 protocol plays an important role in a variety of application scenarios. The following are some common application scenarios:

Figure 3 Socks5 general deployment topology

• Bypass network blocks : In some regions or organizations, there may be network blocks that restrict users from accessing specific websites or services. By using a SOCKS5 proxy, users can bypass these blocks and access restricted content.
  
• Speed ​​up network connection : Sometimes users may experience slow network connection or high latency. By using a SOCKS5 proxy, you can select a faster proxy server, thereby improving network connection speed and response time.
  
• Bypass geographic restrictions : Some websites or services may be restricted based on the user's geographical location. By using a SOCKS5 proxy, users can disguise their IP address, bypass geographic restrictions, and access restricted content.
  
• Intranet : In an intranet, the use of SOCKS5 proxy can achieve access control and management of internal resources, improving network security and management efficiency.

Part 04. Application of Sock5 protocol in home broadband  

In the home broadband network environment, in order to solve the problem of slow network connection speed or high latency and provide differentiated high-quality network experience, China Mobile provides intelligent network intelligent acceleration service, which imports user traffic into the accelerated network through socks5 tunnel, reduces the latency of game access, and solves problems such as lag and packet loss. In this scenario, the socks5 client and socks5 server are modified, the client directly initiates the socks5 request, and the server receives the request and proxies the request.

Figure 4 Socks5 topology in home broadband scenario

Part 05. Summary

The SOCKS5 protocol is an application layer protocol used to establish a proxy connection between a client and a proxy server. It supports TCP and UDP transport protocols and can proxy connections for various application layer protocols. The SOCKS5 protocol relays client requests through a proxy server, providing functions such as bypassing network blockades, improving network security, accelerating network connections, and bypassing geographic restrictions. Through encryption protocols, the SOCKS5 protocol can protect the security of data. In general, the SOCKS5 protocol has a wide range of applications in network proxy and tunneling technology, providing users with a safer and freer network access experience.