RouterOS update through external explicit proxy

Hi all,

Between my MikroTik and Internet I have explicit proxy on port 8080 for web traffic (80 i 443).
In order to go to the Internet I have to setup proxy IP and port within my browser and everything is working fine.

I had a problem when I wanted to setup my MikroTik to also use this proxy for checking and downloading RouterOS updates.

Tried to mark packets from output chain and use srcnat rule to “translite” 80 and 443 ports to my proxy port, but this seems not to work.
When I click check for updates, via Torch I can see packets leaving router with proxy destination port, but my check keeps “timeing out”.

Does anyone have some idea what is going on here and how to set this up correctly?

Thanks in advance and kind regards.

I guess nobody has tried this.

Can someone (MikroTik guys maybe) at least explain how this process works in little more detail (when i click on Packages → Check for updates)?

I’ve searched forum and Internet and found really nothing about it.

Kind regards!

I don’t think there’s any support for using proxy when checking for updates. It’s just regular http request to target server (and router needs to be able to resolve hostname first, so DNS must not be blocked, which could be the case with proxy). Then to be able to redirect it, you would need dstnat, not srcnat. And dstnat in output chain is not available in RouterOS (only with very ugly trick).

Well, it’s really dirty - but I will definitely try this.
Thank you Sob!

Not sure why this is not already implemented in RouterOS.

Kind regards!