How to Check If a Proxy Is Working

An IP-check page is only the first test. Verify proxy protocol, authentication, HTTPS, DNS, browser routes, latency, stability, and destination behavior.

Reviewed under the Mexela Editorial Policy.

Network technician testing a proxy on a terminal beside a globe, server rack, and measurement display

To check if proxy is working, use more than a proxy checker: test proxy IP, run a proxy speed test, perform a proxy DNS test, and verify proxy behavior over time.

To check whether a proxy is working, first confirm that a request succeeds through the configured host, port, protocol, and authentication. Then verify the observed public IP, HTTPS certificate validation, DNS route, browser side channels, latency, stability, and the response from the real destination. An IP-echo page proves only one request used one route.

Test in layers and save the evidence. If you change the endpoint, credentials, application, and destination at once, you will not know what fixed or broke the connection.

Start with the configuration, not a checker site

Compare the host, port, protocol, username, password, and allowlisted source IP with the current allocation. HTTP and SOCKS5 begin with different handshakes. A valid server on the wrong protocol can look dead or return nonsense.

Use a simple client such as curl before debugging a browser extension or large script. Keep credentials out of screenshots and shared shell history. The setup patterns in our cross-platform proxy guide show how configuration scope differs.

Confirm the public egress address

Make one HTTPS request to a reputable IP-echo service and compare the result with your direct public address. The values should differ when the proxy uses another egress. Check the address with more than one service if the result matters, and inspect network registration through an authoritative registry interface such as ARIN RDAP.

Geolocation is an estimate. Two databases may report different cities, and a newly assigned range can take time to update. Validate the country or region relevant to your test instead of treating one city label as physical proof.

Test HTTPS and certificate validation

Request a simple HTTPS destination with normal certificate checks enabled. A successful result exercises the proxy handshake, tunneling, TLS, and HTTP response. Never solve an error by disabling certificate validation. Check the hostname, system clock, trust store, and whether another inspection proxy is present.

Plain HTTP success is weaker evidence because it does not test CONNECT or end-to-end encryption. Understand the protocol path through HTTP versus SOCKS5 proxies.

Check DNS and WebRTC separately

Your browser may send web requests through a proxy while resolving names locally. SOCKS clients may offer local DNS or proxy-side hostname resolution. WebRTC can create UDP paths that a basic HTTP proxy does not cover. A normal IP checker may miss both.

Follow the DNS and WebRTC test workflow. Decide what result your configuration should produce before testing. Local DNS is not always a defect, but it is a privacy or regional-consistency problem when you expected all name resolution to follow the proxy.

Measure speed without fooling yourself

Metric What it reveals
DNS time Resolver delay or lookup failure
Connect time Network path and proxy reachability
TLS time Handshake and route latency
Time to first byte Proxy plus destination responsiveness
Total time Transfer and content size effects
Success rate Reliability across repeated requests

Run multiple requests at a conservative interval. Report median and slow-tail results, not only the fastest attempt. Compare with a direct connection and, if available, another proxy in the same region. A distant destination can dominate every measurement.

Test stability and session behavior

Repeat the public-IP and neutral HTTPS request over the expected job duration. Record when the IP changes, connections fail, authentication expires, or latency spikes. For rotating services, use a documented session identifier and confirm whether it preserves an address for the promised window.

The static versus rotating guide explains why a changing IP may be intended behavior rather than a failure. The test should match the product.

Compare a neutral site with the real destination

If a neutral HTTPS site works but one destination returns 403, 429, or a challenge, the proxy connection is functioning. The destination is applying policy based on the network, request, account, or behavior. Respect that response. Cycling IPs to evade it is not a health check.

Save timestamp, endpoint, observed IP, status, sanitized headers, response category, and request rate. If every destination fails, follow the full proxy troubleshooting guide from DNS and TCP upward.

Use a repeatable acceptance checklist

  • Correct host, port, protocol, and authentication.
  • Expected public egress address and approximate region.
  • Valid HTTPS response without ignored certificate errors.
  • Known DNS and WebRTC route behavior.
  • Acceptable median, tail latency, and success rate.
  • Expected static or rotating session behavior.
  • Successful authorized request to the real destination.
  • Sanitized evidence that support can reproduce.

If the endpoint fails these checks, contact support before scaling. Users of Mexela services can open the client area with timestamps and sanitized results rather than posting credentials publicly.

Frequently asked questions

Why does my IP change but the website still knows me?

Cookies, accounts, browser signals, and behavior remain visible even when the network address changes.

Is a fast IP-check result enough?

No. It does not prove HTTPS, DNS routing, stability, real destination access, or performance over time.

What does HTTP 407 mean?

It normally indicates proxy authentication is required or was rejected. Verify credentials, method, and encoding.

Why does curl work while my browser fails?

The browser may use different system settings, cached credentials, DNS behavior, extensions, or certificate stores.

Should I disable TLS verification for testing?

No. A certificate error is evidence to investigate, not a hurdle to suppress.