Abstract: In this paper, a framwork and mechanism of making up VPN between SOCKS fire walls in Internet are proposed. Their identification are implemented using certificate verify supported by x.509 and digital signing, which are the authentication method extension to SOCKS V5 protocol. TLS protocol is also applied to the implement negotiation of their encryption algorithms and cryptographic keys which are used as data encryption and transmission. As well as some relative key techniques are introduced, a strong security system is shown by integrating the advantages of two protocols in this paper.