简体繁体 English

服务器侦听127.0.0.1，我需要防火墙吗？

[英]server listens on 127.0.0.1, do I need firewall?

原文 2015-06-05 04:03:32 6 1 security/ networking/ localhost/ firewall

I run a "private" service on my computer, which I do not want to be accessible from other computers. 我在计算机上运行“私人”服务，但我不想从其他计算机上访问该服务。 I configured it to only listen on 127.0.0.1 . 我将其配置为仅在127.0.0.1侦听。 Do I still need a restrictive firewall? 我仍然需要限制性防火墙吗？ For example, is it possible to receive a packet on eth1 , which would somehow have 127.0.0.1 as its destination address? 例如，是否可以在eth1上接收一个数据包，该数据包以某种方式将127.0.0.1作为其目标地址？ Then, if my FORWARD chain is permissive, wouldn't it get delivered to my server listening on the localhost? 然后，如果我的FORWARD链是允许的，它是否不会传递到在本地主机上侦听的服务器？

1 个解决方案

127.0.0.1 is only for local computer "loopback". 127.0.0.1仅适用于本地计算机“环回”。 They are required to be dropped if they come from outside the local computer. 如果它们来自本地计算机外部，则必须将其删除。 So no firewall is required if the app is only listening on 127.0.0.1 . 因此，如果该应用仅侦听127.0.0.1则无需防火墙。

如何以编程方式获取已安装的防病毒软件和防火墙？ - How do I get the installed antivirus software and firewall programmatically?

为什么我需要执行服务器端验证？ - Why do I need to perform server side validation?

如果上传的文件（PHP）不会存储在服务器上，是否需要对其进行验证？ - Do I need to validate uploaded files (PHP) if they are not going to be stored on the server?

如果需要从防火墙将Ably的服务器列入白名单，我应该添加哪些端口，IP和/或域？ - If I need to whitelist Ably's servers from a firewall, which ports, IPs and/or domains should I add?

应用程序和数据库服务器之间的防火墙 - Firewall between application and DB server

为什么即使将自定义网址重定向到127.0.0.1，我仍然仍看到本地证书正在使用？ - Why do I still see localhost certificate being used even when I redirect a custom url to 127.0.0.1?

在侦听多个端口的telnet服务器上进行syn flooding攻击 - syn flooding attack on a telnet server that listens on multiple ports

我可以禁用 VA2065 - 服务器级防火墙规则应该被跟踪并保持在最低限度吗？ - Can I disable VA2065 - Server-level firewall rules should be tracked and maintained at a strict minimum?

Azure Web 应用程序是否需要防火墙？ - Is there any need for a firewall for an Azure Web App?

我需要身份验证/身份服务器 - I need an authentication / identity server

暂无

暂无

声明:本站的技术帖子网页，遵循CC BY-SA 4.0协议，如果您需要转载，请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何以编程方式获取已安装的防病毒软件和防火墙？ - How do I get the installed antivirus software and firewall programmatically? 为什么我需要执行服务器端验证？ - Why do I need to perform server side validation? 如果上传的文件（PHP）不会存储在服务器上，是否需要对其进行验证？ - Do I need to validate uploaded files (PHP) if they are not going to be stored on the server? 如果需要从防火墙将Ably的服务器列入白名单，我应该添加哪些端口，IP和/或域？ - If I need to whitelist Ably's servers from a firewall, which ports, IPs and/or domains should I add? 应用程序和数据库服务器之间的防火墙 - Firewall between application and DB server 为什么即使将自定义网址重定向到127.0.0.1，我仍然仍看到本地证书正在使用？ - Why do I still see localhost certificate being used even when I redirect a custom url to 127.0.0.1? 在侦听多个端口的telnet服务器上进行syn flooding攻击 - syn flooding attack on a telnet server that listens on multiple ports 我可以禁用 VA2065 - 服务器级防火墙规则应该被跟踪并保持在最低限度吗？ - Can I disable VA2065 - Server-level firewall rules should be tracked and maintained at a strict minimum? Azure Web 应用程序是否需要防火墙？ - Is there any need for a firewall for an Azure Web App? 我需要身份验证/身份服务器 - I need an authentication / identity server

相关标签

粤ICP备18138465号 © 2020-2024 STACKOOM.COM