[英]server listens on 127.0.0.1, do I need firewall?
I run a "private" service on my computer, which I do not want to be accessible from other computers. 我在计算机上运行“私人”服务,但我不想从其他计算机上访问该服务。 I configured it to only listen on
127.0.0.1
. 我将其配置为仅在
127.0.0.1
侦听。 Do I still need a restrictive firewall? 我仍然需要限制性防火墙吗? For example, is it possible to receive a packet on
eth1
, which would somehow have 127.0.0.1
as its destination address? 例如,是否可以在
eth1
上接收一个数据包,该数据包以某种方式将127.0.0.1
作为其目标地址? Then, if my FORWARD chain is permissive, wouldn't it get delivered to my server listening on the localhost? 然后,如果我的FORWARD链是允许的,它是否不会传递到在本地主机上侦听的服务器?
127.0.0.1
is only for local computer "loopback". 127.0.0.1
仅适用于本地计算机“环回”。 They are required to be dropped if they come from outside the local computer. 如果它们来自本地计算机外部,则必须将其删除 。 So no firewall is required if the app is only listening on
127.0.0.1
. 因此,如果该应用仅侦听
127.0.0.1
则无需防火墙。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.