在使用 Nebula 过程中发现有些 44500 45500 端口是全网监听的
Local Address 是 :::44500 :::44501
可能存在安全问题,有什么办法可以解决吗,谢谢。
版本:Nebula 1.0.0
SSD 磁盘
[root@dggphicprd23312 ~]# netstat -ntulp |grep nebula
tcp 0 0 127.0.0.1:11000 0.0.0.0:* LISTEN 20245/nebula-metad
tcp 0 0 127.0.0.1:11002 0.0.0.0:* LISTEN 20245/nebula-metad
tcp 0 0 127.0.0.1:12000 0.0.0.0:* LISTEN 8865/nebula-storage
tcp 0 0 127.0.0.1:12002 0.0.0.0:* LISTEN 8865/nebula-storage
tcp 0 0 127.0.0.1:13000 0.0.0.0:* LISTEN 20470/nebula-graphd
tcp 0 0 127.0.0.1:13002 0.0.0.0:* LISTEN 20470/nebula-graphd
tcp 0 0 0.0.0.0:3699 0.0.0.0:* LISTEN 20470/nebula-graphd
tcp6 0 0 :::45500 :::* LISTEN 20245/nebula-metad
tcp6 0 0 :::45501 :::* LISTEN 20245/nebula-metad
tcp6 0 0 :::44500 :::* LISTEN 8865/nebula-storage
tcp6 0 0 :::44501 :::* LISTEN 8865/nebula-storage
部分storage conf
########## basics ##########
# Whether to run as a daemon process
--daemonize=true
# The file to host the process id
--pid_file=pids/nebula-storaged.pid
########## logging ##########
# The directory to host logging files, which must already exists
--log_dir=logs
# Log level, 0, 1, 2, 3 for INFO, WARNING, ERROR, FATAL respectively
--minloglevel=0
# Verbose log level, 1, 2, 3, 4, the higher of the level, the more verbose of the logging
--v=0
# Maximum seconds to buffer the log messages
--logbufsecs=0
########## networking ##########
# Meta server address
--meta_server_addrs=10.243.65.200:45500,10.243.71.86:45500,10.247.162.39:45500
# Local ip
--local_ip=10.243.65.200
# Storage daemon listening port
--port=44500
# HTTP service ip
--ws_ip=127.0.0.1
# HTTP service port
--ws_http_port=12000
# HTTP2 service port
--ws_h2_port=12002