Why does SSHd listening these ports?

[WoAyumi]

Code: Select all

tcp        0      0 127.0.0.1:6010          0.0.0.0:*               LISTEN      2633/1
tcp        0      0 127.0.0.1:6011          0.0.0.0:*               LISTEN      21969/2


21969	root	0.0 %	sshd: root@pts/2
2633	root	0.0 %	sshd: root@pts/1

Thank you, guys!

[Edge100x]

My guess would be that your distribution has set up some sort of local management interface there. Since it's running on 127.0.0.1, it would not be accessible remotely.

[WoAyumi]

My all ports are closed and I've set iptables to block everything, except some custom rules. I didn't set any rules in iptables for these particular ports. Does it mean, that some programs have control over iptables?

[Edge100x]

No. iptables is used to determine what network traffic is allowed. It does not determine what ports your applications can listen on.

[WoAyumi]

So, these ports are opened, because I allowed them in iptables and there is no other way, that they can be opened? Can I share my iptables configuration with you to take a quick look at it, if previous sentence is true?

[Edge100x]

As I said, you already don't need to worry about external IPs contacting those listen sockets, because they can't. You don't even need iptables rules to stop this.

Which IPs and ports your applications listen on have nothing to do with iptables.

[WoAyumi]

aaaaaaaaaaaaaaaaaaaaaaa

I get it.