Do I need to block 127.0.0.1 in firewall..

bassfacer22

Banned
Member
Messages
209
some applications like Itunes for windows are connecting to 127.0.0.1.. i just think i'm going to block it.. i guess its a loopback but i dont care. what does itunes need it for.. you know.

i've been doing tweaking just blocking my entire computer and seeing what is the extreme bare minimum to connect to the internet..

so far i've block all svchost.exe except for port [DEL]54[/DEL] 53 i believe as I seem to not be able to connect if i disable that..




some outbound and inbound below..
allowedoutbound.JPG


allowed.JPG


merry christmas
 

My Computer

System One

  • OS
    Windows 8.1 (HOME not Pro) 64bit
    Computer type
    Laptop
    System Manufacturer/Model
    (So not very nice) Lenovo Y410P
    CPU
    i7 quad 2.4Gig
    Memory
    16G ram
    Graphics Card(s)
    nvidia 2gig 755m
    Hard Drives
    Samsung 840 Evo

    supercache2 m2. mini card.
    Antivirus
    Win Defender
Well, loopback is basically a computer talking to itself, so no need to block it.

IP Loopback Address 127.0.0.1

so far i've block all svchost.exe except for port [DEL]54[/DEL] 53 i believe as I seem to not be able to connect if i disable that..
53 is used for DNS requests. If you disable DNSCache service, you can block svchost entirely.
But before that, you have to set up DNS servers manually or your networking will not work.
If you have blocked svchost's TCP Out 80/443, I believe, that windows updates will fail.
 

My Computer

System One

  • OS
    Win 8.1.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo E525
    CPU
    AMD A4-3300M @ 2,0GHz
    Memory
    6GB DDR3 1333MHz
    Graphics Card(s)
    AMD Radeon HD 6480G 512MB shared
    Sound Card
    Creative Sound Blaster X-Fi Surround 5.1
    Screen Resolution
    1366x768
    Hard Drives
    WD 465GB
    Cooling
    Fusion Tweaker
    Keyboard
    Logitech K360
    Mouse
    Logitech M705
    Internet Speed
    50/50 MBps
    Browser
    Yandex
    Antivirus
    No AV & No Firewall
    Other Info
    Headphones: Sennheiser RS170
Well, loopback is basically a computer talking to itself, so no need to block it.

IP Loopback Address 127.0.0.1

so far i've block all svchost.exe except for port [DEL]54[/DEL] 53 i believe as I seem to not be able to connect if i disable that..
53 is used for DNS requests. If you disable DNSCache service, you can block svchost entirely.
But before that, you have to set up DNS servers manually or your networking will not work.
If you have blocked svchost's TCP Out 80/443, I believe, that windows updates will fail.


yes, I have started to research all that.. I may do that.. but i haven't really seen a good reason to yet.. is it simply to be more secure so virus/malware can't use svchost.exe? is that why you would completely block it?

I may do the dns server thing.. but yea i have to open 80,443 whenever i try to windows update.. but that i can do when i want to update windows..

i see a lot of activity though with my firewall.. that does seem odd.. and i do know some about the loopback.. but you know, i kinda just don't want my computer talking to itself.. that just sounds as crazy as a crazy person talking to himself on the street..

i have a lot of these kind of addresses in my firewall too.. any experience about these? I'm guessing ipv6 or something..

addresses.JPG
 

My Computer

System One

  • OS
    Windows 8.1 (HOME not Pro) 64bit
    Computer type
    Laptop
    System Manufacturer/Model
    (So not very nice) Lenovo Y410P
    CPU
    i7 quad 2.4Gig
    Memory
    16G ram
    Graphics Card(s)
    nvidia 2gig 755m
    Hard Drives
    Samsung 840 Evo

    supercache2 m2. mini card.
    Antivirus
    Win Defender
DHCPv6 - Wikipedia, the free encyclopedia

It seems like DHCP requesting IP from your router. When you set up you IP manually, it will be gone too.

yes, I have started to research all that.. I may do that.. but i haven't really seen a good reason to yet.. is it simply to be more secure so virus/malware can't use svchost.exe? is that why you would completely block it?
Yes, it could be used by malware, like DNS poisoning changing DNS cache or DNS hijacking.
 

My Computer

System One

  • OS
    Win 8.1.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo E525
    CPU
    AMD A4-3300M @ 2,0GHz
    Memory
    6GB DDR3 1333MHz
    Graphics Card(s)
    AMD Radeon HD 6480G 512MB shared
    Sound Card
    Creative Sound Blaster X-Fi Surround 5.1
    Screen Resolution
    1366x768
    Hard Drives
    WD 465GB
    Cooling
    Fusion Tweaker
    Keyboard
    Logitech K360
    Mouse
    Logitech M705
    Internet Speed
    50/50 MBps
    Browser
    Yandex
    Antivirus
    No AV & No Firewall
    Other Info
    Headphones: Sennheiser RS170
Yes, it could be used by malware, like DNS poisoning changing DNS cache or DNS hijacking.

-So would disabling DNS be the answer to this? sounds like i will have to start looking up how to disable dns and put it in my advanced network adapter settings probably..

-also sounds like i have to somehow with an AT&T crappy 3800 HGV-B router, try to setup static ip address from what you are saying as well..
 

My Computer

System One

  • OS
    Windows 8.1 (HOME not Pro) 64bit
    Computer type
    Laptop
    System Manufacturer/Model
    (So not very nice) Lenovo Y410P
    CPU
    i7 quad 2.4Gig
    Memory
    16G ram
    Graphics Card(s)
    nvidia 2gig 755m
    Hard Drives
    Samsung 840 Evo

    supercache2 m2. mini card.
    Antivirus
    Win Defender
Set up your router like this (just guessing, you need to verify, not sure about IP range)

Configure manually
Router Address: 10.10.10.10.
Subnet Mask: 255.255.255.0.
Do not enable DHCP.

Go to Windows settings (link) and setup up like on the screenshot bellow.

I can not seem to find IPv6 settings on your router, though it supports it.
But you do not really need IPv6, unless you need its specific functions.

Start - Run - services.msc - find DNSClient service - set it to Disabled.
Though at first you might just stop it to see, if it works properly.

If anything goes wrong, just go back to previous settings.
 

Attachments

  • capture_12292014_114307.jpg
    capture_12292014_114307.jpg
    26.9 KB · Views: 65
  • capture_12292014_114343.jpg
    capture_12292014_114343.jpg
    33.9 KB · Views: 66

My Computer

System One

  • OS
    Win 8.1.1 Pro x64
    Computer type
    Laptop
    System Manufacturer/Model
    Lenovo E525
    CPU
    AMD A4-3300M @ 2,0GHz
    Memory
    6GB DDR3 1333MHz
    Graphics Card(s)
    AMD Radeon HD 6480G 512MB shared
    Sound Card
    Creative Sound Blaster X-Fi Surround 5.1
    Screen Resolution
    1366x768
    Hard Drives
    WD 465GB
    Cooling
    Fusion Tweaker
    Keyboard
    Logitech K360
    Mouse
    Logitech M705
    Internet Speed
    50/50 MBps
    Browser
    Yandex
    Antivirus
    No AV & No Firewall
    Other Info
    Headphones: Sennheiser RS170
Back
Top