Skip to content

Using the 0.0.0.0 address exposes this server to every network interface #673

Answered by atoulme
louise-zhang asked this question in Q&A
Discussion options

You must be logged in to vote

This warning comes from the collector itself. By default, the collector doesn't expose OTLP to external network interfaces.
However, we run the collector as a container and for the service to become available to ports exposed on the container, we must configure the service to run on 0.0.0.0.

There is more information in the URL linked in the message: https://github.com/open-telemetry/opentelemetry-collector/blob/main/docs/security-best-practices.md#safeguards-against-denial-of-service-attacks

Replies: 2 comments 4 replies

Comment options

You must be logged in to vote
4 replies
@kumachop2
Comment options

@atoulme
Comment options

@atoulme
Comment options

@kumachop2
Comment options

Answer selected by atoulme
Comment options

You must be logged in to vote
0 replies
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
4 participants
Converted from issue

This discussion was converted from issue #671 on February 24, 2023 20:10.