Does a firewall on a machine only block stuff from outside the machine or also from processes on the machine?


Does a firewall running on a machine only block stuff from outside that machine, or do they block communication between processes on a machine communicating via ports?

Specifically, I'm writing a windows service which will expose an http RESTful service for other processes on the machine. The service will be running on a non-standard port in the dynamic/private range - ie not port 80 or similar. Do I need to worry about any firewall that might be running on the machine?

This will be deployed only to windows machines - but I guess it's a general question.

(Asked earlier on SF but perhaps this is more of a dev-focused question)


Firewalls usually block network calls based on protocol(tcp, udp, http, etc), port, and/or ip. So if you have a local process making a tcp/ip call to your loopback address ( then yes the firewall could be affecting the local process.

To be more specific to your question, most firewall programs should be configured to only allow specific address and ports and block everything else. So I would think you should consider this in your design.