github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 08:05:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #806] [安全疑问]FRPC会大量连接其他服务器? #630

New issue
Closed
opened 2026-05-05 12:24:31 -06:00 by gitea-mirror · 4 comments
gitea-mirror commented 2026-05-05 12:24:31 -06:00
Owner
Copy link

Originally created by @ChenWenBrian on GitHub (Jun 6, 2018).
Original GitHub issue: https://github.com/fatedier/frp/issues/806

Issue is only used for submiting bug report and documents typo. If there are same issues or answers can be found in documents, we will close it directly.
(为了节约时间,提高处理问题的效率,不按照格式填写的 issue 将会直接关闭。)

Use the commands below to provide key information from your environment:
You do NOT have to include this information if this is a FEATURE REQUEST

What version of frp are you using (./frpc -v or ./frps -v)?
frpc 0.19.1

What operating system and processor architecture are you using (go env)?
CentOS 7.2

Configures you used:
IP直接连接frps端,部分端口映射本地服务

Steps to reproduce the issue:

  1. 启动frpc连接服务器
  2. 在Linux上查询frpc建立的连接 netstat -ntap |grep frp
  3. 发现结果中除了第一个连接是连接到自己配置的frps的外,其他都是连接到谷歌的IP

Describe the results you received:
image

Describe the results you expected:
有点不明白为什么frpc为什么会连连接大量外网的其他服务器。
通过IP查询,这些IP基本上都是连接到谷歌的服务器(美国 加利福尼亚州圣克拉拉县山景市谷歌公司)
不清楚这里是否有安全隐患,这些连接的目的是什么?

Additional information you deem important (e.g. issue happens only occasionally):

Can you point out what caused this issue (optional)

Originally created by @ChenWenBrian on GitHub (Jun 6, 2018). Original GitHub issue: https://github.com/fatedier/frp/issues/806 Issue is only used for submiting bug report and documents typo. If there are same issues or answers can be found in documents, we will close it directly. (为了节约时间,提高处理问题的效率,不按照格式填写的 issue 将会直接关闭。) Use the commands below to provide key information from your environment: You do NOT have to include this information if this is a FEATURE REQUEST **What version of frp are you using (./frpc -v or ./frps -v)?** frpc 0.19.1 **What operating system and processor architecture are you using (`go env`)?** CentOS 7.2 **Configures you used:** IP直接连接frps端,部分端口映射本地服务 **Steps to reproduce the issue:** 1. 启动frpc连接服务器 2. 在Linux上查询frpc建立的连接 `netstat -ntap |grep frp` 3. 发现结果中除了第一个连接是连接到自己配置的frps的外,其他都是连接到谷歌的IP **Describe the results you received:** ![image](https://user-images.githubusercontent.com/7973617/41025189-d613ff88-69a3-11e8-9d7c-72de4651aa94.png) **Describe the results you expected:** 有点不明白为什么frpc为什么会连连接大量外网的其他服务器。 通过IP查询,这些IP基本上都是连接到谷歌的服务器`(美国 加利福尼亚州圣克拉拉县山景市谷歌公司)` 不清楚这里是否有安全隐患,这些连接的目的是什么? **Additional information you deem important (e.g. issue happens only occasionally):** **Can you point out what caused this issue (optional)**
gitea-mirror commented 2026-05-05 12:24:34 -06:00
Author
Owner
Copy link

@vc1 commented on GitHub (Jun 6, 2018):

关注,贴下配置看看吧

<!-- gh-comment-id:395126305 --> @vc1 commented on GitHub (Jun 6, 2018): 关注,贴下配置看看吧
gitea-mirror commented 2026-05-05 12:24:35 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jun 6, 2018):

不清楚就先自己排查下,抓个包,从最基础的配置开始测试,慢慢来,别急着看到什么就马上提问。

<!-- gh-comment-id:395172259 --> @fatedier commented on GitHub (Jun 6, 2018): 不清楚就先自己排查下,抓个包,从最基础的配置开始测试,慢慢来,别急着看到什么就马上提问。
gitea-mirror commented 2026-05-05 12:24:35 -06:00
Author
Owner
Copy link

@ChenWenBrian commented on GitHub (Jun 7, 2018):

根据@fatedier大神的建议, 抓了一夜的包(之前Linux没玩过抓包,不要笑哈)。发现全是Chrome连接Google的连接,大部分是已经中断后还没释放的连接SYN_SENT,只有一个ESTABLISHED还处于活跃状态。配置方面是因为之前在frpc端开启了http_proxy的plugin配置,关闭后就只有跟远端的服务器连接,以及本地端口的映射连接了。结果符合预期,证明frpc还是很安全可靠的。

我测试了frpc的本地端口映射配置、http_proxy配置、socks_proxy配置,全部符合预期。测试过程就不贴了,抓包都没入门,就不贻笑大方了,有兴趣的同学可以自己抓包试试各种配置。

<!-- gh-comment-id:395273190 --> @ChenWenBrian commented on GitHub (Jun 7, 2018): 根据@fatedier大神的建议, 抓了一夜的包(之前Linux没玩过抓包,不要笑哈)。发现全是Chrome连接Google的连接,大部分是已经中断后还没释放的连接`SYN_SENT`,只有一个`ESTABLISHED`还处于活跃状态。配置方面是因为之前在frpc端开启了**http_proxy**的plugin配置,关闭后就只有跟远端的服务器连接,以及本地端口的映射连接了。**结果符合预期,证明frpc还是很安全可靠的。** 我测试了frpc的本地端口映射配置、http_proxy配置、socks_proxy配置,全部符合预期。测试过程就不贴了,抓包都没入门,就不贻笑大方了,有兴趣的同学可以自己抓包试试各种配置。
gitea-mirror commented 2026-05-05 12:24:35 -06:00
Author
Owner
Copy link

@fatedier commented on GitHub (Jun 7, 2018):

👍没接触过的多尝试尝试,以后就熟练了。

<!-- gh-comment-id:395274975 --> @fatedier commented on GitHub (Jun 7, 2018): 👍没接触过的多尝试尝试,以后就熟练了。
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#630
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?