Enabling Apache and MySQL in your firewall are necessary for you to be able to use XAMPP at the most basic level.
XAMPP has to be able to 'connect' so you can go to "http://localhost"
Unless your have enabled port forwarding on your router, or your machine is directly connected to the internet - "the outside" can't get in.
Even if you did enable port forwarding, XAMPP has the 'new secruity feature' which, in general, blocks access except from the non-routable/reserved IP ranges.
- Code: Select all
# New XAMPP security concept
Deny from all
Allow from ::1 127.0.0.0/8 \
fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 \
ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var
So if you have a router, and you do not enable port forwarding for ports 80, 443, (Apache ) 3306 (MySQL), and 21 (Filezilla) - you are pretty 'walled-off'.
If you decide to 'connect to the outside world' later - you can also use the XAMPP 'Security Wizard' in the XAMPP Welcome Page to create PW's for the XAMPP folder, MySQL and phpMyAdmin. Be sure to take the option to save PW's to a text file, so we don't have to fix that one later, LOL.