Workload misconfigurations

Ensure Userland Proxy is Disabled (Automated)

Risk Level

Informational (4)

  • N/A

Compliance Frameworks


The Docker daemon starts a userland proxy service for port forwarding whenever a port is exposed. Where hairpin NAT is available, this service is generally superfluous to requirements and can be disabled.
  • Recommended Mitigation

    You should disable Userland Proxy.