Restricting JMX to localhost

Question

While there appears to some documentation on how to expose JMX through various firewall and tunneling schemes, I sort of want the opposite. I want to ensure that JMX is only ac

Answer 1

Unfortunately there is currently no way to do that.

According to Sun documentation a sole -Dcom.sun.management.jmxremote should open only a local port while -Dcom.sun.management.jmxremote.port= opens a remotely accessible port.

Both ways open an additional random port which is accessible from remote.

I've seen -Dcom.sun.management.jmxremote.host=, but that does not seem to have any effect.

I came to the conclusion that there is no way and used a local firewall to shield the server.