tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject Re: IP-based virtual hosting with Tomcat(6)
Date Wed, 29 Jul 2009 22:13:23 GMT

If I wanted to use the same SSL certificate for all virtual hosts
does it follow that 
  a) I cannot use name based vHosts (because Tomcat SSL connector 
       uses the Host: entry in the request as the common name) and must 
       use IP-based vHosts.

  b) or define name-based vHosts on Tomcat but implement SSL termination
       ahead of Tomcat (on Apache or some such),
       rewrite the HTTP header to include the appropriate Host: entry and then
       forward the requqest to Tomcat?

Are these correct assertions?


----- Original Message -----
From: Mark Thomas 
To: Tomcat Users List 
Sent: Wed, 29 Jul 2009 19:45:51 +0000 (UTC)
Subject: Re: IP-based virtual hosting with Tomcat(6) wrote:
> I am using Tomcat6.0.18 on RHEL5.
> I would like to set up IP-based virtual hosting using Tomcat alone ( as opposed
> to using Apache front-end).
> The documentation (
> as well as examples of it seem to illustrate the use of name-based virtual hosting:
> I would like to avoid using name-based vhosts to sidestep the attendant
> SSL issues.If I want to to run virtual hosts attached to distinct network aliases (eth0.0
> eth0.1 = on the same server how do I configure the Host entries
> in the Engine? Ca nyou point me to the complete server.xml (or the Engine) configuration?

Just use ip addresses rather than DNS names for the name element of the
Host element. Of course, that assumes that your users will be connecting
using IP addresses rather than host names.


To unsubscribe, e-mail:
For additional commands, e-mail:

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message