tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject RE: IP-based virtual hosting with Tomcat(6)
Date Wed, 29 Jul 2009 20:44:17 GMT

Thanks much for the clarification.In this case, how do I nominate the default virtual host?
Is there something called default connector, such as that which may be needed if
a request arrives into an unconfigured loopback address (say,

My second issue is perhaps more serious: is there an underlying assumption with
virtual hosts that they are bound by distinct security constraints? I mean, is there
an implicit assumption, for instance, that distinct virtual hosts would use distinct SSL certificates?

I plan to (rather, need to) use the same SSL certificate for all vHosts.

Thanx again!


----- Original Message -----
From: Jeffrey Janner 
To: Tomcat Users List 
Sent: Wed, 29 Jul 2009 20:21:47 +0000 (UTC)
Subject: RE: IP-based virtual hosting with Tomcat(6)

Well, Chris is almost correct here.  But Connectors are nested as the Service level, not at
the Engine level. The engine doc he refers you to even specifies this at the top of the page.
 Here is the way to do it correctly:


Add a properly configured  tag group to your web.xml and you can even have http requests automatically
re-routed to https.


-----Original Message-----
From: Christopher Schultz [] 
Sent: Wednesday, July 29, 2009 2:58 PM
To: Tomcat Users List
Subject: Re: IP-based virtual hosting with Tomcat(6)

You can bind  elements to a specific IP address using the
"address" attribute. You can nest  elements within an
 element, like this:



This should allow you to have different SSL certs for each "site"
(represented by each  element).

See the following references:

- -chris

*******************************  NOTICE  *********************************
This message is intended for the use of the individual or entity to which 
it is addressed and may contain information that is privileged, 
confidential, and exempt from disclosure under applicable law.  If the 
reader of this message is not the intended recipient or the employee or 
agent responsible for delivering this message to the intended recipient, 
you are hereby notified that any dissemination, distribution, or copying 
of this communication is strictly prohibited.  If you have received this 
communication in error, please notify us immediately by reply or by 
telephone (call us collect at 512-343-9100) and immediately delete this 
message and all its attachments.

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message