Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 69462 invoked from network); 9 Nov 2010 20:32:07 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 9 Nov 2010 20:32:07 -0000 Received: (qmail 65011 invoked by uid 500); 9 Nov 2010 20:32:35 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 64960 invoked by uid 500); 9 Nov 2010 20:32:35 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 64951 invoked by uid 99); 9 Nov 2010 20:32:35 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 09 Nov 2010 20:32:35 +0000 X-ASF-Spam-Status: No, hits=0.7 required=10.0 tests=SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (nike.apache.org: local policy) Received: from [77.75.108.10] (HELO mail.ukfsn.org) (77.75.108.10) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 09 Nov 2010 20:32:26 +0000 Received: from localhost (smtp-filter.ukfsn.org [192.168.54.205]) by mail.ukfsn.org (Postfix) with ESMTP id 0D40CDEBF4 for ; Tue, 9 Nov 2010 20:32:04 +0000 (GMT) Received: from mail.ukfsn.org ([192.168.54.25]) by localhost (smtp-filter.ukfsn.org [192.168.54.205]) (amavisd-new, port 10024) with ESMTP id PzLR674UTjAr for ; Tue, 9 Nov 2010 20:32:03 +0000 (GMT) Received: from stargate.localnet (unknown [84.45.236.142]) by mail.ukfsn.org (Postfix) with ESMTP id C422DDEBA5 for ; Tue, 9 Nov 2010 20:32:03 +0000 (GMT) From: David Goodenough To: "Tomcat Users List" Subject: Re: Restricting access to tomcat via httpd proxy only Date: Tue, 9 Nov 2010 20:32:01 +0000 User-Agent: KMail/1.13.5 (Linux/2.6.32-2-686; KDE/4.4.5; i686; ; ) References: In-Reply-To: MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <201011092032.01444.david.goodenough@btconnect.com> X-Virus-Checked: Checked by ClamAV on apache.org On Tuesday 09 November 2010, Ari King wrote: > Hi all, > > I have an httpd proxy in front of my tomcat servers/instances, and I'd > like to restrict access to those tomcat servers/instances to be > through the httpd proxy. This is in a lab settings so I'd prefer to > use tomcat configurations, rather than use something like a firewall. > Anyone have any suggestions on how I can accomplish this? Thanks. > > -Ari > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org > For additional commands, e-mail: users-help@tomcat.apache.org You could bind tomcat to localhost, and then although other processes (such as the httpd proxy) can reach tomcat, no other machines will be able to. David --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org