tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: Denying IPs using the Valve command in context.xml
Date Tue, 04 Oct 2011 17:43:56 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sanford,

On 10/4/2011 1:21 PM, Sanford Stein wrote:
> 1.  I am using wildcards in my IP addresses, such as: <Valve
> className="org.apache.catalina.valves.RemoteAddrValve" 
> deny="*.googlebot.com"/>

That doesn't look like a valid regular expression.

> From my reading of the documentation, this should be OK, but when
> this line is present I cannot access any of my servlets from any IP
> address.   Do wildcards work here and, if so, what am I doing
> wrong?

You are trying to use a glob-style wildcard instead of a regular
expression.

> 2.  Is it possible for a give IP to permit access to some servlets
> while denying access to others?

I don't think you can do this with a <Valve>, but you can do it with a
<Filter>
(http://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#Remote_Address_Filter)
that is only mapped to certain servlets.

- -chris
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk6LRdwACgkQ9CaO5/Lv0PDUvwCfaycwYGMvZc7l7qGf618uIUa9
DKwAn3gcfFCmsYA+GO9K2FFxchMZUUq3
=5fnP
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message