tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From mateo-jl <>
Subject RE: redirection
Date Wed, 01 Apr 2009 14:43:17 GMT

Indeed the topic of this discussion is not to have 8080 as the main port of Tomcat.
I've just emitted one solution among many others: mod_jk. 
Some of my customers have opted for this one because of the simplicity of writing url, of
performance (load-balancing), 
of security too (No-using 80 port for Tomcat was a security directive in some cases)

> Message du 01/04/09 15:47
> De : "Caldarale, Charles R" 
> A : "Tomcat Users List" 
> Copie à : 
> Objet : RE: redirection
> > From: mateo-jl []
> > Subject: re: redirection
> > 
> > i think, the best way is to use the mod_jk module. So, in a firewall
> > environment, you can have your web server (Apache) in the non-protected
> > area and apache will redirect all requests (http:// ....:80 or nothing)
> > at your Tomcat server (http:// ....:8080) within the protected one.
> In what way would that improve security? Since all requests would be forwarded to Tomcat,
adding httpd accomplishes nothing except additional overhead and complexity. It's silly to
place *anything* in a completely unprotected area; you would still have a firewall in place
restricting access to just ports 80 and 443, even if httpd were handling those ports. Might
as well have Tomcat handle those ports directly.
> - Chuck
is thus for use only by the intended recipient. If you received this in error, please contact
the sender and delete the e-mail and its attachments from all computers.

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message