Solved

9iAS FormsListener (6i) Servlet through Webcache on SSL

Posted on 2004-08-25
1
246 Views
Last Modified: 2013-12-01
Hi,
I am tied to 9iAS R1 due to ERP app restriction - am using webcache 902 (on W2K AdvSrv) to balance 2 9iAS app servers (also on W2K AdvSrv) using Forms 6i Listener Servlet. I am setting up SSL on webcache and intend to connect webcache to app servers on non-ssl port 80.

I want users to be able to run forms from my webcache as:

https://webcache.domain.com/servlet/f60servlet........ and therefore hold the ssl connection from the webcache only.

I have configured the webcache to receive user requests on https, and configured the app servers to respond on port 80.

Two issues for me:

Where a user requests a form directly from either app server without going through the webcache, I want to deny access eg:

http://appsrv9iAS.domain.com/servlet/f60servlet........

Can I achieve this in httpd.conf (considering I'm using 6i forms servlet), or would ip filtering be a better way to go?  

Also, am I correct in my thinking that when users are connected to the app servers via the webcache, that all communication is routed through the webcache connection, and not 'handed off' directly to the app server - and if the users are connected though webcache ssl, that the forms are effectively connected between webcache and the user browser over ssl, with the connection between webcache and the app servers running on non-ssl.  I can secure the app server connections using ipsec.

Thanks in ernest.

Pat McKenna
0
Comment
Question by:pmkenna
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 23

Accepted Solution

by:
seazodiac earned 500 total points
ID: 11899030

Can I achieve this in httpd.conf (considering I'm using 6i forms servlet), or would ip filtering be a better way to go?  


>>>>>>>>>>>>>>>>>Ip filtering will be more efficient and easier to set up.

Also, am I correct in my thinking that when users are connected to the app servers via the webcache, that all communication is routed through the webcache connection, and not 'handed off' directly to the app server - and if the users are connected though webcache ssl, that the forms are effectively connected between webcache and the user browser over ssl, with the connection between webcache and the app servers running on non-ssl


>>>>>>>>>>>>>>>>I am not sure of the difference between your term "routed" and "handed off" here. but WEBCACHE here does act as a Proxy (so to speak) between client and app server. and the second part is correct.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Configure Web Service (server application) I. Configure security for Web Services methods First, we need to protect Session bean which implements the service: 1. Open EJB deployment descriptor (ejb-jar.xml) in the EJB project that contains you…
Most of the developers using Tomcat find it easy to configure the datasource in Server.xml and use the JNDI name in the code to get the connection.  So the default connection pool using DBCP (or any other framework) is made available and the life go…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question