Solved

9iAS FormsListener (6i) Servlet through Webcache on SSL

Posted on 2004-08-25
1
248 Views
Last Modified: 2013-12-01
Hi,
I am tied to 9iAS R1 due to ERP app restriction - am using webcache 902 (on W2K AdvSrv) to balance 2 9iAS app servers (also on W2K AdvSrv) using Forms 6i Listener Servlet. I am setting up SSL on webcache and intend to connect webcache to app servers on non-ssl port 80.

I want users to be able to run forms from my webcache as:

https://webcache.domain.com/servlet/f60servlet........ and therefore hold the ssl connection from the webcache only.

I have configured the webcache to receive user requests on https, and configured the app servers to respond on port 80.

Two issues for me:

Where a user requests a form directly from either app server without going through the webcache, I want to deny access eg:

http://appsrv9iAS.domain.com/servlet/f60servlet........

Can I achieve this in httpd.conf (considering I'm using 6i forms servlet), or would ip filtering be a better way to go?  

Also, am I correct in my thinking that when users are connected to the app servers via the webcache, that all communication is routed through the webcache connection, and not 'handed off' directly to the app server - and if the users are connected though webcache ssl, that the forms are effectively connected between webcache and the user browser over ssl, with the connection between webcache and the app servers running on non-ssl.  I can secure the app server connections using ipsec.

Thanks in ernest.

Pat McKenna
0
Comment
Question by:pmkenna
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 23

Accepted Solution

by:
seazodiac earned 500 total points
ID: 11899030

Can I achieve this in httpd.conf (considering I'm using 6i forms servlet), or would ip filtering be a better way to go?  


>>>>>>>>>>>>>>>>>Ip filtering will be more efficient and easier to set up.

Also, am I correct in my thinking that when users are connected to the app servers via the webcache, that all communication is routed through the webcache connection, and not 'handed off' directly to the app server - and if the users are connected though webcache ssl, that the forms are effectively connected between webcache and the user browser over ssl, with the connection between webcache and the app servers running on non-ssl


>>>>>>>>>>>>>>>>I am not sure of the difference between your term "routed" and "handed off" here. but WEBCACHE here does act as a Proxy (so to speak) between client and app server. and the second part is correct.
0

Featured Post

MIM Survival Guide for Service Desk Managers

Major incidents can send mastered service desk processes into disorder. Systems and tools produce the data needed to resolve these incidents, but your challenge is getting that information to the right people fast. Check out the Survival Guide and begin bringing order to chaos.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

-Xmx and -Xms are the two JVM options often used to tune JVM heap size.   Here are some common mistakes made when using them:   Assume BigApp is a java class file for the below examples. 1.         Missing m, M, g or G at the end …
Most of the developers using Tomcat find it easy to configure the datasource in Server.xml and use the JNDI name in the code to get the connection.  So the default connection pool using DBCP (or any other framework) is made available and the life go…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question