Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How can I limit access to TomCat web site which is accessed via reverse proxy

Posted on 2008-10-26
2
431 Views
Last Modified: 2013-12-02
I have an Apache server that is running a web site and also providing a reverse proxy to a TomCat server.

I have added the Order/Allow/Deny lines to this section of the httpd.conf file

<Directory />
    Options FollowSymLinks
    AllowOverride None

    Order deny,allow
    Deny from all
    Allow from 192.168.1.0/24
    Allow from 19.7.139.1
    Allow from 1.117.25.50
</Directory>

This is restricted access to all the sites on this server but I can still access the sites that are pointed to via the reverse proxy.  What do I need to do to have the reverse proxy sites filtered as well.

This is running on a Windows system.


Thanks.
0
Comment
Question by:RJLemon
2 Comments
 
LVL 27

Accepted Solution

by:
caterham_www earned 500 total points
ID: 22808565
You may try a <proxy> container like

<Proxy *>
    Order deny,allow
    Deny from all
    Allow from 192.168.1.0/24
    Allow from 19.7.139.1
    Allow from 1.117.25.50
</Proxy>

Or a <Location /> container like
<Location />
    Order deny,allow
    Deny from all
    Allow from 192.168.1.0/24
    Allow from 19.7.139.1
    Allow from 1.117.25.50
</Location>
0
 

Author Closing Comment

by:RJLemon
ID: 31510114
Thanks caterham,

The  section seems to have done the trick.

Ron.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
websphere 1 103
Apache / XAMPP  authorisation 10 62
.htaccess file settings 4 62
How to configure virtual host in apache2 to have its own root folder 6 14
Configure Web Service (server application) I. Configure security for Web Services methods First, we need to protect Session bean which implements the service: 1. Open EJB deployment descriptor (ejb-jar.xml) in the EJB project that contains you…
Over the last year I have answered a couple of basic URL rewriting questions several times so I thought I might as well have a stab at: explaining the basics, providing a few useful links and consolidating some of the most common queries into a sing…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question