Discussion:
One tomcat server with different webapps on different ports?
r***@xentu.com
2018-11-24 23:05:33 UTC
Permalink
Tomcat/9.0.13


I'd like to have my webapps generally on 443, but the manager and
host-manager on some other port, say 444.

My reason for doing that would be that I could then use linux's iptables
to restrict access to 444 to a few known addresses, but anyone could
access 443.

I would of course want to use the manager application on 444 to manage
the applications visible on 443.

Is this possible?


Richard

---------------------------------------------------------------------
To unsubscribe, e-mail: users-***@tomcat.apache.org
For additional commands, e-mail: users-***@tomcat.apache.org
Geraldo Netto
2018-11-24 23:25:02 UTC
Permalink
Hello Richard/Friends,

I might be wrong, but I guess the best approach would be to use apache
httpd or nginx as a reverse proxy and leave tomcat alone


Kind Regards,

Geraldo Netto
Sapere Aude => Non dvcor, dvco
http://exdev.sf.net/
Post by r***@xentu.com
Tomcat/9.0.13
I'd like to have my webapps generally on 443, but the manager and
host-manager on some other port, say 444.
My reason for doing that would be that I could then use linux's iptables
to restrict access to 444 to a few known addresses, but anyone could
access 443.
I would of course want to use the manager application on 444 to manage
the applications visible on 443.
Is this possible?
Richard
---------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, e-mail: users-***@tomcat.apache.org
For additional commands, e-mail: users-***@tomcat.apache.org
r***@xentu.com
2018-11-25 09:57:37 UTC
Permalink
Post by Geraldo Netto
Hello Richard/Friends,
I might be wrong, but I guess the best approach would be to use apache
httpd or nginx as a reverse proxy and leave tomcat alone
Kind Regards,
Geraldo Netto
Sapere Aude => Non dvcor, dvco
http://exdev.sf.net/
Post by r***@xentu.com
Tomcat/9.0.13
I'd like to have my webapps generally on 443, but the manager and
host-manager on some other port, say 444.
My reason for doing that would be that I could then use linux's iptables
to restrict access to 444 to a few known addresses, but anyone could
access 443.
I would of course want to use the manager application on 444 to manage
the applications visible on 443.
Is this possible?
Richard
---------------------------------------------------------------------
Hi Geraldo.

How would that help?

Can I have different virtual hosts in Apache get their content from
different webapps in Tomcat?

Richard





---------------------------------------------------------------------
To unsubscribe, e-mail: users-***@tomcat.apache.org
For additional commands, e-mail: users-***@tomcat.apache.org
Geraldo Netto
2018-11-25 19:50:34 UTC
Permalink
Hello Richard/Friends,

Maybe you could check 2 things
- the iptables to handle the incoming connections (eg: redirect
between ports and, block connections if the ip is accessing for a
specific port)
- httpd/nginx as reverse proxies for caching and other fancy stuff

Please note that I'm suggesting based on your info and once i'm not a
specialist, I might be saying some no sense
Maybe some more experienced might clarify/help
Digital Ocean has tons of interesting tutorials in that matter:
https://www.digitalocean.com/community/tutorials


Kind Regards,

Geraldo Netto
Sapere Aude => Non dvcor, dvco
http://exdev.sf.net/
Post by r***@xentu.com
Post by Geraldo Netto
Hello Richard/Friends,
I might be wrong, but I guess the best approach would be to use apache
httpd or nginx as a reverse proxy and leave tomcat alone
Kind Regards,
Geraldo Netto
Sapere Aude => Non dvcor, dvco
http://exdev.sf.net/
Post by r***@xentu.com
Tomcat/9.0.13
I'd like to have my webapps generally on 443, but the manager and
host-manager on some other port, say 444.
My reason for doing that would be that I could then use linux's iptables
to restrict access to 444 to a few known addresses, but anyone could
access 443.
I would of course want to use the manager application on 444 to manage
the applications visible on 443.
Is this possible?
Richard
---------------------------------------------------------------------
Hi Geraldo.
How would that help?
Can I have different virtual hosts in Apache get their content from
different webapps in Tomcat?
Richard
---------------------------------------------------------------------
---------------------------------------------------------------------
To unsubscribe, e-mail: users-***@tomcat.apache.org
For additional commands, e-mail: users-***@tomcat.apache.org

Mark Thomas
2018-11-25 08:01:13 UTC
Permalink
Post by r***@xentu.com
Tomcat/9.0.13
I'd like to have my webapps generally on 443, but the manager and
host-manager on some other port, say 444.
My reason for doing that would be that I could then use linux's
iptables
to restrict access to 444 to a few known addresses, but anyone could
access 443.
I would of course want to use the manager application on 444 to manage
the applications visible on 443.
Is this possible?
Not with Tomcat alone.

However, there is an alternative solution available. You could use the RemoteAddrValve to limit access. Tomcat comes with this configured to limit access to localhost.

Mark

---------------------------------------------------------------------
To unsubscribe, e-mail: users-***@tomcat.apache.org
For additional commands, e-mail: users-***@tomcat.apache.org
Loading...