Timmy Lo
Reputation: 43
Tomcat server IP address restriction methods?
I knew that I can add a Valve in context.xml in tomcat server to allow or deny some IP address :
<Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="127\.0\.0\.1" denyStatus="403" />
Except above configuration, Are there any other method that I can config IP restriction?
For example, can I use text file or database to store IP addresses for IP restriction propose?
Thank you very much!!!
Upvotes: 0
Views: 1850
Answers (1)
Shinichi Kai
Reputation: 4523
You can dynamically register Tomcat's Remote Address Filter.
http://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#Remote_Address_Filter
It looks like this:
@WebListener
public class MyServletContextListener implements ServletContextListener {
@Override
public void contextInitialized(ServletContextEvent sce) {
// Get IP addresses from the DB or text file.
...
ServletContext sc = sce.getServletContext();
FilterRegistration fr;
fr = sc.addFilter("RemoteAddrFilter", "org.apache.catalina.filters.RemoteAddrFilter");
fr.addMappingForUrlPatterns(EnumSet.of(DispatcherType.REQUEST), true, "/*");
fr.setInitParameter("allow", "127\\.0\\.0\\.1");
fr.setInitParameter("denyStatus", "403");
}
}
Upvotes: 3
Related Questions
- Restrict access to Tomcat manager by IP
- How to restrict access by IP address with Tomcat?
- How to allow multiple IP address with Tomcat?
- Restrict tomcat in spring boot to certain ip addresses
- How to allow/restrict access to tomcat server for certain computer names?
- Restrict access to specific URL (Apache Tomcat)
- block unknown IP Addresses for Apache tomcat
- Block a specific page on Tomcat 6 for a particular IP
- how to restrict acces to specific servlet by ip - via container configuration
- how to block ranges of ip addresses from tomcat6?