I
Irfan
Guest
I can provide you some options which I know but I haven't tried. 1. AJP connectors do not communicate securely using certificates. They just open a TCP connection between the tomcat server and the load balancer for that particular request. To secure it, you can add some tags like to specify which hosts/domain you would like to allow to communicate with the tomcat server.This should be pretty straight forward and it will only allow requests from a certain domain/ipaddress. You can also apply this filter based on URL pattern using tag. 2. If you want to have a secure connection to your webserver and want to encrypt the data between the communication then Instead of AJP connector, you can configure secure HTTPS server and can use something like mod_proxy_http. I would not suggest which one to choose because it is all about your use-case and how you would like to access your backend.
Continue reading...
Continue reading...