How to restrict connections to glassfish?

Question

I'm running a web application on a glassfish 3 server. The application should not be accessible for anyone. Instead I want to limit access to a handful static IP addresses. To block all communication via a firewall is not an option, since the server hosts other web services too.

Given this background, my question would be: How can I tell glassfish to only respond to requests from given number of IP addresses?

Your help is highly appreciated!

score 1 · Answer 1 · edited Sep 07 '17 at 14:03

1

IP based security is not very robust and... secure (think network topology changes, IP spoofing) but it should be possible to:

create a virtual server
configure the application to be available on that virtual server only
define allowRemoteHost/denyRemoteHost properties at the virtual server level

A better alternative would be to move to certificates.

edited Sep 07 '17 at 14:03

Yusuf K.

4,195
1
33
69

answered Oct 31 '10 at 21:32

Pascal Thivent

562,542
136
1,062
1,124

score 0 · Answer 2 · answered Oct 31 '10 at 21:37

0

You can always write a filter that returns 404 or whatever for invalid IPs. Note that IPs can be spoofed.

answered Oct 31 '10 at 21:37

user473428

301
1
2
3

How to restrict connections to glassfish?

2 Answers2