Michael Bond wrote:
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Brad Perkins
Sent: Friday, October 14, 2005 2:57 PM
To: [EMAIL PROTECTED]
Subject: Re: [Active4d-dev] [OFF]Firewall Rewrite Question
I asked,
Out of curiosity is there a way to modify the ITK web
server so that
it will listen on more than one IP?
Let me restate that. Can the web server shell code be
modified so that it will allow requests from more than one
IP? For example 127.0.0.1 to handle requests proxied from
WebSTAR and another fixed IP address (or IP address range)?
Brad
Well you could launch another set of listeners especially for the
non-proxied non-localhost address, and when you get a request through,
instead of passing it through directly to the Active 4D slave processes,
filter the IP Addresses. This can be done using ITK_TCPStrmInfo to get the
remote IP Address and if the request is from a unacceptable IP address Close
and release the stream immediately (or follow the method that the shell
uses) .
If the request is not from localhost then you will have to remember to
relaunch the additional stream and not a locahost stream.
The advantage with this method is that if somebody tries to tie up your
alternative (non-localhost) listening streams via a port scan then you can
still keep on trucking with the proxied version.
Michael,
If we have to go this route we will. Thanks for providing the details.
best,
Brad
_______________________________________________
Active4D-dev mailing list
[email protected]
http://mailman.aparajitaworld.com/mailman/listinfo/active4d-dev
Archives: http://mailman.aparajitaworld.com/archive/active4d-dev/
