Just disable HTTP connector (comment it in server.xml). You can use firewall to protect AJP port from remote clients too.
Ilya Kazakevich, Developer JetBrains Inc http://www.jetbrains.com "Develop with pleasure!" -----Original Message----- From: cpanon [mailto:cpa...@yahoo.com] Sent: Wednesday, November 30, 2011 10:05 PM To: Tomcat Subject: block direct tomcat Hello I have an Apache-ajp-Tomcat config that works, but I would like to block any access to tomcat directly, either on localhost (except for 8009) or from a client? What/is there a tomcat config to achieve that? --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org