We will have a Portal box for the portal. Some of the portlets will be IFrames to a application server (EAServer) box. How can we disable access to the EAServer box from everywhere except the portal box?
That's not really possible unless you proxy all requests to the iframes through your own code on the portal box to make the request look like that is where it came from. With IFrames, the request is made from the client, not the portal server. So, make the "src" of the frame point to a URL on the portal box and then proxy this request back to the application on the EAServer box and then set up the firewall protecting your EAServer box to only accept requests from the portal box.
Jake
Kenneth W. Peeples
HTC Web Services
Voice 843.369.8127
Pager 843.366.0914
Email [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>
HTC Disclaimer: The information contained in this message may be privileged and confidential and protected from disclosure. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by replying to the message and deleting it from your computer. Thank you.
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]