Yes local clients are programs running on the same machine as the server and they access my application over the localhost IP, i.e. 127.0.0.1. Whereas external clients access my application over external interface, i.e. public IP. And yes, this machine running the server is connected directly to the internet with an interface having a "public" IP.
-----Original Message----- From: André Warnier [mailto:a...@ice-sa.com] Sent: Tuesday, December 07, 2010 2:27 PM To: Tomcat Users List Subject: Re: enforcing SSL only for external clients Aggarwal, Ajay wrote: > My tomcat application (running on a linux host) has 2 types of clients. > Local clients coming on localhost (127.0.0.1) that sounds strange, unless the clients are really programs running on the same machine as the server. and external clients > coming on external interfaces. I want to enforce use of SSL only for > external clients. How do I do that? If I use <security-constraint> I am > assuming it will apply to both local as well as external clients. > I think you need to describe your network setup a bit more in detail. For example, is this machine connected directly to the Internet with an interface having a "public" IP address, or is there something in-between ? Draw us a picture maybe ? --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org