Activating the Apache proxy server
When the proxy feature of Apache Web server is activated, it enables the administrator client to form a virtual RMI connection with Infrastructure Management Server using HTTP POSTs and GETs for RMI. For security, the proxy is deactivated in the default configuration of Infrastructure Management Server.
To activate Apache proxy server
- Access the appropriate directory for your operating system:
- (Windows)installationDirectory\pw\apache\extra
- (Solaris) or (Linux)/usr/pw/apache/extra
- Open the httpd-proxy.conf file in a text editor.
- Locate the following group of lines:
# Proxy Server directives. Uncomment the following lines to # enable the proxy server: # # # ProxyRequests On # # # Order deny,allow # Deny from all # Allow from .your_domain.com # Allow from all # # and uncomment the line "ProxyRequests On" and one or more of the appropriate access rules. For Example: "Allow from all" or "Allow from .your_domain.com" where you substitute the actual domain name of your network. # Proxy Server directives. Uncomment the following lines to # enable the proxy server: # ProxyRequests On # # Order deny,allow # Deny from all # Allow from .your_domain.com Allow from all # |
For minimum security risk, specify a list of specific host and/or network addresses in this allowed hosts section. For example,
Order deny, allow Deny from all Allow from 192.16.26.0/24 #specify network address as (network addr.)/(subnet mask) Allow from 192.16.27.0/24 Allow from 192.16.31.0/24 Allow from 172.17.52.150 # specify host address as 4 octets Allow from 172.17.52.151 Allow from 172.17.52.148 Deny from all Allow from 192.16.26.0/24 #specify network address as (network addr.)/(subnet mask) Allow from 192.16.27.0/24 Allow from 192.16.31.0/24 Allow from 172.17.52.150 # specify host address as 4 octets Allow from 172.17.52.151 Allow from 172.17.52.148 |