tomcat中限制ip访问

时间 2019/3/5 17:08:51 加载中...

起因

部署在tomcat下的一个Spring Boot项目,遭到恶意攻击,查看访问历史后,想限制这些ip的访问。

Tomcat 版本
apache-tomcat-7.0.88

设置方法:

找到tomcat目录下的conf/server.xml文件,打开后

在 Host 节点下添加一个 子节点

  1. <Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="" deny="66.249.71.137,66.249.71.139,54.36.150.107,66.249.71.135,213.174.146.212,213.174.146.213,66.249.71.135,54.36.149.20,66.249.71.139"/>

完整示例:

  1. <Host name="java.sqber.com" appBase="webapps"
  2. unpackWARs="true" autoDeploy="true">
  3. <!-- SingleSignOn valve, share authentication between web applications
  4. Documentation at: /docs/config/valve.html -->
  5. <!--
  6. <Valve className="org.apache.catalina.authenticator.SingleSignOn" />
  7. -->
  8. <!-- Access log processes all example.
  9. Documentation at: /docs/config/valve.html
  10. Note: The pattern used is equivalent to using pattern="common" -->
  11. <Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
  12. prefix="localhost_access_log." suffix=".txt"
  13. pattern="%h %l %u %t &quot;%r&quot; %s %b" />
  14. <Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="" deny="66.249.71.137,66.249.71.139,54.36.150.107,66.249.71.135,213.174.146.212,213.174.146.213,66.249.71.135,54.36.149.20,66.249.71.139"/>
  15. </Host>
扫码分享
版权说明
作者:SQBER
文章来源:http://www.sqber.com/articles/tomcat-ip-setting.html
本文版权归作者所有,欢迎转载,但未经作者同意必须保留此段声明,且在文章页面明显位置给出原文连接,否则保留追究法律责任的权利。