On Tue, Apr 28, 2020 at 3:39 PM Satya Kishore Thumu <satyakishore.th...@broadcom.com.invalid> wrote:
> *@Naga Ramesh*, > we are using apache 2.4.41 and AJP connector 2.4.48. > > worker.ajp13.port=8009 > worker.ajp13.host=localhost > These are entries that we use on Tomcat server.xml and use the same > entries for apache. > > *@martin* Till we upgraded to tomcat 7.0.100, we were able to use > localhost both for IPv4 env and IPv6 as well. > I tried digging up a little into tomcat 7.x code could not find exactly > what changed the behaviour. > Check the changelog for .100: https://tomcat.apache.org/tomcat-7.0-doc/changelog.html#Tomcat_7.0.100_(violetagg) It is in Coyote section: Change the default bind address for the AJP/1.3 connector to be the loopback address. (markt) This is a fix for a security issue. Until .99 Tomcat bound on all network interfaces. Since .100 it binds by default on "localhost" (IPv4) only. You can use 0.0.0.0 to bind on all again but this is highly NOT recommended! https://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.100 > Thank you, > Kishore > > > On Tue, Apr 28, 2020 at 4:12 PM Martin Grigorov <mgrigo...@apache.org> > wrote: > >> Hi, >> >> On Tue, Apr 28, 2020 at 1:06 PM Satya Kishore Thumu >> <satyakishore.th...@broadcom.com.invalid> wrote: >> >> > Hi, >> > We are using apache before Tomcat as front end and using modjk for >> > connection between apache and Tomcat. After upgrading tomcat(to 7.0.100 >> as >> > we have other dependencies we can't use latest as of now), i'm unable to >> > use ajp.host as "localhost" in IPv6 and works only with ::1. Need help >> if >> > there is any configuration that can be done to use localhost even in >> IPv6 >> > environment. >> > >> >> The only way I am aware of is to have two <Connector> entries - one for >> IPv4 (with "localhost") and another for IPv6 (for "::1"). Both listening >> on >> the same port. >> >> Martin >> >> >> > >> > Thank you, >> > Kishore >> > >> >
