Filter/block JSS startup pages?

Valued Contributor III

Has anyone found a good way to block or filter the startup pages (maybe anything with a # in the base URL) so they are only visible from certain IPs? For example, I don't want the startup pages on our DMZ instance to be visible to the Internet and have it prompt for the MySQL password, I only want those pages to show up internally. Externally, I don't want any console visibility at all.

I'm wondering if Tomcat can be configured to do this without requiring a filter on our network (which isn't possible with our current setup).


Contributor II

Might check out the following if you've not already:

For example to restrict web access to clients on 10.17.1.x and 10.18.1.x networks add the following to the bottom of the web.xml file.