https://forum.andowson.com/posts/list/20.page JForum - http://www.jforum.net [code=xml]<Context docBase="${catalina.home}/server/webapps/manager"
privileged="true" antiResourceLocking="false" antiJARLocking="false">
<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="127.0.0.1,192.168.1.*"/>

<!-- Link to the user database we will get roles from -->
<ResourceLink name="users" global="UserDatabase"
type="org.apache.catalina.UserDatabase"/>

</Context>[/code]

只需要對原來的manager.xml加上
<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="127.0.0.1,192.168.1.*"/>
的設定，其中allow是允許的來源IP，如果有兩個以上時用逗號(,)隔開，同一個網段，可用萬用字元星號(*)來表示。

參考資料：
[url=http://tomcat.apache.org/tomcat-5.5-doc/manager-howto.html]The Apache Tomcat 5.5 Servlet/JSP Container - Manager App HOW-TO[/url]
[url=http://tomcat.apache.org/tomcat-5.5-doc/config/valve.html]Apache Tomcat Configuration Reference - The Valve Component[/url]]]> https://forum.andowson.com/posts/preList/84/149.page https://forum.andowson.com/posts/preList/84/149.page GMT 將webapps/host-manager/manager.xml 複製到conf/Catalina/localhost下

在manager.xml中加入下列設定到Context
[code]<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="127\.0\.0\.1|114\.\d+\.\d+\.\d+" denyStatus="404" />[/code]
兩個以上的IP用"|"分隔，注意到.前面要加上倒斜線(\)。
如:
[code]<Context docBase="${catalina.home}/webapps/manager"
privileged="true" antiResourceLocking="false" antiJARLocking="false">
<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="127\.0\.0\.1|114\.\d+\.\d+\.\d+" denyStatus="404" />
</Context>[/code]

實際測試，發現不需重啟Tomcat立即生效

參考資料:
http://tomcat.apache.org/tomcat-7.0-doc/config/valve.html#Remote_Address_Filter]]> https://forum.andowson.com/posts/preList/84/1231.page https://forum.andowson.com/posts/preList/84/1231.page GMT