- AJP Connector : The AJP Connector is a Tomcat component that communicates with a web connector via the AJP protocol. This is used for cases where you wish to invisibly integrate Tomcat into an existing (or new) Apache HTTP server installation, and you want Apache to handle the static content contained in the web application, and/or utilize Apache's SSL processing.
- Disabling/Restricting AJP connector access:
1: Edit <CATALINA_BASE>/conf/server.xml，find the following line (<CATALINA_BASE> is the Tomcat work directory):
<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />
2: Comment out it (or just delete it):
<!--<Connector port="8009" protocol="AJP/1.3" redirectPort="8443" />-->
3: Save the edit, and then restart Tomcat.
In addition to the above measures, of course, you can also use firewalls to prevent untrusted sources from accessing the Tomcat AJP Connector service port.