I see four possible solutions.
1. proxypass: rewrite the URI as "proxypass / http://address_of_webshphere",
2. basic authentication,
3. a blocking directive in Apache the usual "allow/deny from all, allow from Y" way,
4. a blocking rule in the firewall for addresses not in range Y
Proxypass should restrict people so they can't specify another URI but will be directed to http://address_of_webshphere (dunno if this works or syntactically ok: check). I don't think I need to elaborate on basic auth. IMO you should use 1 or/and 2 in conjunction with 3 or/and 4. The only "problem" with 3 or 4 is that you need your clients to be within IP ranges you can identify.
Last edited by unSpawn; 05-27-2003 at 09:08 AM.