IMVHO you should *always* use Apache, or another façade server.
Glassfish servers tend to have numerous open ports for numerous
services both internal (various Glassfish modules) and external
(database processes, possibly messaging server, etc.). Hiding it in a
walled garden is a considerable detergent for possible security
attacks.
Apart from being the (possibly) best isolation practice the façade
server has another benefit, that one should not take lightly: SSL
processing off-server. You just set the HTTPS on the façade, and use a
speedy unencrypted channel to the Glassfish server. That leaves a
considerable amount of CPU free for the actual work that needs to be
done. Yes, SSL is CPU heavy.
2013/1/5 <forums_at_java.net>:
> Hello! When should we use apache as frontserver for glassfish? What are the
> advantages of such solution?
>
> --
>
> [Message sent by forum member 'PashaTurok']
>
> View Post: http://forums.java.net/node/893629
>
>