Restrict remote deployment Tomcat -

i want prevent remote hosts deploying applications tomcat. disabled remote access manager app editing context.xml

<context path="/manager" docbase="manager" privileged="true" >     <valve classname="org.apache.catalina.valves.remoteaddrvalve" allow="127\.0\.0\.1" /> </context> 

there few problems approach.

1. tomcat restricting access entire server not manager app.

2. access server using localhost , ip assigned machine running server restricted.

is there configuration changes can make allow access connection originating local server , deny access manager app remote access?