From vedad at kigo.net Thu Mar 1 08:42:29 2012 From: vedad at kigo.net (Vedad KAJTAZ, Kigo Inc.) Date: Thu, 01 Mar 2012 09:42:29 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <4F4E2521.7040606@kigo.net> References: <4F4E2521.7040606@kigo.net> Message-ID: <4F4F3675.6030301@kigo.net> Hi, Le 29/02/2012 14:16, Vedad KAJTAZ, Kigo Inc. a ?crit : > Hi, > > I'm totally new to Varnish, so I might be missing something obvious. > > I have an issue with the following setup, where vcl_fetch() doesn't seem > to be invoked (most of the time) for a particular file (evidence by > syslog). > I've done a new test session with varnishlog output as requested by "perbu" on the General discussion forum: The vcl file is unchanged: http://pastebin.com/ZqM7A5LP Syslog output (note that vcl_fetch() unconditionally calls std.syslog): http://pastebin.com/dAp5HDiG Varnishlog: http://pastebin.com/KkwHpyTD Backend log: http://pastebin.com/Bd60xSmY Chrome inspector log; http://pastebin.com/J03ctk5Z Result: URL /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png is fetched from backend by varnish and received by client, but is neither logged by syslog (hence, vcl_fetch was never invoked) nor by varnishlog. Thanks, Regards, -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4906 bytes Desc: Signature cryptographique S/MIME URL: From perbu at varnish-software.com Thu Mar 1 08:48:06 2012 From: perbu at varnish-software.com (Per Buer) Date: Thu, 1 Mar 2012 09:48:06 +0100 Subject: invalidating a page using ruby In-Reply-To: References: Message-ID: Hi, On Wed, Feb 29, 2012 at 11:27 PM, S Ahmed wrote: > How would you go about invalidating a cache with ruby? You either use HTTP PURGE against Varnish or issue a ban. See the tutorial for details. Also, from what I understand varnish doesn't support clustering. What if > you grow past a single server, do you somehow use a hashing algorithm to > choose which server will have the cached page? (if yes, then at what layer > will this hashing be done?) > You can either use Varnish as a load balancer (it is rather good at load balancing) use the hash director or any other load balancer that supports "URL target" hashing. -- Per Buer, CEO Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer *Varnish makes websites fly!* Whitepapers | Video | Twitter -------------- next part -------------- An HTML attachment was scrubbed... URL: From apj at mutt.dk Thu Mar 1 09:55:51 2012 From: apj at mutt.dk (Andreas Plesner Jacobsen) Date: Thu, 1 Mar 2012 10:55:51 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <4F4F3675.6030301@kigo.net> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> Message-ID: <20120301095551.GU12685@nerd.dk> On Thu, Mar 01, 2012 at 09:42:29AM +0100, Vedad KAJTAZ, Kigo Inc. wrote: > > Varnishlog: > http://pastebin.com/KkwHpyTD > > URL /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png > is fetched from backend by varnish and received by client, but is > neither logged by syslog (hence, vcl_fetch was never invoked) nor by > varnishlog. I don't see this URL in the varnishlog. Are you sure the client is not fetching directly from the backend? -- Andreas From vedad at kigo.net Thu Mar 1 10:09:25 2012 From: vedad at kigo.net (Vedad KAJTAZ, Kigo Inc.) Date: Thu, 01 Mar 2012 11:09:25 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <20120301095551.GU12685@nerd.dk> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> Message-ID: <4F4F4AD5.3090502@kigo.net> Hi, Le 01/03/2012 10:55, Andreas Plesner Jacobsen a ?crit : > On Thu, Mar 01, 2012 at 09:42:29AM +0100, Vedad KAJTAZ, Kigo Inc. wrote: >> >> Varnishlog: >> http://pastebin.com/KkwHpyTD >> >> URL /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png >> is fetched from backend by varnish and received by client, but is >> neither logged by syslog (hence, vcl_fetch was never invoked) nor by >> varnishlog. > > I don't see this URL in the varnishlog. Are you sure the client is not fetching > directly from the backend? > Yes, I am sure, and that's the point. The backend log shows proxy (varnish) IP as source: 87.98.213.163 - - [01/Mar/2012:09:25:53 +0100] "GET /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png HTTP/1.1" 200 196534 "http://marais-apartments.com/le_marais.html" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.19 (KHTML, like Gecko) Chrome/18.0.1025.39 Safari/535.19" The client's IP is 82.226.115.148. As stated in original message, there is no proxy or whatsoever between client, varnish and backend. Thanks, -- Vedad KAJTAZ Head of Software Development T: +33 1 42 74 56 70 | E: vedad at kigo.net kigo.net | Vacation Rental Software & Websites -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4906 bytes Desc: Signature cryptographique S/MIME URL: From apj at mutt.dk Thu Mar 1 10:19:32 2012 From: apj at mutt.dk (Andreas Plesner Jacobsen) Date: Thu, 1 Mar 2012 11:19:32 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <4F4F4AD5.3090502@kigo.net> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> <4F4F4AD5.3090502@kigo.net> Message-ID: <20120301101932.GV12685@nerd.dk> On Thu, Mar 01, 2012 at 11:09:25AM +0100, Vedad KAJTAZ, Kigo Inc. wrote: > > >>Varnishlog: > >>http://pastebin.com/KkwHpyTD > >> > >>URL /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png > >>is fetched from backend by varnish and received by client, but is > >>neither logged by syslog (hence, vcl_fetch was never invoked) nor by > >>varnishlog. > > > >I don't see this URL in the varnishlog. Are you sure the client is not fetching > >directly from the backend? > > > > Yes, I am sure, and that's the point. The backend log shows proxy > (varnish) IP as source: > > 87.98.213.163 - - [01/Mar/2012:09:25:53 +0100] "GET /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png > HTTP/1.1" 200 196534 "http://marais-apartments.com/le_marais.html" > "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.19 (KHTML, like > Gecko) Chrome/18.0.1025.39 Safari/535.19" > > The client's IP is 82.226.115.148. As stated in original message, > there is no proxy or whatsoever between client, varnish and backend. I would look at two things: * varnishlog -O - varnishlog may not think it's a complete request * X-Varnish received at the backend. Does this match the sequence in varnishlog? If not, you're hitting a different varnishd than the one you're logging. -- Andreas From vedad at kigo.net Thu Mar 1 10:29:46 2012 From: vedad at kigo.net (Vedad KAJTAZ, Kigo Inc.) Date: Thu, 01 Mar 2012 11:29:46 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <20120301101932.GV12685@nerd.dk> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> <4F4F4AD5.3090502@kigo.net> <20120301101932.GV12685@nerd.dk> Message-ID: <4F4F4F9A.2050909@kigo.net> Le 01/03/2012 11:19, Andreas Plesner Jacobsen a ?crit : > On Thu, Mar 01, 2012 at 11:09:25AM +0100, Vedad KAJTAZ, Kigo Inc. wrote: >> >>>> Varnishlog: >>>> http://pastebin.com/KkwHpyTD >>>> >>>> URL /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png >>>> is fetched from backend by varnish and received by client, but is >>>> neither logged by syslog (hence, vcl_fetch was never invoked) nor by >>>> varnishlog. >>> >>> I don't see this URL in the varnishlog. Are you sure the client is not fetching >>> directly from the backend? >>> >> >> Yes, I am sure, and that's the point. The backend log shows proxy >> (varnish) IP as source: >> >> 87.98.213.163 - - [01/Mar/2012:09:25:53 +0100] "GET /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png >> HTTP/1.1" 200 196534 "http://marais-apartments.com/le_marais.html" >> "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.19 (KHTML, like >> Gecko) Chrome/18.0.1025.39 Safari/535.19" >> >> The client's IP is 82.226.115.148. As stated in original message, >> there is no proxy or whatsoever between client, varnish and backend. > > I would look at two things: > > * varnishlog -O - varnishlog may not think it's a complete request > * X-Varnish received at the backend. Does this match the sequence in > varnishlog? If not, you're hitting a different varnishd than the one you're > logging. > There is no other varnish running. This is the full list of process from the freebsd jail: [root at kigoproxy squid]$ ps ax PID TT STAT TIME COMMAND 9799 ?? SsJ 0:01.13 /usr/sbin/syslogd -ss 10083 ?? IsJ 0:00.13 sendmail: Queue runner at 00:30:00 for /var/spool/clientmqueue (sendmail) 10090 ?? IsJ 0:01.08 /usr/sbin/cron -j 20 -J 20 -s 62308 ?? SsJ 0:09.64 varnishd: Varnish-Mgr kigoproxy.osilex.net (varnishd) 62309 ?? IJ 1:33.42 varnishd: Varnish-Chld kigoproxy.osilex.net (varnishd) 10129 10 IJ 0:00.01 /usr/local/bin/bash -l 16891 10 I+J 0:00.09 vim /etc/rc.conf 10192 11 IJ 0:00.02 /usr/local/bin/bash -l 16822 11 I+J 0:00.16 vim varnishd 16846 12 IJ 0:00.01 /usr/local/bin/bash -l 58918 12 I+J 0:00.03 vim default.vcl 17142 17 IJ 0:00.01 /usr/local/bin/bash -l 61229 17 I+J 0:00.77 vim kigo_simple.vcl 17174 18 I+J 0:00.07 /usr/local/bin/bash -l 17586 19 I+J 0:00.10 /usr/local/bin/bash -l 17730 20 I+J 0:00.02 /usr/local/bin/bash -l 58018 21 IJ 0:00.01 /usr/local/bin/bash -l 90489 21 I+J 0:00.01 tail -f /var/log/messages 59715 23 I+J 0:00.02 /usr/local/bin/bash -l 20976 24 SJ 0:00.01 /usr/local/bin/bash -l 96922 24 R+J 0:00.00 ps ax Unfortunately, the back-end is a production server, and I won't be able to log X-varnish headers. I'll try snooping on the traffic instead. I'll get back to the list quickly with new tests. -- Vedad KAJTAZ Head of Software Development T: +33 1 42 74 56 70 | E: vedad at kigo.net kigo.net | Vacation Rental Software & Websites -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4906 bytes Desc: Signature cryptographique S/MIME URL: From straightflush at gmail.com Thu Mar 1 12:00:42 2012 From: straightflush at gmail.com (AD) Date: Thu, 1 Mar 2012 07:00:42 -0500 Subject: invalidating a page using ruby In-Reply-To: References: Message-ID: just call "varnishadm" with the ban command you need from ruby under the system() call system("varnishadm -T somehost:6082 ban.url /images") On Thu, Mar 1, 2012 at 3:48 AM, Per Buer wrote: > Hi, > > On Wed, Feb 29, 2012 at 11:27 PM, S Ahmed wrote: > >> How would you go about invalidating a cache with ruby? > > > You either use HTTP PURGE against Varnish or issue a ban. See the tutorial > for details. > > Also, from what I understand varnish doesn't support clustering. What if >> you grow past a single server, do you somehow use a hashing algorithm to >> choose which server will have the cached page? (if yes, then at what layer >> will this hashing be done?) >> > > You can either use Varnish as a load balancer (it is rather good at load > balancing) use the hash director or any other load balancer that supports > "URL target" hashing. > > -- > Per Buer, CEO > Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer > *Varnish makes websites fly!* > Whitepapers | Video | > Twitter > > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: From vedad at kigo.net Thu Mar 1 12:50:42 2012 From: vedad at kigo.net (Vedad KAJTAZ, Kigo Inc.) Date: Thu, 01 Mar 2012 13:50:42 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <20120301101932.GV12685@nerd.dk> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> <4F4F4AD5.3090502@kigo.net> <20120301101932.GV12685@nerd.dk> Message-ID: <4F4F70A2.9000907@kigo.net> Le 01/03/2012 11:19, Andreas Plesner Jacobsen a ?crit : > On Thu, Mar 01, 2012 at 11:09:25AM +0100, Vedad KAJTAZ, Kigo Inc. wrote: >> >>>> Varnishlog: >>>> http://pastebin.com/KkwHpyTD >>>> >>>> URL /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png >>>> is fetched from backend by varnish and received by client, but is >>>> neither logged by syslog (hence, vcl_fetch was never invoked) nor by >>>> varnishlog. >>> >>> I don't see this URL in the varnishlog. Are you sure the client is not fetching >>> directly from the backend? >>> >> >> Yes, I am sure, and that's the point. The backend log shows proxy >> (varnish) IP as source: >> >> 87.98.213.163 - - [01/Mar/2012:09:25:53 +0100] "GET /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png >> HTTP/1.1" 200 196534 "http://marais-apartments.com/le_marais.html" >> "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.19 (KHTML, like >> Gecko) Chrome/18.0.1025.39 Safari/535.19" >> >> The client's IP is 82.226.115.148. As stated in original message, >> there is no proxy or whatsoever between client, varnish and backend. > > I would look at two things: > > * varnishlog -O - varnishlog may not think it's a complete request > * X-Varnish received at the backend. Does this match the sequence in > varnishlog? If not, you're hitting a different varnishd than the one you're > logging. > I've done another test. This time, the "faulty" url that doesn't appear in varnishlog and is not logged by vcl_recv is: /img/4aa49f0874eb11168795c4f9a904c62d2b33d4cc947b3207a9d43e7c4a6e963d.png Excerpt from tcpdump session (could not paste everything, the file is over 2Mb): http://pastebin.com/d1RWqVeK One can see client requesting /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png within a kept-alive request (lines 63-74). Varnish forwards the request (lines 75-86) without invoking vcl_fetch, and altering only the "Accept-Language" header. Client -> Varnish: GET /img/4aa49f0874eb11168795c4f9a904c62d2b33d4cc947b3207a9d43e7c4a6e963d.png HTTP/1.1 Host: marais-apartments.com Connection: keep-alive Cache-Control: no-cache Pragma: no-cache User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.19 (KHTML, like Gecko) Chrome/18.0.1025.39 Safari/535.19 Accept: */* Referer: http://marais-apartments.com/le_marais.html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8,fr-FR;q=0.6,fr;q= Varnish -> Backend: GET /img/4aa49f0874eb11168795c4f9a904c62d2b33d4cc947b3207a9d43e7c4a6e963d.png HTTP/1.1 Host: marais-apartments.com Connection: keep-alive Cache-Control: no-cache Pragma: no-cache User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.19 (KHTML, like Gecko) Chrome/18.0.1025.39 Safari/535.19 Accept: */* Referer: http://marais-apartments.com/le_marais.html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8,fr-FR Hope this helps, -- Vedad KAJTAZ Head of Software Development T: +33 1 42 74 56 70 | E: vedad at kigo.net kigo.net | Vacation Rental Software & Websites -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4906 bytes Desc: Signature cryptographique S/MIME URL: From vedad at kigo.net Thu Mar 1 13:00:38 2012 From: vedad at kigo.net (Vedad KAJTAZ, Kigo Inc.) Date: Thu, 01 Mar 2012 14:00:38 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <4F4F70A2.9000907@kigo.net> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> <4F4F4AD5.3090502@kigo.net> <20120301101932.GV12685@nerd.dk> <4F4F70A2.9000907@kigo.net> Message-ID: <4F4F72F6.4030002@kigo.net> Le 01/03/2012 13:50, Vedad KAJTAZ, Kigo Inc. a ?crit : > > > Varnish forwards the request (lines 75-86) without invoking vcl_fetch, > and altering only the "Accept-Language" header. > Please ignore this, tcpdump truncated the packet output. Here comes an other example. Faulty url: /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png Tcpdump: http://pastebin.com/wwvnk4g4 It appears that the request is (immediately) forwarded to backend, without any headers alteration (and still without vcl_fetch being invoked). -- Vedad KAJTAZ Head of Software Development T: +33 1 42 74 56 70 | E: vedad at kigo.net kigo.net | Vacation Rental Software & Websites -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4906 bytes Desc: Signature cryptographique S/MIME URL: From apj at mutt.dk Thu Mar 1 13:46:40 2012 From: apj at mutt.dk (Andreas Plesner Jacobsen) Date: Thu, 1 Mar 2012 14:46:40 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <4F4F72F6.4030002@kigo.net> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> <4F4F4AD5.3090502@kigo.net> <20120301101932.GV12685@nerd.dk> <4F4F70A2.9000907@kigo.net> <4F4F72F6.4030002@kigo.net> Message-ID: <20120301134640.GX12685@nerd.dk> On Thu, Mar 01, 2012 at 02:00:38PM +0100, Vedad KAJTAZ, Kigo Inc. wrote: > > > >Varnish forwards the request (lines 75-86) without invoking vcl_fetch, > >and altering only the "Accept-Language" header. > > Please ignore this, tcpdump truncated the packet output. Here comes > an other example. > > Faulty url: /img/cfbc7c98bf8f0a9081a5178b26582ab4090571844992f9fefa30a1fa20fa3668.png > > Tcpdump: > http://pastebin.com/wwvnk4g4 > > It appears that the request is (immediately) forwarded to backend, > without any headers alteration (and still without vcl_fetch being > invoked). pipe'd keepalive session: https://www.varnish-cache.org/trac/wiki/VCLExamplePipe -- Andreas From vedad at kigo.net Thu Mar 1 14:07:00 2012 From: vedad at kigo.net (Vedad KAJTAZ, Kigo Inc.) Date: Thu, 01 Mar 2012 15:07:00 +0100 Subject: File served without vcl_fetch() being invoked. In-Reply-To: <20120301134640.GX12685@nerd.dk> References: <4F4E2521.7040606@kigo.net> <4F4F3675.6030301@kigo.net> <20120301095551.GU12685@nerd.dk> <4F4F4AD5.3090502@kigo.net> <20120301101932.GV12685@nerd.dk> <4F4F70A2.9000907@kigo.net> <4F4F72F6.4030002@kigo.net> <20120301134640.GX12685@nerd.dk> Message-ID: <4F4F8284.30802@kigo.net> Le 01/03/2012 14:46, Andreas Plesner Jacobsen a ?crit : > On Thu, Mar 01, 2012 at 02:00:38PM +0100, Vedad KAJTAZ, Kigo Inc. wrote: >>> >> It appears that the request is (immediately) forwarded to backend, >> without any headers alteration (and still without vcl_fetch being >> invoked). > > pipe'd keepalive session: > https://www.varnish-cache.org/trac/wiki/VCLExamplePipe > Damn, I've read this already, but just realized my vcl was pipe-ing instead of pass-ing POST requests... Thanks a lot, sorry for the noise. -- Vedad KAJTAZ Head of Software Development T: +33 1 42 74 56 70 | E: vedad at kigo.net kigo.net | Vacation Rental Software & Websites -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4906 bytes Desc: Signature cryptographique S/MIME URL: From dredd422 at gmail.com Fri Mar 2 18:51:42 2012 From: dredd422 at gmail.com (Daniel Sell) Date: Fri, 2 Mar 2012 10:51:42 -0800 Subject: invalidating a page using ruby In-Reply-To: References: Message-ID: Attached is the ruby code I used before. On Thu, Mar 1, 2012 at 4:00 AM, AD wrote: > just call "varnishadm" with the ban command you need from ruby under the > system() call > > system("varnishadm -T somehost:6082 ban.url /images") > > > > On Thu, Mar 1, 2012 at 3:48 AM, Per Buer wrote: > >> Hi, >> >> On Wed, Feb 29, 2012 at 11:27 PM, S Ahmed wrote: >> >>> How would you go about invalidating a cache with ruby? >> >> >> You either use HTTP PURGE against Varnish or issue a ban. See the >> tutorial for details. >> >> Also, from what I understand varnish doesn't support clustering. What if >>> you grow past a single server, do you somehow use a hashing algorithm to >>> choose which server will have the cached page? (if yes, then at what layer >>> will this hashing be done?) >>> >> >> You can either use Varnish as a load balancer (it is rather good at load >> balancing) use the hash director or any other load balancer that supports >> "URL target" hashing. >> >> -- >> Per Buer, CEO >> Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer >> *Varnish makes websites fly!* >> Whitepapers | Video | >> Twitter >> >> >> >> _______________________________________________ >> varnish-misc mailing list >> varnish-misc at varnish-cache.org >> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc >> > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: purge.rb Type: application/octet-stream Size: 333 bytes Desc: not available URL: From sfoutrel at gmail.com Sat Mar 3 15:36:00 2012 From: sfoutrel at gmail.com (=?ISO-8859-1?Q?S=E9bastien_FOUTREL?=) Date: Sat, 3 Mar 2012 16:36:00 +0100 Subject: varnishlog 2.1.5 record limit In-Reply-To: <22F96A574165AA4482FF290947347774208544DE@AUPDC00-MBX01P.au.ad.westfield.com> References: <22F96A574165AA4482FF290947347774208544DE@AUPDC00-MBX01P.au.ad.westfield.com> Message-ID: Hello, read your email and it seems to me you pointed the solution yourself :) The answer in trac tells that the "limit" of 255 bytes is a default in varnish but can be overlapped by a parameter. My 3 cents. Hope it'll help. Sebastien FOUTREL 2012/2/23 Thiago Figueiro : > I'm using varnishlog (2.1.5) to help diagnose a production issue. ?Specifically, I want to see the Cookie header from the client request: > > ? 76 RxHeader ? ? c Cookie: __utmc=54987508; 90374957_clogin=l=1329292359&v=1&e=1329294317271; s_cc=true > ; s_sq=%5B%5BB%5D%5D; session_start_time=1329292261764; __utmz=54987508.1329292460.1.1.utmcsr=(direct)|ut > mccn=(direct)|utmcmd=(none); CoreID6=30738140851313292923591&ci=90 > > > All Cookies I investigated are suspiciously 250 bytes long. > > It seems that varnishlog truncates headers when writing to the binary log. > > Yep, it does truncate it... Google fu: > > https://www.varnish-cache.org/trac/ticket/528 > > I am now in a situation where I can't determine what happened because I don't have enough information. ?I can't replicate the issue because I don't know who the customer was. > > What would be the down-side of saving entire headers by default? ?Any chances of re-opening that case as a change request? > > > Thanks > > ____________________________ > Thiago Figueir? > Technical Operations Manager > Digital Business > P +61 (0)2 9358 7123 > F +61 (0)2 9028 8500 > > > > ______________________________________________________ > ? ?CONFIDENTIALITY NOTICE > This electronic mail message, including any and/or all attachments, is for the sole use of the intended recipient(s), and may contain confidential and/or privileged information, pertaining to business conducted under the direction and supervision of the sending organization. All electronic mail messages, which may have been established as expressed views and/or opinions (stated either within the electronic mail message or any of its attachments), are left to the sole responsibility of that of the sender, and are not necessarily attributed to the sending organization. Unauthorized interception, review, use, disclosure or distribution of any such information contained within this electronic mail message and/or its attachment(s), is (are) strictly prohibited. If you are not the intended recipient, please contact the sender by replying to this electronic mail message, along with the destruction all copies of the original electronic mail message (along with any attachments). > ______________________________________________________ > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc From rtshilston at gmail.com Sun Mar 4 22:35:54 2012 From: rtshilston at gmail.com (Rob S) Date: Sun, 4 Mar 2012 22:35:54 +0000 Subject: HTTP Range support on 3.0.2 Message-ID: Hi, I'm running varnish 3.0.2-1.el5 (x86_64) and just starting to try out the range support feature. ?However, it doesn't appear to be working for me, and I'm hoping someone can point me in the right direction. param.show shows: http_range_support ? ? ? ? on [bool] Directly loading from the backend, I see expected responses: curl -v -i -r 0-10 -H 'Host: testhost' -s "http://backendip/audio/file.mp3?4" 2>&1 ?|head -n 20 * About to connect() to backendip port 80 (#0) * ? Trying backendip... connected * Connected to backendip (backendip) port 80 (#0) > GET file.mp3?4 HTTP/1.1 > Range: bytes=0-10 > User-Agent: curl/7.21.4 (universal-apple-darwin11.0) libcurl/7.21.4 OpenSSL/0.9.8r zlib/1.2.5 > Accept: */* > Host: testhost > < HTTP/1.1 206 Partial Content < Date: Sun, 04 Mar 2012 22:27:51 GMT < Server: Apache/2.2.3 (CentOS) < Cache-Control: public, max-age=3600, must-revalidate, no-transform < Expires: Sun, 04 Mar 2012 23:27:51 +0000 < X-Internal-TTL: 3600 < X-External-Cache-Control: public, max-age=3600, must-revalidate, no-transform < X-Cache-Policy: manual < Accept-Ranges: bytes < Content-Range: bytes 0-10/1489040 < Content-Length: 11 Loading via Varnish, I see: curl -v -i -r 0-10 -H 'Host: testhost' -s "http://varniship/file.mp3?4" 2>&1 ?|head -n 20 * About to connect() to varniship port 80 (#0) * ? Trying varniship... connected * Connected to varniship (varniship) port 80 (#0) > GET /file.mp3?4 HTTP/1.1 > Range: bytes=0-10 > User-Agent: curl/7.21.4 (universal-apple-darwin11.0) libcurl/7.21.4 OpenSSL/0.9.8r zlib/1.2.5 > Accept: */* > Host: testhost > < HTTP/1.1 206 Partial Content < Server: Apache/2.2.3 (CentOS) < Cache-Control: public, max-age=3600, must-revalidate, no-transform < Expires: Sun, 04 Mar 2012 23:30:05 +0000 < X-Internal-TTL: 3600 < X-External-Cache-Control: public, max-age=3600, must-revalidate, no-transform < X-Cache-Policy: manual < Accept-Ranges: bytes < Content-Range: bytes 0-1489039/1489040 < Content-Type: audio/mp3 < Content-Length: 1489040 This is running using the default VCL supplied with the RPM (to ensure that the non-compliance with Range wasn't something we've added in our config). ?Finally, here's the varnishlog: ? 13 BackendOpen ?b default 127.0.0.1 36383 127.0.0.1 80 ? 13 TxRequest ? ?b GET ? 13 TxURL ? ? ? ?b /file.mp3?4 ? 13 TxProtocol ? b HTTP/1.1 ? 13 TxHeader ? ? b User-Agent: curl/7.21.4 (universal-apple-darwin11.0) libcurl/7.21.4 OpenSSL/0.9.8r zlib/1.2.5 ? 13 TxHeader ? ? b Accept: */* ? 13 TxHeader ? ? b Host: testhost ? 13 TxHeader ? ? b X-Forwarded-For: 192.168.33.10 ? 13 TxHeader ? ? b X-Varnish: 960993454 ? 13 TxHeader ? ? b Accept-Encoding: gzip ? 13 RxProtocol ? b HTTP/1.1 ? 13 RxStatus ? ? b 206 ? 13 RxResponse ? b Partial Content ? 13 RxHeader ? ? b Date: Sun, 04 Mar 2012 22:32:38 GMT ? 13 RxHeader ? ? b Server: Apache/2.2.3 (CentOS) ? 13 RxHeader ? ? b Cache-Control: public, max-age=3600, must-revalidate, no-transform ? 13 RxHeader ? ? b Expires: Sun, 04 Mar 2012 23:32:39 +0000 ? 13 RxHeader ? ? b X-Internal-TTL: 3600 ? 13 RxHeader ? ? b X-External-Cache-Control: public, max-age=3600, must-revalidate, no-transform ? 13 RxHeader ? ? b X-Cache-Policy: manual ? 13 RxHeader ? ? b Accept-Ranges: bytes ? 13 RxHeader ? ? b Content-Range: bytes 0-1489039/1489040 ? 13 RxHeader ? ? b Content-Length: 1489040 ? 13 RxHeader ? ? b Connection: close ? 13 RxHeader ? ? b Content-Type: audio/mp3 ? 13 Fetch_Body ? b 4(length) cls 0 mklen 1 ? 13 Length ? ? ? b 1489040 ? 13 BackendClose b default ? ?0 Debug ? ? ? ?- "lurker: 0x2aaaaac07100 604801 0" ? 10 SessionOpen ?c 192.168.33.10 63825 varniship:80 ? 10 ReqStart ? ? c 192.168.33.10 63825 960993454 ? 10 RxRequest ? ?c GET ? 10 RxURL ? ? ? ?c /file.mp3?4 ? 10 RxProtocol ? c HTTP/1.1 ? 10 RxHeader ? ? c Range: bytes=0-10 ? 10 RxHeader ? ? c User-Agent: curl/7.21.4 (universal-apple-darwin11.0) libcurl/7.21.4 OpenSSL/0.9.8r zlib/1.2.5 ? 10 RxHeader ? ? c Accept: */* ? 10 RxHeader ? ? c Host: testhost ? 10 VCL_call ? ? c recv lookup ? 10 VCL_call ? ? c hash ? 10 Hash ? ? ? ? c /file.mp3?4 ? 10 Hash ? ? ? ? c testhost ? 10 VCL_return ? c hash ? 10 VCL_call ? ? c miss fetch ? 10 Backend ? ? ?c 13 default default ? 10 TTL ? ? ? ? ?c 960993454 RFC -1 -1 -1 1330900359 0 1330900358 0 0 ? 10 VCL_call ? ? c fetch ? 10 TTL ? ? ? ? ?c 960993454 VCL 121 -1 -1 1330900358 -1 ? 10 VCL_return ? c hit_for_pass ? 10 ObjProtocol ?c HTTP/1.1 ? 10 ObjResponse ?c Partial Content ? 10 ObjHeader ? ?c Date: Sun, 04 Mar 2012 22:32:38 GMT ? 10 ObjHeader ? ?c Server: Apache/2.2.3 (CentOS) ? 10 ObjHeader ? ?c Cache-Control: public, max-age=3600, must-revalidate, no-transform ? 10 ObjHeader ? ?c Expires: Sun, 04 Mar 2012 23:32:39 +0000 ? 10 ObjHeader ? ?c X-Internal-TTL: 3600 ? 10 ObjHeader ? ?c X-External-Cache-Control: public, max-age=3600, must-revalidate, no-transform ? 10 ObjHeader ? ?c X-Cache-Policy: manual ? 10 ObjHeader ? ?c Accept-Ranges: bytes ? 10 ObjHeader ? ?c Content-Range: bytes 0-1489039/1489040 ? 10 ObjHeader ? ?c Content-Length: 1489040 ? 10 ObjHeader ? ?c Content-Type: audio/mp3 ? 10 SessionClose c remote closed ? 10 VCL_call ? ? c deliver deliver ? 10 TxProtocol ? c HTTP/1.1 ? 10 TxStatus ? ? c 206 ? 10 TxResponse ? c Partial Content ? 10 TxHeader ? ? c Server: Apache/2.2.3 (CentOS) ? 10 TxHeader ? ? c Cache-Control: public, max-age=3600, must-revalidate, no-transform ? 10 TxHeader ? ? c Expires: Sun, 04 Mar 2012 23:32:39 +0000 ? 10 TxHeader ? ? c X-Internal-TTL: 3600 ? 10 TxHeader ? ? c X-External-Cache-Control: public, max-age=3600, must-revalidate, no-transform ? 10 TxHeader ? ? c X-Cache-Policy: manual ? 10 TxHeader ? ? c Accept-Ranges: bytes ? 10 TxHeader ? ? c Content-Range: bytes 0-1489039/1489040 ? 10 TxHeader ? ? c Content-Type: audio/mp3 ? 10 TxHeader ? ? c Content-Length: 1489040 ? 10 TxHeader ? ? c Accept-Ranges: bytes ? 10 TxHeader ? ? c Date: Sun, 04 Mar 2012 22:32:39 GMT ? 10 TxHeader ? ? c X-Varnish: 960993454 ? 10 TxHeader ? ? c Age: 0 ? 10 TxHeader ? ? c Via: 1.1 varnish ? 10 TxHeader ? ? c Connection: keep-alive ? 10 Debug ? ? ? ?c Write error, retval = 62284, len = 1489581, errno = Success ? 10 ReqEnd ? ? ? c 960993454 1330900358.186229944 1330900359.564546108 0.000057936 0.864976168 0.513339996 ? 10 StatSess ? ? c 192.168.33.10 63825 1 1 1 0 0 1 541 1489040 I'd be grateful if anyone who is successfully using Range can indicate where to proceed with our debug. Thanks, Rob From TFigueiro at au.westfield.com Tue Mar 6 02:49:12 2012 From: TFigueiro at au.westfield.com (Thiago Figueiro) Date: Tue, 6 Mar 2012 02:49:12 +0000 Subject: Condition(w->wlp < w->wle) not true Message-ID: <22F96A574165AA4482FF29094734777420868E2E@AUPDC00-MBX01P.au.ad.westfield.com> Is someone able to confirm this Varnish 2.1.5 panic is due to insufficient workspace memory? I recently increased shm_reclen and sess_workspace, following Kristian's advice on https://www.varnish-cache.org/trac/ticket/1055. Thank you Current values: VARNISH_VCL_CONF=/etc/varnish/default.vcl #VARNISH_LISTEN_ADDRESS= #VARNISH_LISTEN_PORT=80 VARNISH_ADMIN_LISTEN_ADDRESS=127.0.0.1 VARNISH_ADMIN_LISTEN_PORT=6082 VARNISH_MIN_THREADS=150 VARNISH_MAX_THREADS=3000 VARNISH_THREAD_TIMEOUT=120 VARNISH_STORAGE_FILE=/var/lib/varnish/varnish_storage.bin VARNISH_STORAGE_SIZE=35G VARNISH_STORAGE="file,${VARNISH_STORAGE_FILE},${VARNISH_STORAGE_SIZE}" VARNISH_TTL=120 # DAEMON_OPTS is used by the init script. If you add or remove options, make # sure you update this section, too. # Primes (10% of n_object): -h 91193, 319993, 500009, 999331, 1686049, 2097593 DAEMON_OPTS="-f ${VARNISH_VCL_CONF} \ -T ${VARNISH_ADMIN_LISTEN_ADDRESS}:${VARNISH_ADMIN_LISTEN_PORT} \ -t ${VARNISH_TTL} \ -p thread_pools=6 \ -w ${VARNISH_MIN_THREADS},${VARNISH_MAX_THREADS},${VARNISH_THREAD_TIMEOUT} \ -u varnish -g varnish \ -h classic,91193 \ -s ${VARNISH_STORAGE} \ -p listen_depth=4096 \ -p session_linger=50/100/150 \ -p sess_workspace=131072 \ -p shm_reclen=16384 \ -p lru_interval=60" Error in syslog: 2012-03-05T21:06:15.656486+11:00 aubdc-rp01 varnishd[7365]: Child (22302) Panic message: Assert error in WSLR(), shmlog.c line 236:#012 Condition(w->wlp < w->wle) not true.#012thread = (cache-worker)#012ident = Linux,2.6.32-220.4.2.el6.x86_64,x86_64,-sfile,-hclassic,epoll#012Backtrace:#012 0x425058: /usr/sbin/varnishd() [0x425058]#012 0x43a6d5: /usr/sbin/varnishd(WSLR+0x1c5) [0x43a6d5]#012 0x422299: /usr/sbin/varnishd() [0x422299]#012 0x4224bd: /usr/sbin/varnishd(http_DissectRequest+0xed) [0x4224bd]#012 0x414710: /usr/sbin/varnishd(CNT_Session+0x660) [0x414710]#012 0x426808: /usr/sbin/varnishd() [0x426808]#012 0x426bdb: /usr/sbin/varnishd() [0x426bdb]#012 0x7f51a1f3b7f1: /lib64/libpthread.so.0(+0x77f1) [0x7f51a1f3b7f1]#012 0x7f51a17db92d: /lib64/libc.so.6(clone+0x6d) [0x7f51a17db92d]#012sp = 0x7f4819171008 {#012 fd = 41, id = 41, xid = 179601385,#012 client = 208.80.194.30 51469,#012 step = STP_START,#012 handling = deliver,#012 restarts = 0, esis = 0#012 ws = 0x7f4819171080 { #012 id = "sess",#012 {s,f,r,e} = {0x7f4819171cd8,+15232,(nil),+131072},#012 },#012 http[req] = {#012 ws = 0x7f4819171080[sess]#012 "GET",#012 "/gateway/",#012 "HTTP/1.0",#012 "Host: westfield.com",#012 "User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 1.0.3705; ImageShack Toolbar 3.0.6)",#012 },#012 worker = 0x7f47495edbd0 {#012 ws = 0x7f47495edd50 { #012 id = "wrk",#012 {s,f,r,e} = {0x7f47495cbb70,0x7f47495cbb70,(nil),+131072},#012 },#012 },#012 vcl = {#012 srcname = {#012 "input",#012 "Default",#012 "/etc/varnish/backend_centre_refresh.vcl",#012 "/etc/varnish/backend_corporate.vcl",#012 "/etc/varnish/backend_centre_rails.vcl",#012 "/etc/varnish/backend_acacia.vcl",#012 "/etc/varnish/backend_contentstore.vcl",#012 "/etc/varnish/backend_stratfordcity.vcl",#012 "/etc/varnish/backend_redirects.vcl",#012 "/etc/varnish/select_backend.vcl",#012 "/etc/varnish/canonical_we ____________________________ Thiago Figueir? Technical Operations Manager Digital Business P +61 (0)2 9358 7123 F +61 (0)2 9028 8500 ______________________________________________________ CONFIDENTIALITY NOTICE This electronic mail message, including any and/or all attachments, is for the sole use of the intended recipient(s), and may contain confidential and/or privileged information, pertaining to business conducted under the direction and supervision of the sending organization. All electronic mail messages, which may have been established as expressed views and/or opinions (stated either within the electronic mail message or any of its attachments), are left to the sole responsibility of that of the sender, and are not necessarily attributed to the sending organization. Unauthorized interception, review, use, disclosure or distribution of any such information contained within this electronic mail message and/or its attachment(s), is (are) strictly prohibited. If you are not the intended recipient, please contact the sender by replying to this electronic mail message, along with the destruction all copies of the original electronic mail message (along with any attachments). ______________________________________________________ From parsimail2001 at yahoo.se Tue Mar 6 04:37:11 2012 From: parsimail2001 at yahoo.se (Your Friend) Date: Tue, 6 Mar 2012 04:37:11 +0000 (GMT) Subject: statusnet Message-ID: <1331008631.72026.YahooMailNeo@web171603.mail.ir2.yahoo.com> Hi everyone! I'm wondering if there is anyone who already has written a working modified vcl file for a website running statusnet application. We are planning to run statusnet on debian using nginx and varnish 2.1. We are going to use google ads, google analytic and https for logins. facebook and twitter plugins for our statusnet site will be off! Kind regards, Ali -------------- next part -------------- An HTML attachment was scrubbed... URL: From shirin.hossain at gmail.com Tue Mar 6 06:13:33 2012 From: shirin.hossain at gmail.com (Shirin Hossain) Date: Tue, 6 Mar 2012 06:13:33 +0000 (UTC) Subject: Invitation to connect on LinkedIn Message-ID: <943344452.14591080.1331014413517.JavaMail.app@ela4-bed81.prod> LinkedIn ------------ I'd like to add you to my professional network on LinkedIn. - Shirin Shirin Hossain MD at Bridge International company Bangladesh Confirm that you know Shirin Hossain: https://www.linkedin.com/e/-9jv3q4-gzgjm6di-54/isd/6180058131/eb4Keu3Z/?hs=false&tok=2NduQ1doylvB81 -- You are receiving Invitation to Connect emails. Click to unsubscribe: http://www.linkedin.com/e/-9jv3q4-gzgjm6di-54/uUwiAqzf418olGWw58mjSTvkm1HgTG3IrG82TCkxhF79SC/goo/varnish-misc%40varnish-cache%2Eorg/20061/I2147990997_1/?hs=false&tok=252yFFTqSlvB81 (c) 2012 LinkedIn Corporation. 2029 Stierlin Ct, Mountain View, CA 94043, USA. -------------- next part -------------- An HTML attachment was scrubbed... URL: From TFigueiro at au.westfield.com Tue Mar 6 07:12:27 2012 From: TFigueiro at au.westfield.com (Thiago Figueiro) Date: Tue, 6 Mar 2012 07:12:27 +0000 Subject: Invitation to connect on LinkedIn In-Reply-To: <943344452.14591080.1331014413517.JavaMail.app@ela4-bed81.prod> References: <943344452.14591080.1331014413517.JavaMail.app@ela4-bed81.prod> Message-ID: <22F96A574165AA4482FF2909473477742086913F@AUPDC00-MBX01P.au.ad.westfield.com> Someone must be looking for a new job :-) I have unsubscribed the list from linked-in; hopefully we won't be getting these again. ______________________________________________________ CONFIDENTIALITY NOTICE This electronic mail message, including any and/or all attachments, is for the sole use of the intended recipient(s), and may contain confidential and/or privileged information, pertaining to business conducted under the direction and supervision of the sending organization. All electronic mail messages, which may have been established as expressed views and/or opinions (stated either within the electronic mail message or any of its attachments), are left to the sole responsibility of that of the sender, and are not necessarily attributed to the sending organization. Unauthorized interception, review, use, disclosure or distribution of any such information contained within this electronic mail message and/or its attachment(s), is (are) strictly prohibited. If you are not the intended recipient, please contact the sender by replying to this electronic mail message, along with the destruction all copies of the original electronic mail message (along with any attachments). ______________________________________________________ From gasper.furman at delo.si Wed Mar 7 14:24:40 2012 From: gasper.furman at delo.si (=?windows-1252?Q?Ga=9Aper_Furman?=) Date: Wed, 07 Mar 2012 15:24:40 +0100 Subject: Multiple sites runing on multiple backends Message-ID: <4F576FA8.40201@delo.si> Hi! I would like to have one varnish server for multiple sites running on multiple backends. For example: Domains: domain0.com, domain1.com .. domain9.com running on backends: backendA, backendB. Domains: domain10.com, domain11.com .. domain19.com running on backends: backendC, backendD. Is there any better way than: if (req.http.host ~ "(?i)domain0.com|(?i)domain1.com|(?i)domain2.com|(?i)domain3.com|(?i)domain4.com|(?i)domain5.com|(?i)domain6.com|(?i)domain7.com|(?i)domain8.com|(?i)domain9.com") { set req.backend = backendAB_director } else.... For example something like acl lists would be very helpful: XXX domainsAB { "(?i)domain0.com"; "(?i)domain1.com"; "(?i)domain2.com"; "(?i)domain3.com"; "(?i)domain4.com"; "(?i)domain5.com"; "(?i)domain6.com"; "(?i)domain7.com"; "(?i)domain8.com"; "(?i)domain9.com"; } if (req.http.host ~ domainsAB) { set req.backend = backendAB_director } Thanks, Regards, -- Ga?per Furman Spletni razvoj Web Development Delo, d. d. Dunajska 5, 1000 Ljubljana T: +386 1 47 37 946 E: gasper.furman at delo.si -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si.jpg Type: image/jpeg Size: 4535 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si3.jpg Type: image/jpeg Size: 4051 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si2.jpg Type: image/jpeg Size: 5520 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si4.jpg Type: image/jpeg Size: 2639 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si5.jpg Type: image/jpeg Size: 1963 bytes Desc: not available URL: From george at zygmund.net Wed Mar 7 14:48:23 2012 From: george at zygmund.net (George) Date: Wed, 07 Mar 2012 14:48:23 +0000 Subject: Correct way to raise immediate error in VCL Message-ID: <4F577537.1020605@zygmund.net> 3.0 Docs state that from vcl_recv "The vcl_recv subroutine may terminate with calling return() on one of the following keywords:" ... error code [reason]. This implies a syntax of return( error 404 "Not Found" ); - which I believe is incorrect and didn't work when I tried it. There are a number of examples of throwing errors - usually something like error 404 "Not Found" that I know work . However, I can find no definitive statement that this method causes an IMMEDIATE return from vcl_recv. The reason I need clarification is that I am tracking an issue that seems to indicate that processing continues after an error is called and am seeing urls appearing in the backend server logs that indicate subsequent pipe commands may have been honored despite the error call. Could someone clarify - is calling error 404 "Not Found"; sufficient to cause all further processing to cease and a subroutine return to be implicitly carried out - or is something more specific required like.. (VCL Snippit) #block unauthorized access to this site if (!client.ip ~ authorized) { error 404 "Not Found."; return (error); } From r at roze.lv Wed Mar 7 20:59:31 2012 From: r at roze.lv (Reinis Rozitis) Date: Wed, 7 Mar 2012 22:59:31 +0200 Subject: Multiple sites runing on multiple backends In-Reply-To: <4F576FA8.40201@delo.si> References: <4F576FA8.40201@delo.si> Message-ID: <84E88BEA530C4F77920B104DA3F822AC@NeiRoze> > I would like to have one varnish server for multiple sites running on > multiple backends. You could try the DNS director ( http://kristianlyng.wordpress.com/2010/08/02/varnish-backend-selection-through-dns/ ). With the prefix/suffix feature you should be able to store the backend configuration for each of your domains in your dns server. rr From pprocacci at datapipe.com Thu Mar 8 06:37:16 2012 From: pprocacci at datapipe.com (Paul A. Procacci) Date: Thu, 8 Mar 2012 00:37:16 -0600 Subject: Correct way to raise immediate error in VCL In-Reply-To: <4F577537.1020605@zygmund.net> References: <4F577537.1020605@zygmund.net> Message-ID: <20120308063716.GK90116@nat.myhome> I don't know the answer to your question as I'm still using the latest varnish 2.x in production, but you can see exactly what your vcl produces by `varnish -C -f /path/to/vcl_file`. Hope that helps. ~Paul On Wed, Mar 07, 2012 at 02:48:23PM +0000, George wrote: > 3.0 Docs state that from vcl_recv "The vcl_recv subroutine may terminate > with calling return() on one of the following keywords:" ... error code > [reason]. This implies a syntax of return( error 404 "Not Found" ); - > which I believe is incorrect and didn't work when I tried it. There are > a number of examples of throwing errors - usually something like error > 404 "Not Found" that I know work . > > However, I can find no definitive statement that this method causes an > IMMEDIATE return from vcl_recv. The reason I need clarification is that > I am tracking an issue that seems to indicate that processing continues > after an error is called and am seeing urls appearing in the backend > server logs that indicate subsequent pipe commands may have been honored > despite the error call. > > Could someone clarify - is calling error 404 "Not Found"; sufficient to > cause all further processing to cease and a subroutine return to be > implicitly carried out - or is something more specific required like.. > > (VCL Snippit) > > #block unauthorized access to this site > if (!client.ip ~ authorized) { > error 404 "Not Found."; > return (error); > } > > > > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc ________________________________ This message may contain confidential or privileged information. If you are not the intended recipient, please advise us immediately and delete this message. See http://www.datapipe.com/legal/email_disclaimer/ for further information on confidentiality and the risks of non-secure electronic communication. If you cannot access these links, please notify us by reply message and we will send the contents to you. From r at roze.lv Thu Mar 8 14:44:19 2012 From: r at roze.lv (Reinis Rozitis) Date: Thu, 8 Mar 2012 16:44:19 +0200 Subject: Chrome -Hit send timeout Message-ID: <1A91744C617D4D7F91AC286B7460589F@NeiRoze> Hello, I have a pretty weird problem with Chrome (and only chrome since FF/IE/Opera work fine) randomly not loading image files from varnish - out of 100 pictures (in one site) usually 2-3 are broken until next refresh and it affects only varnish 3.x but 2.1.5 works fine. I tracked down from varnish logs that according to varnishncsa that particular requests while being 200 OK doesnt have content-length: 10.30.0.69 - - [08/Mar/2012:16:11:25 +0200] "GET http://10.0.0.2/gallery/41d1403557279cf75b0bb6e36fe0a4e1/02/309/262/v1/l_251309262.jpg HTTP/1.1" 200 - "http://10.0.0.1/pic_test.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.66 Safari/535.11" But in the the full log I hit send timeout (while according to CLI 'send_timeout 600 [seconds]') also it happens instantly: 2738 Debug c Hit send timeout, wrote = 77976/108304; retrying 2738 Debug c Write error, retval = -1, len = 30328, errno = Resource temporarily unavailable --------------------------------------------- 2738 ReqStart c 10.30.0.69 51752 2104587141 2738 RxRequest c GET 2738 RxURL c /gallery/41d1403557279cf75b0bb6e36fe0a4e1/02/309/262/v1/l_251309262.jpg 2738 RxProtocol c HTTP/1.1 2738 RxHeader c Host: 10.0.0.2 2738 RxHeader c Connection: keep-alive 2738 RxHeader c User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.11 (KHTML, like Gecko) Chrome/17.0.963.66 Safari/535.11 2738 RxHeader c Accept: */* 2738 RxHeader c Referer: http://10.0.0.1/pic_test.php 2738 RxHeader c Accept-Encoding: gzip,deflate,sdch 2738 RxHeader c Accept-Language: en-US,en;q=0.8 2738 RxHeader c Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 2738 VCL_call c recv lookup 2738 VCL_call c hash 2738 Hash c /sgallery/41d1403557279cf75b0bb6e36fe0a4e1/02/309/262/v1/l_251309262.jpg 2738 VCL_return c hash 2738 VCL_call c miss fetch 2738 Backend c 2689 c02 c02[1](10.0.0.208,,80) 2738 VCL_call c fetch 2738 TTL c 2104587141 VCL 315360000 30 -1 1331215886 -0 2738 VCL_return c deliver 2738 VCL_call c deliver deliver 2738 TxProtocol c HTTP/1.1 2738 TxStatus c 200 2738 TxResponse c OK 2738 TxHeader c Date: Thu, 08 Mar 2012 14:11:25 GMT 2738 TxHeader c Content-Type: image/jpeg 2738 TxHeader c Last-Modified: Thu, 08 Mar 2012 14:11:23 GMT 2738 TxHeader c Expires: Thu, 31 Dec 2037 23:55:55 GMT 2738 TxHeader c Cache-Control: max-age=315360000 2738 TxHeader c Content-Length: 108009 2738 TxHeader c Date: Thu, 08 Mar 2012 14:11:25 GMT 2738 TxHeader c Age: 0 2738 TxHeader c Connection: keep-alive 2738 Debug c Hit send timeout, wrote = 77976/108304; retrying 2738 Debug c Write error, retval = -1, len = 30328, errno = Resource temporarily unavailable 2738 ReqEnd c 2104587141 1331215885.872925997 1331215885.875815868 4.831786394 0.002806425 0.000083447 2738 StatSess c 10.30.0.69 51752 5 1 2 0 0 2 590 225326 Any ideas? rr From r at roze.lv Thu Mar 8 19:13:43 2012 From: r at roze.lv (Reinis Rozitis) Date: Thu, 8 Mar 2012 21:13:43 +0200 Subject: Chrome -Hit send timeout In-Reply-To: <1A91744C617D4D7F91AC286B7460589F@NeiRoze> References: <1A91744C617D4D7F91AC286B7460589F@NeiRoze> Message-ID: > 2738 Debug c Hit send timeout, wrote = 77976/108304; retrying > 2738 Debug c Write error, retval = -1, len = 30328, errno = > Resource temporarily unavailable Seems that the problem is with keep-alive / sessions (varnish trying to send to allready closed connection by the browser?) - doing full reload (ctrl+reload) with Chrome every second request fails (on the same url). If I add set resp.http.Connection="close"; in vcl_deliver the problem goes away. rr From gc at ants.eu Fri Mar 9 09:35:48 2012 From: gc at ants.eu (Gianni Carabelli) Date: Fri, 09 Mar 2012 10:35:48 +0100 Subject: Going crazy to mitigate slow read Message-ID: <4F59CEF4.5040207@ants.eu> Hi all. I've got few servers with varnish + apache on loopback. Modsecurity mitigate the problem on the only apache side, but fails with apache + varnish. I'm using mod_rpaf to get the right ip address, but probably something goes wrong. I would like to get another approach and try to block the attack completely in varnish. In apache, some directive say: "if there are enough connection from this ip in READ/WRITE state, reject incoming connections from that ip" Is there a way to do so in varnish? Thanks JohnnyRun From damon at huddler-inc.com Fri Mar 9 17:09:26 2012 From: damon at huddler-inc.com (Damon Snyder) Date: Fri, 9 Mar 2012 09:09:26 -0800 Subject: Going crazy to mitigate slow read In-Reply-To: <4F59CEF4.5040207@ants.eu> References: <4F59CEF4.5040207@ants.eu> Message-ID: Another way of doing this in nginx in front of varnish. See the limit_* directives in nginx http://wiki.nginx.org/HttpLimitZoneModule#limit_zone. It depends on your application, but typically, if you have an abusive client(s), you end up serving a lot of the requests from varnish so your apache processes never sees the bulk of the requests. Additionally, your apache threads are a more finite resource, so you want to keep them from all being occupied by the flood of requests if you can. Hope this helps, Damon On Fri, Mar 9, 2012 at 1:35 AM, Gianni Carabelli wrote: > Hi all. > I've got few servers with varnish + apache on loopback. > Modsecurity mitigate the problem on the only apache side, but fails with > apache + varnish. > I'm using mod_rpaf to get the right ip address, but probably something > goes wrong. > > I would like to get another approach and try to block the attack > completely in varnish. > In apache, some directive say: "if there are enough connection from this > ip in READ/WRITE state, reject incoming connections from that ip" > Is there a way to do so in varnish? > > Thanks > > JohnnyRun > > ______________________________**_________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/**lists/mailman/listinfo/**varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: From TFigueiro at au.westfield.com Fri Mar 9 22:33:09 2012 From: TFigueiro at au.westfield.com (Thiago Figueiro) Date: Fri, 9 Mar 2012 22:33:09 +0000 Subject: Using varnish to increase the cache time of slow pages Message-ID: <22F96A574165AA4482FF2909473477742086DC4D@AUPDC00-MBX01P.au.ad.westfield.com> I wrote a blog post describing quick-win modification I made to our Varnish configuration last week. It lets us keep the default page cache-time low so content is fresh but specifically increases the TTL for pages which are slow to generate. The code is for Varnish 2.1.5 but I'm sure it can be easily adapted to 3.x so I thought I'd share it with the list. http://microrants.blogspot.com.au/2012/03/using-varnish-to-increase-cache-time-of.html Cheers. Thiago. ______________________________________________________ CONFIDENTIALITY NOTICE This electronic mail message, including any and/or all attachments, is for the sole use of the intended recipient(s), and may contain confidential and/or privileged information, pertaining to business conducted under the direction and supervision of the sending organization. All electronic mail messages, which may have been established as expressed views and/or opinions (stated either within the electronic mail message or any of its attachments), are left to the sole responsibility of that of the sender, and are not necessarily attributed to the sending organization. Unauthorized interception, review, use, disclosure or distribution of any such information contained within this electronic mail message and/or its attachment(s), is (are) strictly prohibited. If you are not the intended recipient, please contact the sender by replying to this electronic mail message, along with the destruction all copies of the original electronic mail message (along with any attachments). ______________________________________________________ From weber at zackbummfertig.de Sun Mar 11 13:50:52 2012 From: weber at zackbummfertig.de (Marko Weber) Date: Sun, 11 Mar 2012 14:50:52 +0100 Subject: before i start to install varnish, a question ... Message-ID: <6e8722d79ae366e06521f6dc8cc52a64@zackbummfertig.de> i will not be able to cache php sites or? mean dynamic content pages. or is varnish accelerate them on a other way? thanks for hints marko From thomas.woinke at gmail.com Sun Mar 11 14:26:54 2012 From: thomas.woinke at gmail.com (Thomas Woinke) Date: Sun, 11 Mar 2012 15:26:54 +0100 Subject: before i start to install varnish, a question ... In-Reply-To: <6e8722d79ae366e06521f6dc8cc52a64@zackbummfertig.de> References: <6e8722d79ae366e06521f6dc8cc52a64@zackbummfertig.de> Message-ID: Hi, On Sun, Mar 11, 2012 at 2:50 PM, Marko Weber wrote: > > i will not be able to cache php sites or? mean dynamic content pages. That depends. > or is varnish accelerate them on a other way? What way would that be? > > thanks for hints I suggest you check out the VCL-Reference. Make sure you understand what the default VCL does. There are also some useful VCL-Examples: https://www.varnish-cache.org/trac/wiki/VCLExamples What you will be able to cache totally depends on the application you are using. /thomas From shib4u at gmail.com Sun Mar 11 16:19:44 2012 From: shib4u at gmail.com (Shibashish) Date: Sun, 11 Mar 2012 21:49:44 +0530 Subject: before i start to install varnish, a question ... In-Reply-To: References: <6e8722d79ae366e06521f6dc8cc52a64@zackbummfertig.de> Message-ID: On Sun, Mar 11, 2012 at 7:56 PM, Thomas Woinke wrote: > Hi, > > On Sun, Mar 11, 2012 at 2:50 PM, Marko Weber > wrote: > > > > i will not be able to cache php sites or? mean dynamic content pages. > That depends. > > > or is varnish accelerate them on a other way? > What way would that be? > > > > > thanks for hints > I suggest you check out the VCL-Reference. Make sure you understand > what the default VCL does. There are also some useful VCL-Examples: > https://www.varnish-cache.org/trac/wiki/VCLExamples > > What you will be able to cache totally depends on the application you are > using. > > /thomas > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > To test out, setup your website on 2 different IP, one with varnish and one without. Test and tune the vcl according to your application/website. After you are satisfied with your test, move your website to varnish. ShiB. while ( ! ( succeed = try() ) ); -------------- next part -------------- An HTML attachment was scrubbed... URL: From contact at jpluscplusm.com Sun Mar 11 22:13:48 2012 From: contact at jpluscplusm.com (Jonathan Matthews) Date: Sun, 11 Mar 2012 22:13:48 +0000 Subject: Using varnish to increase the cache time of slow pages In-Reply-To: <22F96A574165AA4482FF2909473477742086DC4D@AUPDC00-MBX01P.au.ad.westfield.com> References: <22F96A574165AA4482FF2909473477742086DC4D@AUPDC00-MBX01P.au.ad.westfield.com> Message-ID: On 9 March 2012 22:33, Thiago Figueiro wrote: > I wrote a blog post describing quick-win modification I made to our Varnish configuration last week. ?It lets us keep the default page cache-time low so content is fresh but specifically increases the TTL for pages which are slow to generate. > > The code is for Varnish 2.1.5 but I'm sure it can be easily adapted to 3.x so I thought I'd share it with the list. > > http://microrants.blogspot.com.au/2012/03/using-varnish-to-increase-cache-time-of.html Thanks for posting this. I like the idea of tuning a TTL coarsely based on the time it took you to generate that resource. However, I have a couple of quibbles with this *implementation*: 1) Every bit of logic you embed into VCL is something you have to work at if you move to another HTTP cache. The wonderful thing about HTTP is it's a *standard* - and it includes its own method(s) for communicating the TTL of a particular resource. By embedding this logic in Varnish, you make it so that any other cache you try to use later either has to support the same capabilities as Varnish, or makes you do what I'm about to suggest: make the *back-end* decide how long the resource can be cached. By doing *that* (i.e. making the origin server output standards-compliant caching headers, possibly based on how long it took to produce the content) you not only enable Varnish to do The Right Thing, but *every* HTTP-speaking cache/proxy/etc you might use down the line. Basically (and I totally accept this is a bigger challenge than just munging the TTL in VCL!), fixing your back-end's code so it outputs the right caching headers, possibly using the same methodology, is a more significant win. IMHO :-) 2) From a more concrete PoV, I'm not sure this code copes well with content the back-end explicitly marks as non-cachable (i.e. ttl=0). There may be good reasons for a back-end to do this (possibly not in /your/ app, but you are presenting it as having wider applicability than just your situation, hence maybe caveats should be made more visible) which are irrespective of the time it took to generate the content. Anyway, thanks for introducing the concept! Sorry if this looks a bit negative - it's not really meant to come over as such :-) Jonathan -- Jonathan Matthews London, Oxford, UK http://www.jpluscplusm.com/contact.html From jewel.nuruddin at eastbeam.co.jp Mon Mar 12 01:41:02 2012 From: jewel.nuruddin at eastbeam.co.jp (Jewel Nuruddin) Date: Mon, 12 Mar 2012 10:41:02 +0900 Subject: Backend server health check(hit even server is down) Message-ID: Hello I use varnish 3.0.2 and I have tow backend web server by round-robin. I found that my current configuration hit the backend if the backend server is down. I want varnish will not look for backend if the backed is down. Can some one please help me. My current configuration is bellow. backend web01 { .host = "10.70.18.10"; .port = "8080"; } backend web02 { .host = "10.70.18.11"; .port = "8080"; } director web round-robin { { .backend = web01; } { .backend = web02; } } sub vcl_recv { set req.backend = web; } -------------- next part -------------- An HTML attachment was scrubbed... URL: From straightflush at gmail.com Mon Mar 12 01:52:10 2012 From: straightflush at gmail.com (AD) Date: Sun, 11 Mar 2012 21:52:10 -0400 Subject: Backend server health check(hit even server is down) In-Reply-To: References: Message-ID: Looks like you are missing healthchecks backend server1 { .host = "server1.example.com"; .probe = { .url = "/"; .interval = 5s; .timeout = 1 s; .window = 5; .threshold = 3; } } On Sun, Mar 11, 2012 at 9:41 PM, Jewel Nuruddin < jewel.nuruddin at eastbeam.co.jp> wrote: > Hello > I use varnish 3.0.2 and I have tow backend web server by round-robin. > I found that my current configuration hit the backend if the backend > server is down. > I want varnish will not look for backend if the backed is down. > Can some one please help me. > > My current configuration is bellow. > > backend web01 { > .host = "10.70.18.10"; > .port = "8080"; > } > > backend web02 { > .host = "10.70.18.11"; > .port = "8080"; > } > > director web round-robin { > { > .backend = web01; > } > { > .backend = web02; > } > } > > sub vcl_recv { > set req.backend = web; > } > > > > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: From roberto.fernandezcrisial at gmail.com Mon Mar 12 01:53:45 2012 From: roberto.fernandezcrisial at gmail.com (=?utf-8?B?Um9iZXJ0byBPLiBGZXJuw6FuZGV6IENyaXNpYWw=?=) Date: Mon, 12 Mar 2012 01:53:45 +0000 Subject: Backend server health check(hit even server is down) In-Reply-To: References: Message-ID: <900031116-1331517229-cardhu_decombobulator_blackberry.rim.net-560809311-@b26.c27.bise6.blackberry> Jewel, you should try a backend probe: https://www.varnish-cache.org/trac/wiki/LoadBalancing - Roberto (@rofc) -----Original Message----- From: Jewel Nuruddin Sender: varnish-misc-bounces at varnish-cache.org Date: Mon, 12 Mar 2012 10:41:02 To: Subject: Backend server health check(hit even server is down) _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc From TFigueiro at au.westfield.com Mon Mar 12 22:21:50 2012 From: TFigueiro at au.westfield.com (Thiago Figueiro) Date: Mon, 12 Mar 2012 22:21:50 +0000 Subject: Using varnish to increase the cache time of slow pages In-Reply-To: References: <22F96A574165AA4482FF2909473477742086DC4D@AUPDC00-MBX01P.au.ad.westfield.com> Message-ID: <22F96A574165AA4482FF2909473477742088431B@AUPDC00-MBX01P.au.ad.westfield.com> Hi, Jonathan. Thanks for the feedback! > However, I have a couple of quibbles with this *implementation*: > > 1) Every bit of logic you embed into VCL is something you have to work at It's fair to note that other web framework engines seem to use the X-Runtime header for this purpose. But yes, I agree, you might have to implement that in your backend. > munging the TTL in VCL!), fixing your back-end's code so it outputs the > right caching headers, possibly using the same methodology, is a more > significant win. IMHO :-) Ah! No need to put salt in our sores. :) What typically happens is that new features are prioritised over improving performance. I think this is a sad reality in many companies. What little effort goes into performance ends-up being "spread" across the application. If you have editors complaining about content freshness you can now target these specific pages. > 2) From a more concrete PoV, I'm not sure this code copes well with > content the back-end explicitly marks as non-cachable (i.e. ttl=0). We have specific code in our VCL for this and assumed everyone else does. I should have mentioned that when this excerpt runs we have already 'passed' content which is not cacheable. > Anyway, thanks for introducing the concept! Sorry if this looks a bit > negative - it's not really meant to come over as such :-) Not negative at all, they were all good points and I appreciate you taking the time to ping back. Cheers ______________________________________________________ CONFIDENTIALITY NOTICE This electronic mail message, including any and/or all attachments, is for the sole use of the intended recipient(s), and may contain confidential and/or privileged information, pertaining to business conducted under the direction and supervision of the sending organization. All electronic mail messages, which may have been established as expressed views and/or opinions (stated either within the electronic mail message or any of its attachments), are left to the sole responsibility of that of the sender, and are not necessarily attributed to the sending organization. Unauthorized interception, review, use, disclosure or distribution of any such information contained within this electronic mail message and/or its attachment(s), is (are) strictly prohibited. If you are not the intended recipient, please contact the sender by replying to this electronic mail message, along with the destruction all copies of the original electronic mail message (along with any attachments). ______________________________________________________ From ruben at varnish-software.com Thu Mar 15 12:37:24 2012 From: ruben at varnish-software.com (=?UTF-8?Q?Rub=C3=A9n_Romero?=) Date: Thu, 15 Mar 2012 13:37:24 +0100 Subject: =?UTF-8?Q?VUG5_Reminder_=2D_Thursday_22nd_of_March=2C_2012_=40_La_D?= =?UTF-8?Q?=C3=A9fense?= Message-ID: Bonjour everyone, If you are in Paris, France next Thursday and want to know more about Varnish, please join the Varnish User Group Meeting. Details and Registration (free) is here: https://www.varnish-cache.org/vug5 For those of you that have registered(and those that will): See you in Paris next week! Cordialement, -- Rub?n Romero, Global Sales Executive & Community Cheerleader Phone: +47 21 98 92 62 / Mobile: +47 959 64 088 / Skype: ruben_varnish / GTalk: *Varnish makes websites fly!* Whitepapers | Video | Twitter | LinkedIn -------------- next part -------------- An HTML attachment was scrubbed... URL: From savetheinternet at omegasdg.com Thu Mar 15 15:15:38 2012 From: savetheinternet at omegasdg.com (Michael Save) Date: Fri, 16 Mar 2012 02:15:38 +1100 Subject: UNIX sockets Message-ID: Hi, Is it possible to use UNIX domain sockets instead of TCP/IP for backend connections? I use nginx as a backend which is able to listen on UNIX sockets as well as TCP. If there is a way to do this already, please point me in the same direction. If not, is this something varnish plans to add in the future? Thanks, Michael From cyberroadie at gmail.com Thu Mar 15 16:35:25 2012 From: cyberroadie at gmail.com (Olivier Van Acker) Date: Thu, 15 Mar 2012 16:35:25 +0000 Subject: UNIX sockets In-Reply-To: References: Message-ID: You can only use unix domain sockets for localhost On 15 March 2012 15:15, Michael Save wrote: > Hi, > > Is it possible to use UNIX domain sockets instead of TCP/IP for > backend connections? I use nginx as a backend which is able to listen > on UNIX sockets as well as TCP. > > If there is a way to do this already, please point me in the same > direction. If not, is this something varnish plans to add in the > future? > > Thanks, > Michael > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: From savetheinternet at omegasdg.com Thu Mar 15 16:44:52 2012 From: savetheinternet at omegasdg.com (Michael Save) Date: Fri, 16 Mar 2012 03:44:52 +1100 Subject: UNIX sockets In-Reply-To: References: Message-ID: My backend is on the same host. On Fri, Mar 16, 2012 at 3:35 AM, Olivier Van Acker wrote: > You can only use unix domain sockets for localhost > > On 15 March 2012 15:15, Michael Save wrote: >> >> Hi, >> >> Is it possible to use UNIX domain sockets instead of TCP/IP for >> backend connections? I use nginx as a backend which is able to listen >> on UNIX sockets as well as TCP. >> >> If there is a way to do this already, please point me in the same >> direction. If not, is this something varnish plans to add in the >> future? >> >> Thanks, >> Michael >> >> _______________________________________________ >> varnish-misc mailing list >> varnish-misc at varnish-cache.org >> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > > From michal.paal at digmia.com Fri Mar 16 00:04:37 2012 From: michal.paal at digmia.com (Michal Paal) Date: Fri, 16 Mar 2012 01:04:37 +0100 Subject: Handling multiple beresp.http.set-cookie headers References: <41B34C71-8F4D-4367-A14B-F36FC0E2EE22@digmia.com> Message-ID: > Hi, > > I'm trying to solve this problem for about a week. Situation is that I need to check in VCL, if backend response has cookie with "Logged_in:Y". Backend is also often setting more cookies, and there is only little chance that we can make developers change application, because it is too complex. From my observation and debugging, if I configure this in vcl_fetch: > > if (beresp.http.Set-Cookie ~ "Logged_in:Y") { > return (hit_for_pass); > } > > The problem is that "beresp.http.Set-Cookie" is filled only with first Set-Cookie header from backend. If there are other Set-Cookie headers, I cannot match anything in them. > > So, my question is can I somehow match or access all Set-Cookie headers? > > I've also tryed consolidating Set-Cookie headers using vmod_std.collect, but this violates RFC and doesn't work for clients. > > I would be very thankful for any ideas. > > Have a nice day! > > > > Michal Paal > > http://www.digmia.com > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 5023 bytes Desc: not available URL: From perbu at varnish-software.com Fri Mar 16 09:01:21 2012 From: perbu at varnish-software.com (Per Buer) Date: Fri, 16 Mar 2012 10:01:21 +0100 Subject: Handling multiple beresp.http.set-cookie headers In-Reply-To: References: <41B34C71-8F4D-4367-A14B-F36FC0E2EE22@digmia.com> Message-ID: HI Michal, On Fri, Mar 16, 2012 at 1:04 AM, Michal Paal wrote: > > > The problem is that "beresp.http.Set-Cookie" is filled only with first > Set-Cookie header from backend. If there are other Set-Cookie headers, I > cannot match anything in them. > https://github.com/varnish/libvmod-header Per. -- Per Buer, CEO Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer *Varnish makes websites fly!* Whitepapers | Video | Twitter -------------- next part -------------- An HTML attachment was scrubbed... URL: From hugues.alary at gmail.com Fri Mar 16 22:42:33 2012 From: hugues.alary at gmail.com (Hugues Alary) Date: Fri, 16 Mar 2012 15:42:33 -0700 Subject: Communication between Varnish and the Backend Message-ID: Hi everybody, I'm configuring varnish to be used with my web application. I need my backend to be able to give instructions to Varnish depending on the page requested. For example, some of my pages contain ESI includes, some don't. I want my application to tell varnish wether or not do the esi processing. This approach allows me to keep my VCL configuration file abstracted from the application. I can then redistribute the VCL to other users and let their application control the cache. So far my solution is to instruct varnish via HTTP headers. In my current example I set a header X-Application-DoEsi to 1 or 0. When varnish receives the response from the backend, it looks for the value of X-Application-DoEsi and does or not the ESI processing. - I was wondering if communicating with varnish via HTTP header is a good solution? - How bad can it be performance wise? - Should I be worried about security (interception/modification of the communication between Varnish and the backend), even if no credential will never be sent through HTTP headers? (Also, currently Varnish and the backend are on the same machine, but chances are that they will in the future not live on the same host). In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? Thank you for your help! -- Hugues ALARY -------------- next part -------------- An HTML attachment was scrubbed... URL: From kelvin1111111 at gmail.com Sun Mar 18 08:46:21 2012 From: kelvin1111111 at gmail.com (Kelvin Loke) Date: Sun, 18 Mar 2012 16:46:21 +0800 Subject: Analyse ReqEnd in Varnishlog Message-ID: We recently found out that a specific request occasionally have slowness, looking at the varnishlog it tells that backend is not the root cause of this problem. This request is not set to be cached in Varnish, thus pass to backend directly. This is what varnishlog shown me: 319 ReqEnd c 1168207229 1332059091.889164209 1332059091.921136379 3.414758205 0.031944752 0.000027418 I have read through https://www.varnish-cache.org/trac/wiki/Varnishlog but couldn't understand well on the meaning of the fourth number (3.414758205). I am hoping to find out what has actually caused 3.414758205 seconds delay in this case. I am using Varnish 3.0.2, below is the related varnishlog output if you are interested to find out more: ===================================================== 3603 TxRequest - GET 3603 TxURL - /player-tote-backend/s/order/placeOrderWP?serial=-1954678523&data=%7B%22list%22%3A%5B%7B%22selNum%22%3A2%2C%22win%22%3A1%2C%22place%22%3A1%2C%22price%22%3A0.76%2C%22lwin%22%3A11%2C%22lplace%22%3A3%2C%22row%22%3A1%7D%5D%2C%22type%22%3A%22BET%22%2C%22cardId 3603 TxProtocol - HTTP/1.1 3603 TxHeader - x-requested-with: XMLHttpRequest 3603 TxHeader - Accept-Language: en-sg 3603 TxHeader - Referer: http://hosthidden.net/player-tote/tote/main/7293 3603 TxHeader - Accept: application/json, text/javascript, */*; q=0.01 3603 TxHeader - Content-Type: application/x-www-form-urlencoded;charset=utf-8 3603 TxHeader - Accept-Encoding: gzip, deflate 3603 TxHeader - User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; MALC) 3603 TxHeader - Host: hosthidden.net 3603 TxHeader - Cookie: __utma=1.1015690728.1332058884.1332058884.1332058884.1; __utmb=1.3.10.1332058884; __utmz=1.1332058884.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); JSESSIONID=4e6117aadd6cb6652f0c9c32ff79; sto-id-RACING_LOGIN_Varnish_GRP04=IDBABAKM; __utmc=1; 3603 TxHeader - X-Forwarded-For: 119.74.200.110 , 220.255.2.25, 172.16.16.236 3603 TxHeader - X-Cookie.ViewMode: dollar 3603 TxHeader - X-Cookie.Lang: en_US 3603 TxHeader - X-Varnish: 1168207229 319 ReqStart c 172.16.16.236 16818 1168207229 319 RxRequest c GET 319 RxURL c /player-tote-backend/s/order/placeOrderWP?serial=-1954678523&data=%7B%22list%22%3A%5B%7B%22selNum%22%3A2%2C%22win%22%3A1%2C%22place%22%3A1%2C%22price%22%3A0.76%2C%22lwin%22%3A11%2C%22lplace%22%3A3%2C%22row%22%3A1%7D%5D%2C%22type%22%3A%22BET%22%2C%22cardId 319 RxProtocol c HTTP/1.1 319 RxHeader c x-requested-with: XMLHttpRequest 319 RxHeader c Accept-Language: en-sg 319 RxHeader c Referer: http://hosthidden.net/player-tote/tote/main/7293 319 RxHeader c Accept: application/json, text/javascript, */*; q=0.01 319 RxHeader c Content-Type: application/x-www-form-urlencoded;charset=utf-8 319 RxHeader c Accept-Encoding: gzip, deflate 319 RxHeader c User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; MALC) 319 RxHeader c Host: hosthidden.net 319 RxHeader c Connection: Keep-Alive 319 RxHeader c Cookie: __utma=1.1015690728.1332058884.1332058884.1332058884.1; __utmb=1.3.10.1332058884; __utmz=1.1332058884.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); JSESSIONID=4e6117aadd6cb6652f0c9c32ff79; sto-id-RACING_LOGIN_Varnish_GRP04=IDBABAKM; __utmc=1; 319 RxHeader c X-Forwarded-For: 119.74.200.110 , 220.255.2.25 319 VCL_call c recv pass 319 VCL_call c hash 319 Hash c /player-tote-backend/s/order/placeOrderWP?serial=-1954678523&data=%7B%22list%22%3A%5B%7B%22selNum%22%3A2%2C%22win%22%3A1%2C%22place%22%3A1%2C%22price%22%3A0.76%2C%22lwin%22%3A11%2C%22lplace%22%3A3%2C%22row%22%3A1%7D%5D%2C%22type%22%3A%22BET%22%2C%22cardI 319 Hash c dollar 319 Hash c en_US 319 VCL_return c hash 319 VCL_call c pass pass 319 Backend c 3603 member member31 319 TTL c 1168207229 RFC 0 -1 -1 1332059092 0 1332059091 869893200 0 319 VCL_call c fetch 319 TTL c 1168207229 VCL 86400 -1 -1 1332059092 -0 319 VCL_return c deliver 319 ObjProtocol c HTTP/1.1 319 ObjResponse c OK 319 ObjHeader c Server: GlassFish Server Open Source Edition 3.1.2 319 ObjHeader c i: 191 319 ObjHeader c spero-elapse-time: 30.233ms 319 ObjHeader c Pragma: no-cache 319 ObjHeader c Cache-Control: no-cache 319 ObjHeader c Expires: Mon, 26 Jul 1997 05:00:00 GMT 319 ObjHeader c X-Last-Serial: 1118320844 319 ObjHeader c Content-Type: text/javascript;charset=UTF-8 319 ObjHeader c Content-Language: en-SG 319 ObjHeader c Content-Length: 171 319 ObjHeader c Date: Sun, 18 Mar 2012 08:24:51 GMT 319 VCL_call c deliver deliver 319 TxProtocol c HTTP/1.1 319 TxStatus c 200 319 TxResponse c OK 319 TxHeader c Server: GlassFish Server Open Source Edition 3.1.2 319 TxHeader c i: 191 319 TxHeader c spero-elapse-time: 30.233ms 319 TxHeader c Pragma: no-cache 319 TxHeader c Cache-Control: no-cache 319 TxHeader c Expires: Mon, 26 Jul 1997 05:00:00 GMT 319 TxHeader c X-Last-Serial: 1118320844 319 TxHeader c Content-Type: text/javascript;charset=UTF-8 319 TxHeader c Content-Language: en-SG 319 TxHeader c Content-Length: 171 319 TxHeader c Accept-Ranges: bytes 319 TxHeader c Date: Sun, 18 Mar 2012 08:24:51 GMT 319 TxHeader c X-Varnish: 1168207229 319 TxHeader c Age: 0 319 TxHeader c Via: 1.1 varnish 319 TxHeader c Connection: keep-alive 319 Length c 171 319 ReqEnd c 1168207229 1332059091.889164209 1332059091.921136379 3.414758205 0.031944752 0.000027418 ===================================================== -------------- next part -------------- An HTML attachment was scrubbed... URL: From jewel.nuruddin at eastbeam.co.jp Mon Mar 19 07:36:07 2012 From: jewel.nuruddin at eastbeam.co.jp (Jewel Nuruddin) Date: Mon, 19 Mar 2012 16:36:07 +0900 Subject: Varnish client IP address not display Message-ID: Hello My varnish is run on 10.70.18.22 server and my web server run back end 10.70.18.30 When client browse through varnish in my web server it always show varnish IP(10.70.18.22) But I want my web server should display client IP address. I use the following configuration sub vcl_fetch { remove obj.http.X-Varnish-IP; set obj.http.X-Varnish-IP = server.ip; } It did not work for me. Can some one please help me what should I do. Thanks Jewel -------------- next part -------------- An HTML attachment was scrubbed... URL: From gasper.furman at delo.si Mon Mar 19 07:46:24 2012 From: gasper.furman at delo.si (=?windows-1252?Q?Ga=9Aper_Furman?=) Date: Mon, 19 Mar 2012 08:46:24 +0100 Subject: Varnish client IP address not display In-Reply-To: References: Message-ID: <4F66E450.9030006@delo.si> Hello in vcl_recv add something like this: sub vcl_recv { remove req.http.X-Forwarded-For; set req.http.X-Forwarded-For = client.ip; } Best regards, Ga?per On 03/19/2012 08:36 AM, Jewel Nuruddin wrote: > Hello > My varnish is run on 10.70.18.22 server and my web server run back > end 10.70.18.30 > When client browse through varnish in my web server it always show > varnish IP(10.70.18.22) > But I want my web server should display client IP address. > I use the following configuration > sub vcl_fetch { > > remove obj.http.X-Varnish-IP; > set obj.http.X-Varnish-IP = server.ip; > > } > It did not work for me. > Can some one please help me what should I do. > > Thanks > Jewel > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc -- Ga?per Furman Spletni razvoj Web Development Delo, d. d. Dunajska 5, 1000 Ljubljana T: +386 1 47 37 946 E: gasper.furman at delo.si -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si.jpg Type: image/jpeg Size: 4535 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si3.jpg Type: image/jpeg Size: 4051 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si2.jpg Type: image/jpeg Size: 5520 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si4.jpg Type: image/jpeg Size: 2639 bytes Desc: not available URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: mail_logotipi_si5.jpg Type: image/jpeg Size: 1963 bytes Desc: not available URL: From jewel.nuruddin at eastbeam.co.jp Mon Mar 19 07:52:18 2012 From: jewel.nuruddin at eastbeam.co.jp (Jewel Nuruddin) Date: Mon, 19 Mar 2012 16:52:18 +0900 Subject: Varnish client IP address not display In-Reply-To: References: Message-ID: Sorry I the configuration is bellow, please ignore my previous configuration. sub vcl_recv { remove req.http.X-Forwarded-For; set req.http.X-Forwarded-For = client.ip; } But still it did not work for me !!! On Mon, Mar 19, 2012 at 4:36 PM, Jewel Nuruddin < jewel.nuruddin at eastbeam.co.jp> wrote: > Hello > My varnish is run on 10.70.18.22 server and my web server run back end > 10.70.18.30 > When client browse through varnish in my web server it always show varnish > IP(10.70.18.22) > But I want my web server should display client IP address. > I use the following configuration > > sub vcl_fetch { > > remove obj.http.X-Varnish-IP; > set obj.http.X-Varnish-IP = server.ip; > > } > > It did not work for me. > Can some one please help me what should I do. > > Thanks > Jewel > -------------- next part -------------- An HTML attachment was scrubbed... URL: From varnish at mm.quex.org Mon Mar 19 08:00:29 2012 From: varnish at mm.quex.org (Michael Alger) Date: Mon, 19 Mar 2012 16:00:29 +0800 Subject: Varnish client IP address not display In-Reply-To: References: Message-ID: <20120319080029.GA19957@grum.quex.org> > On Mon, Mar 19, 2012 at 4:36 PM, Jewel Nuruddin wrote: > > My varnish is run on 10.70.18.22 server and my web server run > > back end 10.70.18.30 > > When client browse through varnish in my web server it always > > show varnish IP(10.70.18.22) > > But I want my web server should display client IP address. > > I use the following configuration > Sorry I the configuration is bellow, please ignore my previous > configuration. > > sub vcl_recv { > remove req.http.X-Forwarded-For; > set req.http.X-Forwarded-For = client.ip; > > } > > But still it did not work for me !!! The above code adds a new header "X-Forwarded-For" which will contain the IP address of the client, as seen by Varnish. You can modify the backend server to utilise this header rather than the address of the connection itself, if you wish to display/store/etc. the client's IP address. This is fairly easy if you're displaying this information in your own server-side code (PHP, ASP, etc.). It may be more difficult or impossible if you're relying on server-provided environment variables and built-in functionality. Any information derived from the connection properties will of course include your Varnish server's IP address, since that's the system which is connecting to the backend. From stewsnooze at gmail.com Mon Mar 19 08:02:31 2012 From: stewsnooze at gmail.com (Stewart Robinson) Date: Mon, 19 Mar 2012 08:02:31 +0000 Subject: Varnish client IP address not display In-Reply-To: References: Message-ID: <1566545273393188183@unknownmsgid> Jewel, What header are you checking on the back end? You should be reading the x-forwarded-for header rather than some form of remote_addr. Stewart Robinson @stewsnooze FullFatThings.com On 19 Mar 2012, at 07:53, Jewel Nuruddin wrote: Sorry I the configuration is bellow, please ignore my previous configuration. sub vcl_recv { remove req.http.X-Forwarded-For; set req.http.X-Forwarded-For = client.ip; } But still it did not work for me !!! On Mon, Mar 19, 2012 at 4:36 PM, Jewel Nuruddin < jewel.nuruddin at eastbeam.co.jp> wrote: > Hello > My varnish is run on 10.70.18.22 server and my web server run back end > 10.70.18.30 > When client browse through varnish in my web server it always show varnish > IP(10.70.18.22) > But I want my web server should display client IP address. > I use the following configuration > > sub vcl_fetch { > > remove obj.http.X-Varnish-IP; > set obj.http.X-Varnish-IP = server.ip; > > } > > It did not work for me. > Can some one please help me what should I do. > > Thanks > Jewel > _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc -------------- next part -------------- An HTML attachment was scrubbed... URL: From geoff at uplex.de Mon Mar 19 08:17:34 2012 From: geoff at uplex.de (Geoff Simmons) Date: Mon, 19 Mar 2012 09:17:34 +0100 Subject: Varnish client IP address not display In-Reply-To: <20120319080029.GA19957@grum.quex.org> References: <20120319080029.GA19957@grum.quex.org> Message-ID: <4F66EB9E.7040806@uplex.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 3/19/12 9:00 AM, Michael Alger wrote: >> On Mon, Mar 19, 2012 at 4:36 PM, Jewel Nuruddin wrote: >>> My varnish is run on 10.70.18.22 server and my web server run >>> back end 10.70.18.30 When client browse through varnish in my >>> web server it always show varnish IP(10.70.18.22) But I want my >>> web server should display client IP address. I use the >>> following configuration >> Sorry I the configuration is bellow, please ignore my previous >> configuration. >> >> sub vcl_recv { remove req.http.X-Forwarded-For; set >> req.http.X-Forwarded-For = client.ip; >> >> } >> >> But still it did not work for me !!! > > The above code adds a new header "X-Forwarded-For" which will > contain the IP address of the client, as seen by Varnish. You can > modify the backend server to utilise this header rather than the > address of the connection itself, if you wish to > display/store/etc. the client's IP address. This is fairly easy if > you're displaying this information in your own server-side code > (PHP, ASP, etc.). Should add to this that in vcl_recv(), we don't know if the request will be seen by a backend at all -- it depends on whether or not Varnish decides to deliver a cached object. If backends generate responses that include a client IP obtained from X-Forwarded-For, and those responses are cached, then when Varnish returns the cached object, it will have whatever client IP was included when the backend generated it. That very likely *won't* be the IP of the client who sent the current request. If you want Varnish to return responses that include the current client IP every time, then it is almost certainly impossible to have Varnish cache those responses. There might be some sort of trick here, perhaps some kind of black magic with ESI, but I doubt it. Is this is a problem you could solve some other way? Having the current client IP in every response and caching with Varnish are two goals that are in conflict with one another. Best, Geoff - -- UPLEX Systemoptimierung Schwanenwik 24 22087 Hamburg http://uplex.de/ Mob: +49-176-63690917 -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.14 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCAAGBQJPZuudAAoJEOUwvh9pJNUReZoP/jTCsZB1HNE3s9nv5ybtrTOR 2KWLmGlkF5ZoO7GAVfy+20FwP2RoeBphAl6k8N2Wve3a5bP5ZgUZT3dtlHUh1u9l LGuW2qBtU76yNnHpGWbQXifTN26DZ6e24MuWkr+mpMbPe0kAFSxEukvmVSBZGwgW IVbsIW025AnkNL3DHUvE3NcBYnw/zuGuvBWF2NyT7a+hC/jJfE9KUv2GVGRKhK8o UtTl8TiyWZsKIWLGGJuWg4pNMKxLoGyXiHuY4FAs32u96m14yrvIc27/IB1N6rJw x7Od8oNYPYrUp9sI5o/KIVqAM7kg1kqlAy7/HdZ647JyXMODQqf4HxjURa+1NpJl STNrLh9VTgNBIMHiGBpyq54tBm1Hr43qh/JN9T8OegkuCbf1Jpmb2nwP+S4mt6hu CH3qbWm6HDdX20c5s9n9Pq+m2NCz7pKkWv0QJmtVHigriiZBaQEcTRynAboctbGD DcgJkkCvVfNYpSPJvHQndkHUj7vXoilN7wUXUQm3mB111RpqeiZ5BaocgeJ+iXHf FScApUGhYDxI/FbCkSj9tHo5RSpydorNqwkQREFLgzre1pUBBt4Xu6vg5eEdQt1l ialnhCXYZeS0zxq+3QFQvs3mpKJZ60HFZEcjBqPPzKcAqxhKe1y057PjHoyY+GFp FEQBlT1LfpQVu9pTutcU =nJcZ -----END PGP SIGNATURE----- From geoff at uplex.de Mon Mar 19 08:28:58 2012 From: geoff at uplex.de (Geoff Simmons) Date: Mon, 19 Mar 2012 09:28:58 +0100 Subject: Varnish client IP address not display In-Reply-To: <4F66EB9E.7040806@uplex.de> References: <20120319080029.GA19957@grum.quex.org> <4F66EB9E.7040806@uplex.de> Message-ID: <4F66EE4A.8000509@uplex.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I said: > If you want Varnish to return responses that include the current > client IP every time, then it is almost certainly impossible to > have Varnish cache those responses. There might be some sort of > trick here, perhaps some kind of black magic with ESI, but I doubt > it. ... but on second thought, maybe it's not that much black magic after all. The "main" object, which can be cached, can contain an ESI include for a fragment that points to an application that just prints out whatever it finds in X-Fowarded-For. Then you'd have to make sure that the included fragment is never cached -- return(pass) for the URL. (Can you do that with ESI?) But still, without knowing what the problem to be solved is, I wonder if this solution is overkill. Geoff - -- UPLEX Systemoptimierung Schwanenwik 24 22087 Hamburg http://uplex.de/ Mob: +49-176-63690917 -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.14 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCAAGBQJPZu5JAAoJEOUwvh9pJNURVPkP/1O2drGSkV2oT+uMO9YtXh4w 9nz9/tYZfJMEktXhAjAga4IwYUH/a8/6LECLEvTLLQEe+Y9r6hil7ephGxdaiVwh l8qQYPTdKD5OdN5KY3ZbGVTLP9o/6h+aSaOumiEezr3fdB4vOjDVAOqY46SedppU jiQYcEAyM+LmVZmF4bfCYk3jKpYaeFu/OdOHNoqk1zSvYtzC3klSjUTTzBaP6aOn wUi6Dj/nzc7+092/2+78+3LZIVdG61bNSt+qgcyneopSge1HLiDUCeMoYUsKmnkj f6RXHOLwaEMGDscfgG3sfIhEaRNElZkVbnklpAVOQ/KLqq1wSXd69yoRvsn7yw9+ 6m3j4rT2QfFl7T43o5BRuqtOhFZfpJKCwf2q969sUBtg6vAYM6YoLyblqdyFVuLa eJkImVK95E9Zqz+WX/6Zthx9Cdp+B0+6XU28HQuoGr2IB88aQZ/RHLwNdHJA1iI2 kMQb8k8Ns6tYFeZEAzRRHtJtxL1mh+2DEhRDTh/amZ4dFOvcqhcTVpirfhI48t4X hY/Do/LUW8bSNen96k4JozrwpQvkY03LkzpPnfwDb3cXKohJb3ug2YZ10KXNUnDh bPh7CA2WiSXy5kdCUr73EvfWo2XDXMlEHfJu2I1Zh5xG01A2vVTub4Lpkvn/gmSo z+ggkDmtHMGhbav1yh4v =kvU5 -----END PGP SIGNATURE----- From info at massivescale.net Mon Mar 19 11:39:36 2012 From: info at massivescale.net (MassiveScale.net) Date: Mon, 19 Mar 2012 12:39:36 +0100 Subject: Varnish client IP address not display In-Reply-To: <1566545273393188183@unknownmsgid> References: <1566545273393188183@unknownmsgid> Message-ID: <4F671AF8.3060201@massivescale.net> On 03/19/2012 09:02 AM, Stewart Robinson wrote: > Jewel, > What header are you checking on the back end? > You should be reading the x-forwarded-for header rather than some form > of remote_addr. Alternatively, if your backend server is Apache, you could use mod_rpaf http://stderr.net/apache/rpaf/ -- Andrzej Godziuk http://MassiveScale.net/ From contact at jpluscplusm.com Mon Mar 19 13:25:22 2012 From: contact at jpluscplusm.com (Jonathan Matthews) Date: Mon, 19 Mar 2012 13:25:22 +0000 Subject: VUG5 Paris BOF Message-ID: Hi all - I'm heading along to VUG5 this week - really looking forward to meeting a lot of you and seeing how you're using and abusing our favourite tool :-) When I signed up, I don't recall ticking the "BOF" checkbox - could anyone let me know if it's too late to get in on that action? Either way, are people (like me) who are attending *just* the user day (Thursday) perhaps looking for more Varnish chat on the Friday or the weekend? I'm there 'til Sunday, and would love to get the most out of a high concentration of Varnish-literate folk! All the best, Jonathan -- Jonathan Matthews London, Oxford, UK http://www.jpluscplusm.com/contact.html From hugues.alary at gmail.com Mon Mar 19 19:50:23 2012 From: hugues.alary at gmail.com (Hugues Alary) Date: Mon, 19 Mar 2012 12:50:23 -0700 Subject: Communication between Varnish and the Backend In-Reply-To: References: Message-ID: Happy Monday everybody, Nobody, got some good advices for me? :) Thanks, -Hugues On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: > Hi everybody, > > I'm configuring varnish to be used with my web application. > > I need my backend to be able to give instructions to Varnish depending on > the page requested. For example, some of my pages contain ESI includes, > some don't. > > I want my application to tell varnish wether or not do the esi > processing. This approach allows me to keep my VCL configuration file > abstracted from the application. I can then redistribute the VCL to other > users and let their application control the cache. > > So far my solution is to instruct varnish via HTTP headers. > > In my current example I set a header X-Application-DoEsi to 1 or 0. When > varnish receives the response from the backend, it looks for the value > of X-Application-DoEsi and does or not the ESI processing. > > - I was wondering if communicating with varnish via HTTP header is a > good solution? > - How bad can it be performance wise? > - Should I be worried about security (interception/modification of the > communication between Varnish and the backend), even if no credential will > never be sent through HTTP headers? (Also, currently Varnish and the > backend are on the same machine, but chances are that they will in the > future not live on the same host). > > In the future, I plan on instructing varnish not to cache certain pages > containing user defined query strings. I want the user to be able to > specify these un-cachable urls query strings directly in the application. > The application will then send the un-cachable query strings in a header > X-Application-QueryStringNoCache: "querystring1,querystring2,...". > > Is that a bad idea? > > Thank you for your help! > > -- > Hugues ALARY > -- Hugues ALARY -------------- next part -------------- An HTML attachment was scrubbed... URL: From jeroen.ooms at stat.ucla.edu Tue Mar 20 00:11:57 2012 From: jeroen.ooms at stat.ucla.edu (Jeroen Ooms) Date: Mon, 19 Mar 2012 17:11:57 -0700 Subject: using the max-age request header Message-ID: How do I configure my VLC to let Varnish respect the 'Cache-Control max-age' request header? Someone on SO suggested the following: if (req.http.Cache-Control ~ '\bmax-age=\b`) { if (std.duration(regsub(req.http.Cache-Control, ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { return (pass); } } However, what I don't like about this is that vcl_pass does not actually update the cache with the new entry. How can I configure it so that when max age < obj.age, a fresh copy will be fetched and inserted into cache? From perbu at varnish-software.com Tue Mar 20 06:25:05 2012 From: perbu at varnish-software.com (Per Buer) Date: Tue, 20 Mar 2012 07:25:05 +0100 Subject: Communication between Varnish and the Backend In-Reply-To: References: Message-ID: On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: (..) > > - I was wondering if communicating with varnish via HTTP header is a > good solution? > > Yes. > > - How bad can it be performance wise? > > Negligible. > > - Should I be worried about security (interception/modification of the > communication between Varnish and the backend), even if no credential will > never be sent through HTTP headers? (Also, currently Varnish and the > backend are on the same machine, but chances are that they will in the > future not live on the same host). > > It's more or less impossible to turn Varnish into an open proxy so I wouldn't worry about that. > > > In the future, I plan on instructing varnish not to cache certain pages > containing user defined query strings. I want the user to be able to > specify these un-cachable urls query strings directly in the application. > The application will then send the un-cachable query strings in a header > X-Application-QueryStringNoCache: "querystring1,querystring2,...". > > Is that a bad idea? > No. If it works for you then go for it. -- Per Buer, CEO Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer *Varnish makes websites fly!* Whitepapers | Video | Twitter -------------- next part -------------- An HTML attachment was scrubbed... URL: From mib at electronic-minds.de Tue Mar 20 09:24:02 2012 From: mib at electronic-minds.de (Michael Borejdo) Date: Tue, 20 Mar 2012 09:24:02 +0000 Subject: Stale-While-Revalidate or Similar Message-ID: Hello List, Is there support for something like "stale-while-revalidate" coming to Varnish? I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. Or is there any other way with using vcl trickery to accomplish this? (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) [1] [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html Thanks Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: From graham.lyons at bbc.co.uk Tue Mar 20 09:50:54 2012 From: graham.lyons at bbc.co.uk (Graham Lyons) Date: Tue, 20 Mar 2012 09:50:54 +0000 Subject: Stale-While-Revalidate or Similar In-Reply-To: References: Message-ID: <9303601D-DC59-45DA-BCCB-6B0D3621557E@bbc.co.uk> Hi Michael, There is a similar feature to this available in Varnish: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html Grace and saint modes correspond roughly, respectively to stale-while-revalidate and stale-if-error proposed in RFC5861. Graham. On 20 Mar 2012, at 09:24, varnish-misc-request at varnish-cache.org wrote: > Send varnish-misc mailing list submissions to > varnish-misc at varnish-cache.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > or, via email, send a message with subject or body 'help' to > varnish-misc-request at varnish-cache.org > > You can reach the person managing the list at > varnish-misc-owner at varnish-cache.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of varnish-misc digest..." > > > Today's Topics: > > 1. Re: Varnish client IP address not display (MassiveScale.net) > 2. VUG5 Paris BOF (Jonathan Matthews) > 3. Re: Communication between Varnish and the Backend (Hugues Alary) > 4. using the max-age request header (Jeroen Ooms) > 5. Re: Communication between Varnish and the Backend (Per Buer) > 6. Stale-While-Revalidate or Similar (Michael Borejdo) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Mon, 19 Mar 2012 12:39:36 +0100 > From: "MassiveScale.net" > To: varnish-misc at varnish-cache.org > Subject: Re: Varnish client IP address not display > Message-ID: <4F671AF8.3060201 at massivescale.net> > Content-Type: text/plain; charset=ISO-8859-1 > > On 03/19/2012 09:02 AM, Stewart Robinson wrote: >> Jewel, >> What header are you checking on the back end? >> You should be reading the x-forwarded-for header rather than some form >> of remote_addr. > > Alternatively, if your backend server is Apache, you could use mod_rpaf > http://stderr.net/apache/rpaf/ > > -- > Andrzej Godziuk > http://MassiveScale.net/ > > > > ------------------------------ > > Message: 2 > Date: Mon, 19 Mar 2012 13:25:22 +0000 > From: Jonathan Matthews > To: varnish-misc at varnish-cache.org > Subject: VUG5 Paris BOF > Message-ID: > > Content-Type: text/plain; charset=UTF-8 > > Hi all - > > I'm heading along to VUG5 this week - really looking forward to > meeting a lot of you and seeing how you're using and abusing our > favourite tool :-) > > When I signed up, I don't recall ticking the "BOF" checkbox - could > anyone let me know if it's too late to get in on that action? > > Either way, are people (like me) who are attending *just* the user day > (Thursday) perhaps looking for more Varnish chat on the Friday or the > weekend? I'm there 'til Sunday, and would love to get the most out of > a high concentration of Varnish-literate folk! > > All the best, > Jonathan > -- > Jonathan Matthews > London, Oxford, UK > http://www.jpluscplusm.com/contact.html > > > > ------------------------------ > > Message: 3 > Date: Mon, 19 Mar 2012 12:50:23 -0700 > From: Hugues Alary > To: varnish-misc at varnish-cache.org > Subject: Re: Communication between Varnish and the Backend > Message-ID: > > Content-Type: text/plain; charset="iso-8859-1" > > Happy Monday everybody, > > Nobody, got some good advices for me? :) > > Thanks, > -Hugues > > On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: > >> Hi everybody, >> >> I'm configuring varnish to be used with my web application. >> >> I need my backend to be able to give instructions to Varnish depending on >> the page requested. For example, some of my pages contain ESI includes, >> some don't. >> >> I want my application to tell varnish wether or not do the esi >> processing. This approach allows me to keep my VCL configuration file >> abstracted from the application. I can then redistribute the VCL to other >> users and let their application control the cache. >> >> So far my solution is to instruct varnish via HTTP headers. >> >> In my current example I set a header X-Application-DoEsi to 1 or 0. When >> varnish receives the response from the backend, it looks for the value >> of X-Application-DoEsi and does or not the ESI processing. >> >> - I was wondering if communicating with varnish via HTTP header is a >> good solution? >> - How bad can it be performance wise? >> - Should I be worried about security (interception/modification of the >> communication between Varnish and the backend), even if no credential will >> never be sent through HTTP headers? (Also, currently Varnish and the >> backend are on the same machine, but chances are that they will in the >> future not live on the same host). >> >> In the future, I plan on instructing varnish not to cache certain pages >> containing user defined query strings. I want the user to be able to >> specify these un-cachable urls query strings directly in the application. >> The application will then send the un-cachable query strings in a header >> X-Application-QueryStringNoCache: "querystring1,querystring2,...". >> >> Is that a bad idea? >> >> Thank you for your help! >> >> -- >> Hugues ALARY >> > > > > -- > Hugues ALARY > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > Message: 4 > Date: Mon, 19 Mar 2012 17:11:57 -0700 > From: Jeroen Ooms > To: varnish-misc at varnish-cache.org > Subject: using the max-age request header > Message-ID: > > Content-Type: text/plain; charset=ISO-8859-1 > > How do I configure my VLC to let Varnish respect the 'Cache-Control > max-age' request header? Someone on SO suggested the following: > > if (req.http.Cache-Control ~ '\bmax-age=\b`) { > if (std.duration(regsub(req.http.Cache-Control, > ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { > return (pass); > } > } > > However, what I don't like about this is that vcl_pass does not > actually update the cache with the new entry. How can I configure it > so that when max age < obj.age, a fresh copy will be fetched and > inserted into cache? > > > > ------------------------------ > > Message: 5 > Date: Tue, 20 Mar 2012 07:25:05 +0100 > From: Per Buer > To: Hugues Alary > Cc: varnish-misc at varnish-cache.org > Subject: Re: Communication between Varnish and the Backend > Message-ID: > > Content-Type: text/plain; charset="iso-8859-1" > > On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: > (..) > >> >> - I was wondering if communicating with varnish via HTTP header is a >> good solution? >> >> Yes. > >> >> - How bad can it be performance wise? >> >> Negligible. > > >> >> - Should I be worried about security (interception/modification of the >> communication between Varnish and the backend), even if no credential will >> never be sent through HTTP headers? (Also, currently Varnish and the >> backend are on the same machine, but chances are that they will in the >> future not live on the same host). >> >> > It's more or less impossible to turn Varnish into an open proxy so I > wouldn't worry about that. > > >> >> >> In the future, I plan on instructing varnish not to cache certain pages >> containing user defined query strings. I want the user to be able to >> specify these un-cachable urls query strings directly in the application. >> The application will then send the un-cachable query strings in a header >> X-Application-QueryStringNoCache: "querystring1,querystring2,...". >> >> Is that a bad idea? >> > > No. If it works for you then go for it. > > > -- > Per Buer, CEO > Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer > *Varnish makes websites fly!* > Whitepapers | > Video | > Twitter > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > Message: 6 > Date: Tue, 20 Mar 2012 09:24:02 +0000 > From: Michael Borejdo > To: "varnish-misc at varnish-cache.org" > Subject: Stale-While-Revalidate or Similar > Message-ID: > > > Content-Type: text/plain; charset="us-ascii" > > Hello List, > > Is there support for something like "stale-while-revalidate" coming to Varnish? > I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. > Or is there any other way with using vcl trickery to accomplish this? > (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) [1] > > [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html > > Thanks > > Michael > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > > End of varnish-misc Digest, Vol 72, Issue 21 > ******************************************** http://www.bbc.co.uk/ This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this. -------------- next part -------------- An HTML attachment was scrubbed... URL: From mib at electronic-minds.de Tue Mar 20 10:06:04 2012 From: mib at electronic-minds.de (Michael Borejdo) Date: Tue, 20 Mar 2012 10:06:04 +0000 Subject: Stale-While-Revalidate or Similar In-Reply-To: <9303601D-DC59-45DA-BCCB-6B0D3621557E@bbc.co.uk> References: <9303601D-DC59-45DA-BCCB-6B0D3621557E@bbc.co.uk> Message-ID: Hi there, >There is a similar feature to this available in Varnish: >https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html Unfortunately my servers are healthy (they do not send 5XX or the like), but are just slow as hell sometimes. Or how is "health" "measured" by varnish? I think this solution will not work for me, since my backend seems to be healthy. What I basically want to accomplish is to prevent "the poor sod" from waiting for a request. Stale content is acceptable, waiting isn't. Thanks Michael --------------------------------------------------------------- Von: varnish-misc-bounces at varnish-cache.org [mailto:varnish-misc-bounces at varnish-cache.org] Im Auftrag von Graham Lyons Gesendet: Dienstag, 20. M?rz 2012 10:51 An: varnish-misc at varnish-cache.org Betreff: Re: Stale-While-Revalidate or Similar Hi Michael, There is a similar feature to this available in Varnish: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html Grace and saint modes correspond roughly, respectively to stale-while-revalidate and stale-if-error proposed in RFC5861. Graham. On 20 Mar 2012, at 09:24, varnish-misc-request at varnish-cache.org wrote: Send varnish-misc mailing list submissions to varnish-misc at varnish-cache.org To subscribe or unsubscribe via the World Wide Web, visit https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc or, via email, send a message with subject or body 'help' to varnish-misc-request at varnish-cache.org You can reach the person managing the list at varnish-misc-owner at varnish-cache.org When replying, please edit your Subject line so it is more specific than "Re: Contents of varnish-misc digest..." Today's Topics: ??1. Re: Varnish client IP address not display (MassiveScale.net) ??2. VUG5 Paris BOF (Jonathan Matthews) ??3. Re: Communication between Varnish and the Backend (Hugues Alary) ??4. using the max-age request header (Jeroen Ooms) ??5. Re: Communication between Varnish and the Backend (Per Buer) ??6. Stale-While-Revalidate or Similar (Michael Borejdo) ---------------------------------------------------------------------- Message: 1 Date: Mon, 19 Mar 2012 12:39:36 +0100 From: "MassiveScale.net" To: varnish-misc at varnish-cache.org Subject: Re: Varnish client IP address not display Message-ID: <4F671AF8.3060201 at massivescale.net> Content-Type: text/plain; charset=ISO-8859-1 On 03/19/2012 09:02 AM, Stewart Robinson wrote: Jewel, What header are you checking on the back end? You should be reading the x-forwarded-for header rather than some form of remote_addr. Alternatively, if your backend server is Apache, you could use mod_rpaf http://stderr.net/apache/rpaf/ -- Andrzej Godziuk http://MassiveScale.net/ ------------------------------ Message: 2 Date: Mon, 19 Mar 2012 13:25:22 +0000 From: Jonathan Matthews To: varnish-misc at varnish-cache.org Subject: VUG5 Paris BOF Message-ID: Content-Type: text/plain; charset=UTF-8 Hi all - I'm heading along to VUG5 this week - really looking forward to meeting a lot of you and seeing how you're using and abusing our favourite tool :-) When I signed up, I don't recall ticking the "BOF" checkbox - could anyone let me know if it's too late to get in on that action? Either way, are people (like me) who are attending *just* the user day (Thursday) perhaps looking for more Varnish chat on the Friday or the weekend? I'm there 'til Sunday, and would love to get the most out of a high concentration of Varnish-literate folk! All the best, Jonathan -- Jonathan Matthews London, Oxford, UK http://www.jpluscplusm.com/contact.html ------------------------------ Message: 3 Date: Mon, 19 Mar 2012 12:50:23 -0700 From: Hugues Alary To: varnish-misc at varnish-cache.org Subject: Re: Communication between Varnish and the Backend Message-ID: Content-Type: text/plain; charset="iso-8859-1" Happy Monday everybody, Nobody, got some good advices for me? :) Thanks, -Hugues On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: Hi everybody, I'm configuring varnish to be used with my web application. I need my backend to be able to give instructions to Varnish depending on the page requested. For example, some of my pages contain ESI includes, some don't. I want my application to tell varnish wether or not do the esi processing. This approach allows me to keep my VCL configuration file abstracted from the application. I can then redistribute the VCL to other users and let their application control the cache. So far my solution is to instruct varnish via HTTP headers. In my current example I set a header X-Application-DoEsi to 1 or 0. When varnish receives the response from the backend, it looks for the value of X-Application-DoEsi and does or not the ESI processing. ??- I was wondering if communicating with varnish via HTTP header is a ??good solution? ??- How bad can it be performance wise? ??- Should I be worried about security (interception/modification of the ??communication between Varnish and the backend), even if no credential will ??never be sent through HTTP headers? (Also, currently Varnish and the ??backend are on the same machine, but chances are that they will in the ??future not live on the same host). In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? Thank you for your help! -- Hugues ALARY -- Hugues ALARY -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 4 Date: Mon, 19 Mar 2012 17:11:57 -0700 From: Jeroen Ooms To: varnish-misc at varnish-cache.org Subject: using the max-age request header Message-ID: Content-Type: text/plain; charset=ISO-8859-1 How do I configure my VLC to let Varnish respect the 'Cache-Control max-age' request header? Someone on SO suggested the following: if (req.http.Cache-Control ~ '\bmax-age=\b`) { ???if (std.duration(regsub(req.http.Cache-Control, ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { ???????return (pass); ???} } However, what I don't like about this is that vcl_pass does not actually update the cache with the new entry. How can I configure it so that when max age < obj.age, a fresh copy will be fetched and inserted into cache? ------------------------------ Message: 5 Date: Tue, 20 Mar 2012 07:25:05 +0100 From: Per Buer To: Hugues Alary Cc: varnish-misc at varnish-cache.org Subject: Re: Communication between Varnish and the Backend Message-ID: Content-Type: text/plain; charset="iso-8859-1" On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: (..) ??- I was wondering if communicating with varnish via HTTP header is a ??good solution? Yes. ??- How bad can it be performance wise? Negligible. ??- Should I be worried about security (interception/modification of the ??communication between Varnish and the backend), even if no credential will ??never be sent through HTTP headers? (Also, currently Varnish and the ??backend are on the same machine, but chances are that they will in the ??future not live on the same host). It's more or less impossible to turn Varnish into an open proxy so I wouldn't worry about that. In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? No. If it works for you then go for it. -- Per Buer, CEO Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer *Varnish makes websites fly!* Whitepapers | Video | Twitter -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 6 Date: Tue, 20 Mar 2012 09:24:02 +0000 From: Michael Borejdo To: "varnish-misc at varnish-cache.org" Subject: Stale-While-Revalidate or Similar Message-ID: Content-Type: text/plain; charset="us-ascii" Hello List, Is there support for something like "stale-while-revalidate" coming to Varnish? I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. Or is there any other way with using vcl trickery to accomplish this? (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) ?[1] [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html Thanks Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc End of varnish-misc Digest, Vol 72, Issue 21 ******************************************** ? http://www.bbc.co.uk This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this. From graham.lyons at bbc.co.uk Tue Mar 20 10:16:32 2012 From: graham.lyons at bbc.co.uk (Graham Lyons) Date: Tue, 20 Mar 2012 10:16:32 +0000 Subject: Stale-While-Revalidate or Similar In-Reply-To: References: Message-ID: <91B1AABC-E35E-491E-A7DC-10BDC3638D3F@bbc.co.uk> Yeah, you want grace mode: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html#grace-mode As it says on that page, "it serves stale content to avoid request pile-up." On 20 Mar 2012, at 10:06, varnish-misc-request at varnish-cache.org wrote: > Send varnish-misc mailing list submissions to > varnish-misc at varnish-cache.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > or, via email, send a message with subject or body 'help' to > varnish-misc-request at varnish-cache.org > > You can reach the person managing the list at > varnish-misc-owner at varnish-cache.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of varnish-misc digest..." > > > Today's Topics: > > 1. Re: Stale-While-Revalidate or Similar (Graham Lyons) > 2. Re: Stale-While-Revalidate or Similar (Michael Borejdo) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Tue, 20 Mar 2012 09:50:54 +0000 > From: Graham Lyons > To: varnish-misc at varnish-cache.org > Subject: Re: Stale-While-Revalidate or Similar > Message-ID: <9303601D-DC59-45DA-BCCB-6B0D3621557E at bbc.co.uk> > Content-Type: text/plain; charset="us-ascii" > > Hi Michael, > > There is a similar feature to this available in Varnish: > https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html > > Grace and saint modes correspond roughly, respectively to stale-while-revalidate and stale-if-error proposed in RFC5861. > > Graham. > > On 20 Mar 2012, at 09:24, varnish-misc-request at varnish-cache.org wrote: > >> Send varnish-misc mailing list submissions to >> varnish-misc at varnish-cache.org >> >> To subscribe or unsubscribe via the World Wide Web, visit >> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc >> or, via email, send a message with subject or body 'help' to >> varnish-misc-request at varnish-cache.org >> >> You can reach the person managing the list at >> varnish-misc-owner at varnish-cache.org >> >> When replying, please edit your Subject line so it is more specific >> than "Re: Contents of varnish-misc digest..." >> >> >> Today's Topics: >> >> 1. Re: Varnish client IP address not display (MassiveScale.net) >> 2. VUG5 Paris BOF (Jonathan Matthews) >> 3. Re: Communication between Varnish and the Backend (Hugues Alary) >> 4. using the max-age request header (Jeroen Ooms) >> 5. Re: Communication between Varnish and the Backend (Per Buer) >> 6. Stale-While-Revalidate or Similar (Michael Borejdo) >> >> >> ---------------------------------------------------------------------- >> >> Message: 1 >> Date: Mon, 19 Mar 2012 12:39:36 +0100 >> From: "MassiveScale.net" >> To: varnish-misc at varnish-cache.org >> Subject: Re: Varnish client IP address not display >> Message-ID: <4F671AF8.3060201 at massivescale.net> >> Content-Type: text/plain; charset=ISO-8859-1 >> >> On 03/19/2012 09:02 AM, Stewart Robinson wrote: >>> Jewel, >>> What header are you checking on the back end? >>> You should be reading the x-forwarded-for header rather than some form >>> of remote_addr. >> >> Alternatively, if your backend server is Apache, you could use mod_rpaf >> http://stderr.net/apache/rpaf/ >> >> -- >> Andrzej Godziuk >> http://MassiveScale.net/ >> >> >> >> ------------------------------ >> >> Message: 2 >> Date: Mon, 19 Mar 2012 13:25:22 +0000 >> From: Jonathan Matthews >> To: varnish-misc at varnish-cache.org >> Subject: VUG5 Paris BOF >> Message-ID: >> >> Content-Type: text/plain; charset=UTF-8 >> >> Hi all - >> >> I'm heading along to VUG5 this week - really looking forward to >> meeting a lot of you and seeing how you're using and abusing our >> favourite tool :-) >> >> When I signed up, I don't recall ticking the "BOF" checkbox - could >> anyone let me know if it's too late to get in on that action? >> >> Either way, are people (like me) who are attending *just* the user day >> (Thursday) perhaps looking for more Varnish chat on the Friday or the >> weekend? I'm there 'til Sunday, and would love to get the most out of >> a high concentration of Varnish-literate folk! >> >> All the best, >> Jonathan >> -- >> Jonathan Matthews >> London, Oxford, UK >> http://www.jpluscplusm.com/contact.html >> >> >> >> ------------------------------ >> >> Message: 3 >> Date: Mon, 19 Mar 2012 12:50:23 -0700 >> From: Hugues Alary >> To: varnish-misc at varnish-cache.org >> Subject: Re: Communication between Varnish and the Backend >> Message-ID: >> >> Content-Type: text/plain; charset="iso-8859-1" >> >> Happy Monday everybody, >> >> Nobody, got some good advices for me? :) >> >> Thanks, >> -Hugues >> >> On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: >> >>> Hi everybody, >>> >>> I'm configuring varnish to be used with my web application. >>> >>> I need my backend to be able to give instructions to Varnish depending on >>> the page requested. For example, some of my pages contain ESI includes, >>> some don't. >>> >>> I want my application to tell varnish wether or not do the esi >>> processing. This approach allows me to keep my VCL configuration file >>> abstracted from the application. I can then redistribute the VCL to other >>> users and let their application control the cache. >>> >>> So far my solution is to instruct varnish via HTTP headers. >>> >>> In my current example I set a header X-Application-DoEsi to 1 or 0. When >>> varnish receives the response from the backend, it looks for the value >>> of X-Application-DoEsi and does or not the ESI processing. >>> >>> - I was wondering if communicating with varnish via HTTP header is a >>> good solution? >>> - How bad can it be performance wise? >>> - Should I be worried about security (interception/modification of the >>> communication between Varnish and the backend), even if no credential will >>> never be sent through HTTP headers? (Also, currently Varnish and the >>> backend are on the same machine, but chances are that they will in the >>> future not live on the same host). >>> >>> In the future, I plan on instructing varnish not to cache certain pages >>> containing user defined query strings. I want the user to be able to >>> specify these un-cachable urls query strings directly in the application. >>> The application will then send the un-cachable query strings in a header >>> X-Application-QueryStringNoCache: "querystring1,querystring2,...". >>> >>> Is that a bad idea? >>> >>> Thank you for your help! >>> >>> -- >>> Hugues ALARY >>> >> >> >> >> -- >> Hugues ALARY >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: >> >> ------------------------------ >> >> Message: 4 >> Date: Mon, 19 Mar 2012 17:11:57 -0700 >> From: Jeroen Ooms >> To: varnish-misc at varnish-cache.org >> Subject: using the max-age request header >> Message-ID: >> >> Content-Type: text/plain; charset=ISO-8859-1 >> >> How do I configure my VLC to let Varnish respect the 'Cache-Control >> max-age' request header? Someone on SO suggested the following: >> >> if (req.http.Cache-Control ~ '\bmax-age=\b`) { >> if (std.duration(regsub(req.http.Cache-Control, >> ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { >> return (pass); >> } >> } >> >> However, what I don't like about this is that vcl_pass does not >> actually update the cache with the new entry. How can I configure it >> so that when max age < obj.age, a fresh copy will be fetched and >> inserted into cache? >> >> >> >> ------------------------------ >> >> Message: 5 >> Date: Tue, 20 Mar 2012 07:25:05 +0100 >> From: Per Buer >> To: Hugues Alary >> Cc: varnish-misc at varnish-cache.org >> Subject: Re: Communication between Varnish and the Backend >> Message-ID: >> >> Content-Type: text/plain; charset="iso-8859-1" >> >> On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: >> (..) >> >>> >>> - I was wondering if communicating with varnish via HTTP header is a >>> good solution? >>> >>> Yes. >> >>> >>> - How bad can it be performance wise? >>> >>> Negligible. >> >> >>> >>> - Should I be worried about security (interception/modification of the >>> communication between Varnish and the backend), even if no credential will >>> never be sent through HTTP headers? (Also, currently Varnish and the >>> backend are on the same machine, but chances are that they will in the >>> future not live on the same host). >>> >>> >> It's more or less impossible to turn Varnish into an open proxy so I >> wouldn't worry about that. >> >> >>> >>> >>> In the future, I plan on instructing varnish not to cache certain pages >>> containing user defined query strings. I want the user to be able to >>> specify these un-cachable urls query strings directly in the application. >>> The application will then send the un-cachable query strings in a header >>> X-Application-QueryStringNoCache: "querystring1,querystring2,...". >>> >>> Is that a bad idea? >>> >> >> No. If it works for you then go for it. >> >> >> -- >> Per Buer, CEO >> Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer >> *Varnish makes websites fly!* >> Whitepapers | >> Video | >> Twitter >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: >> >> ------------------------------ >> >> Message: 6 >> Date: Tue, 20 Mar 2012 09:24:02 +0000 >> From: Michael Borejdo >> To: "varnish-misc at varnish-cache.org" >> Subject: Stale-While-Revalidate or Similar >> Message-ID: >> >> >> Content-Type: text/plain; charset="us-ascii" >> >> Hello List, >> >> Is there support for something like "stale-while-revalidate" coming to Varnish? >> I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. >> Or is there any other way with using vcl trickery to accomplish this? >> (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) [1] >> >> [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html >> >> Thanks >> >> Michael >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: >> >> ------------------------------ >> >> _______________________________________________ >> varnish-misc mailing list >> varnish-misc at varnish-cache.org >> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc >> >> End of varnish-misc Digest, Vol 72, Issue 21 >> ******************************************** > > > http://www.bbc.co.uk/ > This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. > If you have received it in error, please delete it from your system. > Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. > Please note that the BBC monitors e-mails sent or received. > Further communication will signify your consent to this. > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > Message: 2 > Date: Tue, 20 Mar 2012 10:06:04 +0000 > From: Michael Borejdo > To: "varnish-misc at varnish-cache.org" > Subject: Re: Stale-While-Revalidate or Similar > Message-ID: > > > Content-Type: text/plain; charset="iso-8859-1" > > Hi there, > >> There is a similar feature to this available in Varnish: >> https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html > > Unfortunately my servers are healthy (they do not send 5XX or the like), but are just slow as hell sometimes. > Or how is "health" "measured" by varnish? > > I think this solution will not work for me, since my backend seems to be healthy. > What I basically want to accomplish is to prevent "the poor sod" from waiting for a request. Stale content is acceptable, waiting isn't. > > Thanks > > Michael > > --------------------------------------------------------------- > Von: varnish-misc-bounces at varnish-cache.org [mailto:varnish-misc-bounces at varnish-cache.org] Im Auftrag von Graham Lyons > Gesendet: Dienstag, 20. M?rz 2012 10:51 > An: varnish-misc at varnish-cache.org > Betreff: Re: Stale-While-Revalidate or Similar > > Hi Michael, > > There is a similar feature to this available in Varnish: > https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html > > Grace and saint modes correspond roughly, respectively to stale-while-revalidate and stale-if-error proposed in RFC5861. > > Graham. > > On 20 Mar 2012, at 09:24, varnish-misc-request at varnish-cache.org wrote: > > > Send varnish-misc mailing list submissions to > varnish-misc at varnish-cache.org > > To subscribe or unsubscribe via the World Wide Web, visit > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > or, via email, send a message with subject or body 'help' to > varnish-misc-request at varnish-cache.org > > You can reach the person managing the list at > varnish-misc-owner at varnish-cache.org > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of varnish-misc digest..." > > > Today's Topics: > > ??1. Re: Varnish client IP address not display (MassiveScale.net) > ??2. VUG5 Paris BOF (Jonathan Matthews) > ??3. Re: Communication between Varnish and the Backend (Hugues Alary) > ??4. using the max-age request header (Jeroen Ooms) > ??5. Re: Communication between Varnish and the Backend (Per Buer) > ??6. Stale-While-Revalidate or Similar (Michael Borejdo) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Mon, 19 Mar 2012 12:39:36 +0100 > From: "MassiveScale.net" > To: varnish-misc at varnish-cache.org > Subject: Re: Varnish client IP address not display > Message-ID: <4F671AF8.3060201 at massivescale.net> > Content-Type: text/plain; charset=ISO-8859-1 > > On 03/19/2012 09:02 AM, Stewart Robinson wrote: > > Jewel, > What header are you checking on the back end? > You should be reading the x-forwarded-for header rather than some form > of remote_addr. > > Alternatively, if your backend server is Apache, you could use mod_rpaf > http://stderr.net/apache/rpaf/ > > -- > Andrzej Godziuk > http://MassiveScale.net/ > > > > ------------------------------ > > Message: 2 > Date: Mon, 19 Mar 2012 13:25:22 +0000 > From: Jonathan Matthews > To: varnish-misc at varnish-cache.org > Subject: VUG5 Paris BOF > Message-ID: > > Content-Type: text/plain; charset=UTF-8 > > Hi all - > > I'm heading along to VUG5 this week - really looking forward to > meeting a lot of you and seeing how you're using and abusing our > favourite tool :-) > > When I signed up, I don't recall ticking the "BOF" checkbox - could > anyone let me know if it's too late to get in on that action? > > Either way, are people (like me) who are attending *just* the user day > (Thursday) perhaps looking for more Varnish chat on the Friday or the > weekend? I'm there 'til Sunday, and would love to get the most out of > a high concentration of Varnish-literate folk! > > All the best, > Jonathan > -- > Jonathan Matthews > London, Oxford, UK > http://www.jpluscplusm.com/contact.html > > > > ------------------------------ > > Message: 3 > Date: Mon, 19 Mar 2012 12:50:23 -0700 > From: Hugues Alary > To: varnish-misc at varnish-cache.org > Subject: Re: Communication between Varnish and the Backend > Message-ID: > > Content-Type: text/plain; charset="iso-8859-1" > > Happy Monday everybody, > > Nobody, got some good advices for me? :) > > Thanks, > -Hugues > > On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: > > > Hi everybody, > > I'm configuring varnish to be used with my web application. > > I need my backend to be able to give instructions to Varnish depending on > the page requested. For example, some of my pages contain ESI includes, > some don't. > > I want my application to tell varnish wether or not do the esi > processing. This approach allows me to keep my VCL configuration file > abstracted from the application. I can then redistribute the VCL to other > users and let their application control the cache. > > So far my solution is to instruct varnish via HTTP headers. > > In my current example I set a header X-Application-DoEsi to 1 or 0. When > varnish receives the response from the backend, it looks for the value > of X-Application-DoEsi and does or not the ESI processing. > > ??- I was wondering if communicating with varnish via HTTP header is a > ??good solution? > ??- How bad can it be performance wise? > ??- Should I be worried about security (interception/modification of the > ??communication between Varnish and the backend), even if no credential will > ??never be sent through HTTP headers? (Also, currently Varnish and the > ??backend are on the same machine, but chances are that they will in the > ??future not live on the same host). > > In the future, I plan on instructing varnish not to cache certain pages > containing user defined query strings. I want the user to be able to > specify these un-cachable urls query strings directly in the application. > The application will then send the un-cachable query strings in a header > X-Application-QueryStringNoCache: "querystring1,querystring2,...". > > Is that a bad idea? > > Thank you for your help! > > -- > Hugues ALARY > > > > > -- > Hugues ALARY > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > Message: 4 > Date: Mon, 19 Mar 2012 17:11:57 -0700 > From: Jeroen Ooms > To: varnish-misc at varnish-cache.org > Subject: using the max-age request header > Message-ID: > > Content-Type: text/plain; charset=ISO-8859-1 > > How do I configure my VLC to let Varnish respect the 'Cache-Control > max-age' request header? Someone on SO suggested the following: > > if (req.http.Cache-Control ~ '\bmax-age=\b`) { > ???if (std.duration(regsub(req.http.Cache-Control, > ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { > ???????return (pass); > ???} > } > > However, what I don't like about this is that vcl_pass does not > actually update the cache with the new entry. How can I configure it > so that when max age < obj.age, a fresh copy will be fetched and > inserted into cache? > > > > ------------------------------ > > Message: 5 > Date: Tue, 20 Mar 2012 07:25:05 +0100 > From: Per Buer > To: Hugues Alary > Cc: varnish-misc at varnish-cache.org > Subject: Re: Communication between Varnish and the Backend > Message-ID: > > Content-Type: text/plain; charset="iso-8859-1" > > On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: > (..) > > > > ??- I was wondering if communicating with varnish via HTTP header is a > ??good solution? > > Yes. > > > > ??- How bad can it be performance wise? > > Negligible. > > > > > ??- Should I be worried about security (interception/modification of the > ??communication between Varnish and the backend), even if no credential will > ??never be sent through HTTP headers? (Also, currently Varnish and the > ??backend are on the same machine, but chances are that they will in the > ??future not live on the same host). > > > It's more or less impossible to turn Varnish into an open proxy so I > wouldn't worry about that. > > > > > > In the future, I plan on instructing varnish not to cache certain pages > containing user defined query strings. I want the user to be able to > specify these un-cachable urls query strings directly in the application. > The application will then send the un-cachable query strings in a header > X-Application-QueryStringNoCache: "querystring1,querystring2,...". > > Is that a bad idea? > > > No. If it works for you then go for it. > > > -- > Per Buer, CEO > Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer > *Varnish makes websites fly!* > Whitepapers | > Video | > Twitter > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > Message: 6 > Date: Tue, 20 Mar 2012 09:24:02 +0000 > From: Michael Borejdo > To: "varnish-misc at varnish-cache.org" > Subject: Stale-While-Revalidate or Similar > Message-ID: > > > Content-Type: text/plain; charset="us-ascii" > > Hello List, > > Is there support for something like "stale-while-revalidate" coming to Varnish? > I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. > Or is there any other way with using vcl trickery to accomplish this? > (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) ?[1] > > [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html > > Thanks > > Michael > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: > > ------------------------------ > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > > End of varnish-misc Digest, Vol 72, Issue 21 > ******************************************** > > ? > > http://www.bbc.co.uk > This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. > If you have received it in error, please delete it from your system. > Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. > Please note that the BBC monitors e-mails sent or received. > Further communication will signify your consent to this. > > > > ------------------------------ > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > > End of varnish-misc Digest, Vol 72, Issue 22 > ******************************************** http://www.bbc.co.uk/ This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this. -------------- next part -------------- An HTML attachment was scrubbed... URL: From mib at electronic-minds.de Tue Mar 20 10:21:12 2012 From: mib at electronic-minds.de (Michael Borejdo) Date: Tue, 20 Mar 2012 10:21:12 +0000 Subject: Stale-While-Revalidate or Similar In-Reply-To: <91B1AABC-E35E-491E-A7DC-10BDC3638D3F@bbc.co.uk> References: <91B1AABC-E35E-491E-A7DC-10BDC3638D3F@bbc.co.uk> Message-ID: Hey graham, thanks for your reply, > Yeah, you want grace mode: > https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html#grace-mode As far as I tried, grace mode does serve stale content to 9999 / 10000 users, but one still has to refresh the cache and wait for the backend servers. Doing this async, does not seem to be supported by grace-mode, as far as I understood. Correct me, if I'm wrong. Greetings Michael Von: varnish-misc-bounces at varnish-cache.org [mailto:varnish-misc-bounces at varnish-cache.org] Im Auftrag von Graham Lyons Gesendet: Dienstag, 20. M?rz 2012 11:17 An: varnish-misc at varnish-cache.org Betreff: Re: Stale-While-Revalidate or Similar Yeah, you want grace mode: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html#grace-mode As it says on that page, "it serves stale content to avoid request pile-up." On 20 Mar 2012, at 10:06, varnish-misc-request at varnish-cache.org wrote: Send varnish-misc mailing list submissions to varnish-misc at varnish-cache.org To subscribe or unsubscribe via the World Wide Web, visit https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc or, via email, send a message with subject or body 'help' to varnish-misc-request at varnish-cache.org You can reach the person managing the list at varnish-misc-owner at varnish-cache.org When replying, please edit your Subject line so it is more specific than "Re: Contents of varnish-misc digest..." Today's Topics: ??1. Re: Stale-While-Revalidate or Similar (Graham Lyons) ??2. Re: Stale-While-Revalidate or Similar (Michael Borejdo) ---------------------------------------------------------------------- Message: 1 Date: Tue, 20 Mar 2012 09:50:54 +0000 From: Graham Lyons To: varnish-misc at varnish-cache.org Subject: Re: Stale-While-Revalidate or Similar Message-ID: <9303601D-DC59-45DA-BCCB-6B0D3621557E at bbc.co.uk> Content-Type: text/plain; charset="us-ascii" Hi Michael, There is a similar feature to this available in Varnish: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html Grace and saint modes correspond roughly, respectively to stale-while-revalidate and stale-if-error proposed in RFC5861. Graham. On 20 Mar 2012, at 09:24, varnish-misc-request at varnish-cache.org wrote: Send varnish-misc mailing list submissions to varnish-misc at varnish-cache.org To subscribe or unsubscribe via the World Wide Web, visit https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc or, via email, send a message with subject or body 'help' to varnish-misc-request at varnish-cache.org You can reach the person managing the list at varnish-misc-owner at varnish-cache.org When replying, please edit your Subject line so it is more specific than "Re: Contents of varnish-misc digest..." Today's Topics: ?1. Re: Varnish client IP address not display (MassiveScale.net) ?2. VUG5 Paris BOF (Jonathan Matthews) ?3. Re: Communication between Varnish and the Backend (Hugues Alary) ?4. using the max-age request header (Jeroen Ooms) ?5. Re: Communication between Varnish and the Backend (Per Buer) ?6. Stale-While-Revalidate or Similar (Michael Borejdo) ---------------------------------------------------------------------- Message: 1 Date: Mon, 19 Mar 2012 12:39:36 +0100 From: "MassiveScale.net" To: varnish-misc at varnish-cache.org Subject: Re: Varnish client IP address not display Message-ID: <4F671AF8.3060201 at massivescale.net> Content-Type: text/plain; charset=ISO-8859-1 On 03/19/2012 09:02 AM, Stewart Robinson wrote: Jewel, What header are you checking on the back end? You should be reading the x-forwarded-for header rather than some form of remote_addr. Alternatively, if your backend server is Apache, you could use mod_rpaf http://stderr.net/apache/rpaf/ -- Andrzej Godziuk http://MassiveScale.net/ ------------------------------ Message: 2 Date: Mon, 19 Mar 2012 13:25:22 +0000 From: Jonathan Matthews To: varnish-misc at varnish-cache.org Subject: VUG5 Paris BOF Message-ID: Content-Type: text/plain; charset=UTF-8 Hi all - I'm heading along to VUG5 this week - really looking forward to meeting a lot of you and seeing how you're using and abusing our favourite tool :-) When I signed up, I don't recall ticking the "BOF" checkbox - could anyone let me know if it's too late to get in on that action? Either way, are people (like me) who are attending *just* the user day (Thursday) perhaps looking for more Varnish chat on the Friday or the weekend? I'm there 'til Sunday, and would love to get the most out of a high concentration of Varnish-literate folk! All the best, Jonathan -- Jonathan Matthews London, Oxford, UK http://www.jpluscplusm.com/contact.html ------------------------------ Message: 3 Date: Mon, 19 Mar 2012 12:50:23 -0700 From: Hugues Alary To: varnish-misc at varnish-cache.org Subject: Re: Communication between Varnish and the Backend Message-ID: Content-Type: text/plain; charset="iso-8859-1" Happy Monday everybody, Nobody, got some good advices for me? :) Thanks, -Hugues On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: Hi everybody, I'm configuring varnish to be used with my web application. I need my backend to be able to give instructions to Varnish depending on the page requested. For example, some of my pages contain ESI includes, some don't. I want my application to tell varnish wether or not do the esi processing. This approach allows me to keep my VCL configuration file abstracted from the application. I can then redistribute the VCL to other users and let their application control the cache. So far my solution is to instruct varnish via HTTP headers. In my current example I set a header X-Application-DoEsi to 1 or 0. When varnish receives the response from the backend, it looks for the value of X-Application-DoEsi and does or not the ESI processing. ?- I was wondering if communicating with varnish via HTTP header is a ?good solution? ?- How bad can it be performance wise? ?- Should I be worried about security (interception/modification of the ?communication between Varnish and the backend), even if no credential will ?never be sent through HTTP headers? (Also, currently Varnish and the ?backend are on the same machine, but chances are that they will in the ?future not live on the same host). In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? Thank you for your help! -- Hugues ALARY -- Hugues ALARY -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 4 Date: Mon, 19 Mar 2012 17:11:57 -0700 From: Jeroen Ooms To: varnish-misc at varnish-cache.org Subject: using the max-age request header Message-ID: Content-Type: text/plain; charset=ISO-8859-1 How do I configure my VLC to let Varnish respect the 'Cache-Control max-age' request header? Someone on SO suggested the following: if (req.http.Cache-Control ~ '\bmax-age=\b`) { ??if (std.duration(regsub(req.http.Cache-Control, ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { ??????return (pass); ??} } However, what I don't like about this is that vcl_pass does not actually update the cache with the new entry. How can I configure it so that when max age < obj.age, a fresh copy will be fetched and inserted into cache? ------------------------------ Message: 5 Date: Tue, 20 Mar 2012 07:25:05 +0100 From: Per Buer To: Hugues Alary Cc: varnish-misc at varnish-cache.org Subject: Re: Communication between Varnish and the Backend Message-ID: Content-Type: text/plain; charset="iso-8859-1" On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: (..) ?- I was wondering if communicating with varnish via HTTP header is a ?good solution? Yes. ?- How bad can it be performance wise? Negligible. ?- Should I be worried about security (interception/modification of the ?communication between Varnish and the backend), even if no credential will ?never be sent through HTTP headers? (Also, currently Varnish and the ?backend are on the same machine, but chances are that they will in the ?future not live on the same host). It's more or less impossible to turn Varnish into an open proxy so I wouldn't worry about that. In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? No. If it works for you then go for it. -- Per Buer, CEO Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer *Varnish makes websites fly!* Whitepapers | Video | Twitter -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 6 Date: Tue, 20 Mar 2012 09:24:02 +0000 From: Michael Borejdo To: "varnish-misc at varnish-cache.org" Subject: Stale-While-Revalidate or Similar Message-ID: Content-Type: text/plain; charset="us-ascii" Hello List, Is there support for something like "stale-while-revalidate" coming to Varnish? I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. Or is there any other way with using vcl trickery to accomplish this? (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) ?[1] [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html Thanks Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc End of varnish-misc Digest, Vol 72, Issue 21 ******************************************** http://www.bbc.co.uk/ This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this. -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 2 Date: Tue, 20 Mar 2012 10:06:04 +0000 From: Michael Borejdo To: "varnish-misc at varnish-cache.org" Subject: Re: Stale-While-Revalidate or Similar Message-ID: Content-Type: text/plain; charset="iso-8859-1" Hi there, There is a similar feature to this available in Varnish: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html Unfortunately my servers are healthy (they do not send 5XX or the like), but are just slow as hell sometimes. Or how is "health" "measured" by varnish? I think this solution will not work for me, since my backend seems to be healthy. What I basically want to accomplish is to prevent "the poor sod" from waiting for a request. Stale content is acceptable, waiting isn't. Thanks Michael --------------------------------------------------------------- Von: varnish-misc-bounces at varnish-cache.org [mailto:varnish-misc-bounces at varnish-cache.org] Im Auftrag von Graham Lyons Gesendet: Dienstag, 20. M?rz 2012 10:51 An: varnish-misc at varnish-cache.org Betreff: Re: Stale-While-Revalidate or Similar Hi Michael, There is a similar feature to this available in Varnish: https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html Grace and saint modes correspond roughly, respectively to stale-while-revalidate and stale-if-error proposed in RFC5861. Graham. On 20 Mar 2012, at 09:24, varnish-misc-request at varnish-cache.org wrote: Send varnish-misc mailing list submissions to varnish-misc at varnish-cache.org To subscribe or unsubscribe via the World Wide Web, visit https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc or, via email, send a message with subject or body 'help' to varnish-misc-request at varnish-cache.org You can reach the person managing the list at varnish-misc-owner at varnish-cache.org When replying, please edit your Subject line so it is more specific than "Re: Contents of varnish-misc digest..." Today's Topics: ??1. Re: Varnish client IP address not display (MassiveScale.net) ??2. VUG5 Paris BOF (Jonathan Matthews) ??3. Re: Communication between Varnish and the Backend (Hugues Alary) ??4. using the max-age request header (Jeroen Ooms) ??5. Re: Communication between Varnish and the Backend (Per Buer) ??6. Stale-While-Revalidate or Similar (Michael Borejdo) ---------------------------------------------------------------------- Message: 1 Date: Mon, 19 Mar 2012 12:39:36 +0100 From: "MassiveScale.net" To: varnish-misc at varnish-cache.org Subject: Re: Varnish client IP address not display Message-ID: <4F671AF8.3060201 at massivescale.net> Content-Type: text/plain; charset=ISO-8859-1 On 03/19/2012 09:02 AM, Stewart Robinson wrote: Jewel, What header are you checking on the back end? You should be reading the x-forwarded-for header rather than some form of remote_addr. Alternatively, if your backend server is Apache, you could use mod_rpaf http://stderr.net/apache/rpaf/ -- Andrzej Godziuk http://MassiveScale.net/ ------------------------------ Message: 2 Date: Mon, 19 Mar 2012 13:25:22 +0000 From: Jonathan Matthews To: varnish-misc at varnish-cache.org Subject: VUG5 Paris BOF Message-ID: Content-Type: text/plain; charset=UTF-8 Hi all - I'm heading along to VUG5 this week - really looking forward to meeting a lot of you and seeing how you're using and abusing our favourite tool :-) When I signed up, I don't recall ticking the "BOF" checkbox - could anyone let me know if it's too late to get in on that action? Either way, are people (like me) who are attending *just* the user day (Thursday) perhaps looking for more Varnish chat on the Friday or the weekend? I'm there 'til Sunday, and would love to get the most out of a high concentration of Varnish-literate folk! All the best, Jonathan -- Jonathan Matthews London, Oxford, UK http://www.jpluscplusm.com/contact.html ------------------------------ Message: 3 Date: Mon, 19 Mar 2012 12:50:23 -0700 From: Hugues Alary To: varnish-misc at varnish-cache.org Subject: Re: Communication between Varnish and the Backend Message-ID: Content-Type: text/plain; charset="iso-8859-1" Happy Monday everybody, Nobody, got some good advices for me? :) Thanks, -Hugues On Fri, Mar 16, 2012 at 3:42 PM, Hugues Alary wrote: Hi everybody, I'm configuring varnish to be used with my web application. I need my backend to be able to give instructions to Varnish depending on the page requested. For example, some of my pages contain ESI includes, some don't. I want my application to tell varnish wether or not do the esi processing. This approach allows me to keep my VCL configuration file abstracted from the application. I can then redistribute the VCL to other users and let their application control the cache. So far my solution is to instruct varnish via HTTP headers. In my current example I set a header X-Application-DoEsi to 1 or 0. When varnish receives the response from the backend, it looks for the value of X-Application-DoEsi and does or not the ESI processing. ??- I was wondering if communicating with varnish via HTTP header is a ??good solution? ??- How bad can it be performance wise? ??- Should I be worried about security (interception/modification of the ??communication between Varnish and the backend), even if no credential will ??never be sent through HTTP headers? (Also, currently Varnish and the ??backend are on the same machine, but chances are that they will in the ??future not live on the same host). In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? Thank you for your help! -- Hugues ALARY -- Hugues ALARY -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 4 Date: Mon, 19 Mar 2012 17:11:57 -0700 From: Jeroen Ooms To: varnish-misc at varnish-cache.org Subject: using the max-age request header Message-ID: Content-Type: text/plain; charset=ISO-8859-1 How do I configure my VLC to let Varnish respect the 'Cache-Control max-age' request header? Someone on SO suggested the following: if (req.http.Cache-Control ~ '\bmax-age=\b`) { ???if (std.duration(regsub(req.http.Cache-Control, ".*\bmax-age=(\d+)\b.*", "\1s"), 0s) < obj.age) { ???????return (pass); ???} } However, what I don't like about this is that vcl_pass does not actually update the cache with the new entry. How can I configure it so that when max age < obj.age, a fresh copy will be fetched and inserted into cache? ------------------------------ Message: 5 Date: Tue, 20 Mar 2012 07:25:05 +0100 From: Per Buer To: Hugues Alary Cc: varnish-misc at varnish-cache.org Subject: Re: Communication between Varnish and the Backend Message-ID: Content-Type: text/plain; charset="iso-8859-1" On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: (..) ??- I was wondering if communicating with varnish via HTTP header is a ??good solution? Yes. ??- How bad can it be performance wise? Negligible. ??- Should I be worried about security (interception/modification of the ??communication between Varnish and the backend), even if no credential will ??never be sent through HTTP headers? (Also, currently Varnish and the ??backend are on the same machine, but chances are that they will in the ??future not live on the same host). It's more or less impossible to turn Varnish into an open proxy so I wouldn't worry about that. In the future, I plan on instructing varnish not to cache certain pages containing user defined query strings. I want the user to be able to specify these un-cachable urls query strings directly in the application. The application will then send the un-cachable query strings in a header X-Application-QueryStringNoCache: "querystring1,querystring2,...". Is that a bad idea? No. If it works for you then go for it. -- Per Buer, CEO Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer *Varnish makes websites fly!* Whitepapers | Video | Twitter -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ Message: 6 Date: Tue, 20 Mar 2012 09:24:02 +0000 From: Michael Borejdo To: "varnish-misc at varnish-cache.org" Subject: Stale-While-Revalidate or Similar Message-ID: Content-Type: text/plain; charset="us-ascii" Hello List, Is there support for something like "stale-while-revalidate" coming to Varnish? I need to make the request to my backend-servers async and serve slightly stale content (defined by grace) and I do not want a user to wait for the backend at any time. Or is there any other way with using vcl trickery to accomplish this? (Unfortunately I cannot seem to find any info on this topic and the thread I found on the list has not been answered) ?[1] [1] https://www.varnish-cache.org/lists/pipermail/varnish-misc/2012-February/021644.html Thanks Michael -------------- next part -------------- An HTML attachment was scrubbed... URL: ------------------------------ _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc End of varnish-misc Digest, Vol 72, Issue 21 ******************************************** ? http://www.bbc.co.uk This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this. ------------------------------ _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc End of varnish-misc Digest, Vol 72, Issue 22 ******************************************** ? http://www.bbc.co.uk This e-mail (and any attachments) is confidential and may contain personal views which are not the views of the BBC unless specifically stated. If you have received it in error, please delete it from your system. Do not use, copy or disclose the information in any way nor act in reliance on it and notify the sender immediately. Please note that the BBC monitors e-mails sent or received. Further communication will signify your consent to this. From apj at mutt.dk Tue Mar 20 10:30:04 2012 From: apj at mutt.dk (Andreas Plesner Jacobsen) Date: Tue, 20 Mar 2012 11:30:04 +0100 Subject: Stale-While-Revalidate or Similar In-Reply-To: References: <91B1AABC-E35E-491E-A7DC-10BDC3638D3F@bbc.co.uk> Message-ID: <20120320103004.GL12685@nerd.dk> On Tue, Mar 20, 2012 at 10:21:12AM +0000, Michael Borejdo wrote: > > > Yeah, you want grace mode: > > https://www.varnish-cache.org/docs/trunk/tutorial/handling_misbehaving_servers.html#grace-mode > > As far as I tried, grace mode does serve stale content to 9999 / 10000 users, > but one still has to refresh the cache and wait for the backend servers. > Doing this async, does not seem to be supported by grace-mode, as far as I > understood. Correct me, if I'm wrong. You're right. You can use a local HTTP client to refresh content before it expires by setting req.hash_always_miss. That way you keep control of which client takes the delay. -- Andreas From hugues.alary at gmail.com Tue Mar 20 17:35:20 2012 From: hugues.alary at gmail.com (Hugues Alary) Date: Tue, 20 Mar 2012 10:35:20 -0700 Subject: Communication between Varnish and the Backend In-Reply-To: References:

Message-ID: Thank you Per! On Mon, Mar 19, 2012 at 11:25 PM, Per Buer wrote: > On Fri, Mar 16, 2012 at 11:42 PM, Hugues Alary wrote: > (..) > >> >> - I was wondering if communicating with varnish via HTTP header is a >> good solution? >> >> Yes. > >> >> - How bad can it be performance wise? >> >> Negligible. > > >> >> - Should I be worried about security (interception/modification of >> the communication between Varnish and the backend), even if no credential >> will never be sent through HTTP headers? (Also, currently Varnish and the >> backend are on the same machine, but chances are that they will in the >> future not live on the same host). >> >> > It's more or less impossible to turn Varnish into an open proxy so I > wouldn't worry about that. > > >> >> >> In the future, I plan on instructing varnish not to cache certain pages >> containing user defined query strings. I want the user to be able to >> specify these un-cachable urls query strings directly in the application. >> The application will then send the un-cachable query strings in a header >> X-Application-QueryStringNoCache: "querystring1,querystring2,...". >> >> Is that a bad idea? >> > > No. If it works for you then go for it. > > > -- > Per Buer, CEO > Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer > *Varnish makes websites fly!* > Whitepapers | Video | > Twitter > > > -- Hugues ALARY -------------- next part -------------- An HTML attachment was scrubbed... URL: From anders at fupp.net Tue Mar 20 21:04:19 2012 From: anders at fupp.net (Anders Nordby) Date: Tue, 20 Mar 2012 22:04:19 +0100 Subject: SPDY in Varnish ? In-Reply-To: References:

Message-ID: <20120320210418.GA68307@fupp.net> Hi, FWIW, Firefox 11 includes SPDY support: http://techsplurge.com/8147/firefox-11-vs-chrome-17-released-features-3d-page-view-chrome-bookmarks-import-extensive-tests/ OTOH, it'll make debugging HTTP more difficult? ;-/ Cheers, Anders. On l?r, apr 30, 2011 at 09:06:52am +0200, Per Buer wrote: > We've discussed SPDY several times. SPDY is interesting but it would be > premature to implement it this early. SPDY isn't even an official IETF draft > yet and Google is still experimenting with it. I think, for us to consider > implementing it, we would need at least two things to happen. 1) An IETF > standard and 2) browser adoption. Even then it might not make sense. The > earlier drafts of SPDY weren't very proxy friendly. I'm not familiar with > Googles infrastructure but they might not use generic web proxies in their > web applications so it wasn't relevant for them. > > Until then I think it's better to sit tight and se who wins. HTTP-MPLEX, > Waka and SCTP are other technologies that operate in the same problem space. > We have no idea who might win. > > > Per. > > On Sat, Apr 30, 2011 at 1:24 AM, Simon Lyall wrote: > > > > > Just wondering what the varnish devs thoughts are on the SPDY protocol [1] > > and it's likelihood of going into varnish alongside http? > > > > [1] http://www.chromium.org/spdy > > > > -- > > Simon Lyall | Very Busy | Web: http://www.darkmere.gen.nz/ > > "To stay awake all night adds a day to your life" - Stilgar | eMT. > > > > > > _______________________________________________ > > varnish-misc mailing list > > varnish-misc at varnish-cache.org > > http://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > > > > > > -- > Per Buer, CEO > Phone: +47 21 98 92 61 / Mobile: +47 958 39 117 / Skype: per.buer > *Varnish makes websites fly!* > Whitepapers | > Video | > Twitter > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > http://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc -- Anders. From David.Petzel at disney.com Tue Mar 20 21:31:10 2012 From: David.Petzel at disney.com (Petzel, David) Date: Tue, 20 Mar 2012 17:31:10 -0400 Subject: Question on varnishlog and -m option Message-ID: <3F0C69D55568D642AED3AE818E8E71FF1635506E18@SM-NYNY-VXMB02A.nena.wdpr.disney.com> I'm a fairly new Varnish user running 3.0.2 revision 55e70a4. We are trying to setup varnishlog daemon on RHEL 5.5 such that it only logs 500 series errors. The daemon is running as: /usr/bin/varnishlog -a -w /var/log/varnish/varnish.log -D -P /var/run/varnishlog.pid -c -m TxStatus:"5\d{2}" The problem I am having is that the filter appears to be ignored when writing to file, and every single request is logged instead. If I remove the "-w /var/log/varnish/varnish.log" from the list of arguments, the results are of course displayed on-screen, however the filter seems to be honored. I checked https://www.varnish-cache.org/docs/trunk/reference/varnishlog.html and this isnt called out as known behaviour, so I am trying to figure out, is the -m filter ignored when writing to file or should the above result in only 500 series log entries being written to file? Thanks -------------- next part -------------- An HTML attachment was scrubbed... URL: From isp at daviesinc.com Tue Mar 20 23:29:00 2012 From: isp at daviesinc.com (Chris Davies) Date: Tue, 20 Mar 2012 19:29:00 -0400 Subject: SPDY in Varnish ? In-Reply-To: <20120320210418.GA68307@fupp.net> References:

<20120320210418.GA68307@fupp.net> Message-ID: On Mar 20, 2012, at 5:04 PM, Anders Nordby wrote: > FWIW, Firefox 11 includes SPDY support: > http://techsplurge.com/8147/firefox-11-vs-chrome-17-released-features-3d-page-view-chrome-bookmarks-import-extensive-tests/ > > OTOH, it'll make debugging HTTP more difficult? ;-/ > >> >> On Sat, Apr 30, 2011 at 1:24 AM, Simon Lyall wrote: >> >>> >>> Just wondering what the varnish devs thoughts are on the SPDY protocol [1] >>> and it's likelihood of going into varnish alongside http? >>> >>> [1] http://www.chromium.org/spdy Remember that SPDY requires SSL-npn and is a transport that goes across SSL. Currently, Varnish doesn't support SSL and I believe it isn't on the near-term roadmap. You can run SPDY in non-SSL environments for testing, but, it will break most production browsers. From bedis9 at gmail.com Wed Mar 21 06:31:45 2012 From: bedis9 at gmail.com (Baptiste) Date: Wed, 21 Mar 2012 07:31:45 +0100 Subject: Going crazy to mitigate slow read In-Reply-To: References: <4F59CEF4.5040207@ants.eu> Message-ID: Hi, Or you can do this in HAProxy: http://blog.exceliance.fr/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/ HAProxy and Varnish works pretty well together ;) HAProxy will even protect you again slowloris and some other type of attacks. cheers On Fri, Mar 9, 2012 at 6:09 PM, Damon Snyder wrote: > Another way of doing this in nginx in front of varnish. See the limit_* > directives in nginx http://wiki.nginx.org/HttpLimitZoneModule#limit_zone. It > depends on your application, but typically, if you have an abusive > client(s), you end up serving a lot of the requests from varnish so your > apache processes never sees the bulk of the requests. Additionally, your > apache threads are a more finite resource, so you want to keep them from all > being occupied by the flood of requests if you can. > > Hope this helps, > Damon > > > On Fri, Mar 9, 2012 at 1:35 AM, Gianni Carabelli wrote: >> >> Hi all. >> I've got few servers with varnish + apache on loopback. >> Modsecurity mitigate the problem on the only apache side, but fails with >> apache + varnish. >> I'm using mod_rpaf to get the right ip address, but probably something >> goes wrong. >> >> I would like to get another approach and try to block the attack >> completely in varnish. >> In apache, some directive say: "if there are enough connection from this >> ip in READ/WRITE state, reject incoming connections from that ip" >> Is there a way to do so in varnish? >> >> Thanks >> >> JohnnyRun >> >> _______________________________________________ >> varnish-misc mailing list >> varnish-misc at varnish-cache.org >> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc From gc at ants.eu Wed Mar 21 08:27:01 2012 From: gc at ants.eu (Gianni Carabelli) Date: Wed, 21 Mar 2012 09:27:01 +0100 Subject: Going crazy to mitigate slow read In-Reply-To: References: <4F59CEF4.5040207@ants.eu> Message-ID: <4F6990D5.1010703@ants.eu> On 03/21/2012 07:31 AM, Baptiste wrote: > Hi, > > Or you can do this in HAProxy: > http://blog.exceliance.fr/2012/02/27/use-a-load-balancer-as-a-first-row-of-defense-against-ddos/ > HAProxy and Varnish works pretty well together ;) > > HAProxy will even protect you again slowloris and some other type of attacks. > > cheers > Thanks a lot for reply. Protecting in load balancer instead of proxing with nginx is a lot better in my configuration. JohnnyRun From ruben at varnish-software.com Wed Mar 21 12:07:11 2012 From: ruben at varnish-software.com (=?UTF-8?Q?Rub=C3=A9n_Romero?=) Date: Wed, 21 Mar 2012 13:07:11 +0100 Subject: VUG5 Paris BOF In-Reply-To: References: Message-ID: Hi Jonathan, On Mon, Mar 19, 2012 at 2:25 PM, Jonathan Matthews wrote: > Hi all - > > I'm heading along to VUG5 this week - really looking forward to > meeting a lot of you and seeing how you're using and abusing our > favourite tool :-) > > Great! You are not alone. :-) > When I signed up, I don't recall ticking the "BOF" checkbox - could > anyone let me know if it's too late to get in on that action? > > It came in later. You are registered now. > Either way, are people (like me) who are attending *just* the user day > (Thursday) perhaps looking for more Varnish chat on the Friday or the > weekend? I'm there 'til Sunday, and would love to get the most out of > a high concentration of Varnish-literate folk! > > Indeed. We can ask people interested to follow this list (and thread) for more information about Friday/Saturday/Sunday. What do you think? > All the best, > Jonathan > -- > Jonathan Matthews > London, Oxford, UK > http://www.jpluscplusm.com/contact.html > > Best regards, -- Rub?n Romero, Global Sales Executive Phone: +47 21 98 92 62 / Mobile: +47 959 64 088 / Skype: ruben_varnish / GTalk: *Varnish makes websites fly!* Whitepapers | Video | Twitter | LinkedIn -------------- next part -------------- An HTML attachment was scrubbed... URL: From jewel.nuruddin at eastbeam.co.jp Thu Mar 22 06:17:20 2012 From: jewel.nuruddin at eastbeam.co.jp (Jewel Nuruddin) Date: Thu, 22 Mar 2012 15:17:20 +0900 Subject: Varnish client IP address not display In-Reply-To: <4F66EB9E.7040806@uplex.de> References: <20120319080029.GA19957@grum.quex.org> <4F66EB9E.7040806@uplex.de> Message-ID: Hello All, sorry for not undestand clearly first. Now my understandin is the following code is working sub vcl_recv { remove req.http.X-Forwarded-For; set req.http.X-Forwarded-For = client.ip; } and this will create a new header X-Forwarded-For (which valu will be client IP address) now this ?X-Forwarded-For? value we have to chatch in our back end web server like apace, IIS, nginx, tomcat, resin-pro etc! This is what is understand and its work for me. Please make me confirm it. Or is there other way to catch this client IP in back end server ? (in my case our application is made by java which need huge change if I use header "X-Forwarded-For" ) Thanks Jewel On Mon, Mar 19, 2012 at 5:17 PM, Geoff Simmons wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > On 3/19/12 9:00 AM, Michael Alger wrote: > >> On Mon, Mar 19, 2012 at 4:36 PM, Jewel Nuruddin wrote: > >>> My varnish is run on 10.70.18.22 server and my web server run > >>> back end 10.70.18.30 When client browse through varnish in my > >>> web server it always show varnish IP(10.70.18.22) But I want my > >>> web server should display client IP address. I use the > >>> following configuration > >> Sorry I the configuration is bellow, please ignore my previous > >> configuration. > >> > >> sub vcl_recv { remove req.http.X-Forwarded-For; set > >> req.http.X-Forwarded-For = client.ip; > >> > >> } > >> > >> But still it did not work for me !!! > > > > The above code adds a new header "X-Forwarded-For" which will > > contain the IP address of the client, as seen by Varnish. You can > > modify the backend server to utilise this header rather than the > > address of the connection itself, if you wish to > > display/store/etc. the client's IP address. This is fairly easy if > > you're displaying this information in your own server-side code > > (PHP, ASP, etc.). > > Should add to this that in vcl_recv(), we don't know if the request > will be seen by a backend at all -- it depends on whether or not > Varnish decides to deliver a cached object. If backends generate > responses that include a client IP obtained from X-Forwarded-For, and > those responses are cached, then when Varnish returns the cached > object, it will have whatever client IP was included when the backend > generated it. That very likely *won't* be the IP of the client who > sent the current request. > > If you want Varnish to return responses that include the current > client IP every time, then it is almost certainly impossible to have > Varnish cache those responses. There might be some sort of trick here, > perhaps some kind of black magic with ESI, but I doubt it. > > Is this is a problem you could solve some other way? Having the > current client IP in every response and caching with Varnish are two > goals that are in conflict with one another. > > > Best, > Geoff > - -- > UPLEX Systemoptimierung > Schwanenwik 24 > 22087 Hamburg > http://uplex.de/ > Mob: +49-176-63690917 > -----BEGIN PGP SIGNATURE----- > Version: GnuPG/MacGPG2 v2.0.14 (Darwin) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iQIcBAEBCAAGBQJPZuudAAoJEOUwvh9pJNUReZoP/jTCsZB1HNE3s9nv5ybtrTOR > 2KWLmGlkF5ZoO7GAVfy+20FwP2RoeBphAl6k8N2Wve3a5bP5ZgUZT3dtlHUh1u9l > LGuW2qBtU76yNnHpGWbQXifTN26DZ6e24MuWkr+mpMbPe0kAFSxEukvmVSBZGwgW > IVbsIW025AnkNL3DHUvE3NcBYnw/zuGuvBWF2NyT7a+hC/jJfE9KUv2GVGRKhK8o > UtTl8TiyWZsKIWLGGJuWg4pNMKxLoGyXiHuY4FAs32u96m14yrvIc27/IB1N6rJw > x7Od8oNYPYrUp9sI5o/KIVqAM7kg1kqlAy7/HdZ647JyXMODQqf4HxjURa+1NpJl > STNrLh9VTgNBIMHiGBpyq54tBm1Hr43qh/JN9T8OegkuCbf1Jpmb2nwP+S4mt6hu > CH3qbWm6HDdX20c5s9n9Pq+m2NCz7pKkWv0QJmtVHigriiZBaQEcTRynAboctbGD > DcgJkkCvVfNYpSPJvHQndkHUj7vXoilN7wUXUQm3mB111RpqeiZ5BaocgeJ+iXHf > FScApUGhYDxI/FbCkSj9tHo5RSpydorNqwkQREFLgzre1pUBBt4Xu6vg5eEdQt1l > ialnhCXYZeS0zxq+3QFQvs3mpKJZ60HFZEcjBqPPzKcAqxhKe1y057PjHoyY+GFp > FEQBlT1LfpQVu9pTutcU > =nJcZ > -----END PGP SIGNATURE----- > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: From rvernica at gmail.com Thu Mar 22 18:25:07 2012 From: rvernica at gmail.com (Rares Vernica) Date: Thu, 22 Mar 2012 11:25:07 -0700 Subject: serve cached data based on the freshness of an URL argument Message-ID: <873990ijcs.fsf@cessna.hpl.hp.com> Hello, I am new to Varnish so so the question might me a bit poorly stated. I am trying to configure Varnish so that serving an URL from cache depends on the freshness of another URL given as argument to the original URL. For example, the original URL might look like: http://fancyprocessing.com/processimage?http://images.com/123.jpg If I have seen this URL before and cached its result, I would like Varnish to use the cached data only if: http://images.com/123.jpg has not changed since the result was cached. Any pointers would be greatly appreciated. Thanks! Rares From pprocacci at datapipe.com Thu Mar 22 18:59:13 2012 From: pprocacci at datapipe.com (Paul A. Procacci) Date: Thu, 22 Mar 2012 13:59:13 -0500 Subject: serve cached data based on the freshness of an URL argument In-Reply-To: <873990ijcs.fsf@cessna.hpl.hp.com> References: <873990ijcs.fsf@cessna.hpl.hp.com> Message-ID: <20120322185913.GD55022@nat.myhome> You can ban (invalidate) `http://images.com/123.jpg` everytime `http://fancyprocessing.com/processimage?http://images.com/123.jpg` is fetched from the backend (I believe). I've never had to do this personally, but the documentation on bans might be of use. https://www.varnish-cache.org/docs/trunk/tutorial/purging.html ~Paul On Thu, Mar 22, 2012 at 11:25:07AM -0700, Rares Vernica wrote: > Hello, > > I am new to Varnish so so the question might me a bit poorly stated. I am > trying to configure Varnish so that serving an URL from cache depends on > the freshness of another URL given as argument to the original URL. > > For example, the original URL might look like: > > http://fancyprocessing.com/processimage?http://images.com/123.jpg > > If I have seen this URL before and cached its result, I would like > Varnish to use the cached data only if: > > http://images.com/123.jpg > > has not changed since the result was cached. > > Any pointers would be greatly appreciated. > > Thanks! > Rares > > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc ________________________________ This message may contain confidential or privileged information. If you are not the intended recipient, please advise us immediately and delete this message. See http://www.datapipe.com/legal/email_disclaimer/ for further information on confidentiality and the risks of non-secure electronic communication. If you cannot access these links, please notify us by reply message and we will send the contents to you. From shib4u at gmail.com Fri Mar 23 10:29:35 2012 From: shib4u at gmail.com (Shibashish) Date: Fri, 23 Mar 2012 15:59:35 +0530 Subject: Deny caching on mime-type Message-ID: Hi, I have a IIS back-end server which serves a aspx file Content-Type as text/html or text/vnd.wap.wml depending on the browser request, i.e it serves Content-Type text/vnd.wap.wml to a wap-browser, but serves Content-Type text/html to chrome/firefox/ie. How do I ask varnish not to cache based on mime-tyme text/vnd.wap.wml ? Thanks. ShiB. while ( ! ( succeed = try() ) ); -------------- next part -------------- An HTML attachment was scrubbed... URL: From roberto.fernandezcrisial at gmail.com Fri Mar 23 10:34:34 2012 From: roberto.fernandezcrisial at gmail.com (=?utf-8?B?Um9iZXJ0byBPLiBGZXJuw6FuZGV6IENyaXNpYWw=?=) Date: Fri, 23 Mar 2012 10:34:34 +0000 Subject: Deny caching on mime-type In-Reply-To: References: Message-ID: <1904321384-1332498875-cardhu_decombobulator_blackberry.rim.net-1799243565-@b15.c27.bise6.blackberry> ShiB, Maybe you should try with something on vcl_fetch like: if (beresp.http.Content-Type == 'text/vnd.wap.wml') { return(pass); } Good luck, Roberto (@rofc) -----Original Message----- From: Shibashish Sender: varnish-misc-bounces at varnish-cache.org Date: Fri, 23 Mar 2012 15:59:35 To: Subject: Deny caching on mime-type _______________________________________________ varnish-misc mailing list varnish-misc at varnish-cache.org https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc From apj at mutt.dk Fri Mar 23 10:43:32 2012 From: apj at mutt.dk (Andreas Plesner Jacobsen) Date: Fri, 23 Mar 2012 11:43:32 +0100 Subject: Deny caching on mime-type In-Reply-To: <1904321384-1332498875-cardhu_decombobulator_blackberry.rim.net-1799243565-@b15.c27.bise6.blackberry> References: <1904321384-1332498875-cardhu_decombobulator_blackberry.rim.net-1799243565-@b15.c27.bise6.blackberry> Message-ID: <20120323104332.GM12685@nerd.dk> On Fri, Mar 23, 2012 at 10:34:34AM +0000, Roberto O. Fern?ndez Crisial wrote: > > Maybe you should try with something on vcl_fetch like: > > if (beresp.http.Content-Type == 'text/vnd.wap.wml') > { > return(pass); > } That would be return(hit_for_pass) since 3.0. Remember to set a TTL if you want to cache the objects uncacheability (which you generally want) -- Andreas From shib4u at gmail.com Fri Mar 23 11:23:52 2012 From: shib4u at gmail.com (Shibashish) Date: Fri, 23 Mar 2012 16:53:52 +0530 Subject: Deny caching on mime-type In-Reply-To: <20120323104332.GM12685@nerd.dk> References: <1904321384-1332498875-cardhu_decombobulator_blackberry.rim.net-1799243565-@b15.c27.bise6.blackberry> <20120323104332.GM12685@nerd.dk> Message-ID: On Fri, Mar 23, 2012 at 4:13 PM, Andreas Plesner Jacobsen wrote: > On Fri, Mar 23, 2012 at 10:34:34AM +0000, Roberto O. Fern?ndez Crisial > wrote: > > > > Maybe you should try with something on vcl_fetch like: > > > > if (beresp.http.Content-Type == 'text/vnd.wap.wml') > > { > > return(pass); > > } > > That would be return(hit_for_pass) since 3.0. > > Remember to set a TTL if you want to cache the objects uncacheability > (which > you generally want) > > -- > Andreas > > _______________________________________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc > Awesome.. Thanks Roberto and Andreas.. works as expected ! I'm on varnish-2.1.5-1 -- ShiB. while ( ! ( succeed = try() ) ); -------------- next part -------------- An HTML attachment was scrubbed... URL: From lampe at hauke-lampe.de Fri Mar 23 11:43:20 2012 From: lampe at hauke-lampe.de (Hauke Lampe) Date: Fri, 23 Mar 2012 12:43:20 +0100 Subject: Deny caching on mime-type In-Reply-To: References: Message-ID: <4F6C61D8.3010001@hauke-lampe.de> On 23.03.2012 11:29, Shibashish wrote: > I have a IIS back-end server which serves a aspx file Content-Type as > text/html or text/vnd.wap.wml depending on the browser request, i.e it > serves Content-Type text/vnd.wap.wml to a wap-browser, but serves > Content-Type text/html to chrome/firefox/ie. > > How do I ask varnish not to cache based on mime-tyme text/vnd.wap.wml ? You shouldn't. Have IIS add a "Vary: User-Agent" header, so that varnish caches the different versions. You might want to normalize the User-Agent header in vcl_recv() to reduce the number of variants and improve cache efficiency, but that's not strictly necessary. Hauke. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: OpenPGP digital signature URL: From apj at mutt.dk Fri Mar 23 13:20:05 2012 From: apj at mutt.dk (Andreas Plesner Jacobsen) Date: Fri, 23 Mar 2012 14:20:05 +0100 Subject: Deny caching on mime-type In-Reply-To: <4F6C61D8.3010001@hauke-lampe.de> References: <4F6C61D8.3010001@hauke-lampe.de> Message-ID: <20120323132005.GN12685@nerd.dk> On Fri, Mar 23, 2012 at 12:43:20PM +0100, Hauke Lampe wrote: > > > I have a IIS back-end server which serves a aspx file Content-Type as > > text/html or text/vnd.wap.wml depending on the browser request, i.e it > > serves Content-Type text/vnd.wap.wml to a wap-browser, but serves > > Content-Type text/html to chrome/firefox/ie. > > > > How do I ask varnish not to cache based on mime-tyme text/vnd.wap.wml ? > > You shouldn't. Have IIS add a "Vary: User-Agent" header, so that varnish > caches the different versions. > > You might want to normalize the User-Agent header in vcl_recv() to > reduce the number of variants and improve cache efficiency, but that's > not strictly necessary. Not just "might". You need to. There's way too much variance in User-Agent. -- Andreas From imyousuf at gmail.com Fri Mar 23 15:05:52 2012 From: imyousuf at gmail.com (Imran M Yousuf) Date: Fri, 23 Mar 2012 21:05:52 +0600 Subject: Caching RESTful Web Services with Varnish Message-ID: Hi, I have used Varnish earlier for caching Web Sites and even used ESI with Varnish. Now I want to use Varnish to cache RESTful Web Services artifacts. The project I am referring to is as follows: http://kenai.com/projects/smart-cms/pages/Home Here is what the Web Service does: 1. Returns Last-Modified, ETag, Cache-Control with max-age 2. Returns 'Vary' as applicable. 3. No session has been used Here is what I can get to work with out of the box VCL: 1. Caches for the time period mentioned in max-age 2. Does not respond to PUT/POST on the URI being cached Here is what I want to achieve: 1. I want Varnish to evict from cache if a URI that is cached receives a POST/PUT/DELETE to it 2. I want Varnish to do conditional GET after cache expires 3. I want to evict all sub-resources of a resource (URI) from cache upon receiving POST/PUT/DELETE to it Can someone please guide me to a documentation or sample VCL using which I can achieve these? Thank you, -- Imran M Yousuf Twitter: @imyousuf - http://twitter.com/imyousuf Blog: http://imyousuf-tech.blogs.smartitengineering.com/ Mobile: +880-1711402557 From cosimo at streppone.it Fri Mar 23 17:26:24 2012 From: cosimo at streppone.it (Cosimo Streppone) Date: Fri, 23 Mar 2012 18:26:24 +0100 Subject: vmod-bootstrap Message-ID: During today's VUG5 dev meeting, we discussed vmod development, and looks like most people are interested in it. Now, I may be a bit slow to understand how to build a vmod, but my personal view is I don't like copying and pasting stuff around to start something new. For this reason, during this morning dev meeting, I hacked together, with a bit of spit and duct tape, sorry for that, vmod-bootstrap. https://github.com/cosimo/vmod-bootstrap/ vmod-bootstrap is a script that will generate a new vmod skeleton for you. It needs a "vmod.conf" file: { "name" : "frobnicator", "author" : "James J. Hacker", "version" : "0.01", "src" : "src/vmod_frobnicator.vcc", "required_libs" : [ { "name" : "mhash", "function" : "mhash_count", }, ], "copyright" : "Copyright (c) 2012 James J. Hacker", "repository" : "git://github.com/jamesjhacker/vmod-frobnicator", ... yadda yadda ... } Run vmod-bootstrap and it will: - check pre-requisite packages (automake, libtool and friends) - build autoconf and automake files - inflate "m4" and "src" dirs so you can hopefully run ./autogen.sh && ./configure. Pointless? Yeah, probably. It helps me in 3 ways: - understanding which of these files are actually necessary - saves me time doing search/replace - keeps all files consistent Additional intelligence can be hardwired directly into the bootstrap tool, which makes it really interesting going forward, where now is quite stupid. Bonus idea: take all the vmod.conf you can find, and build a tool that automatically clones the sources, builds and installs/packages the vmod, cpanm-like. Thoughts? -- Cosimo From contact at jpluscplusm.com Fri Mar 23 17:34:07 2012 From: contact at jpluscplusm.com (Jonathan Matthews) Date: Fri, 23 Mar 2012 18:34:07 +0100 Subject: Caching RESTful Web Services with Varnish In-Reply-To: References: Message-ID: On 23 March 2012 16:05, Imran M Yousuf wrote: > Hi, > > I have used Varnish earlier for caching Web Sites and even used ESI > with Varnish. Now I want to use Varnish to cache RESTful Web Services > artifacts. The project I am referring to is as follows: > http://kenai.com/projects/smart-cms/pages/Home > > Here is what the Web Service does: > 1. Returns Last-Modified, ETag, Cache-Control with max-age > 2. Returns 'Vary' as applicable. > 3. No session has been used > > Here is what I can get to work with out of the box VCL: > 1. Caches for the time period mentioned in max-age > 2. Does not respond to PUT/POST on the URI being cached > > Here is what I want to achieve: > 1. I want Varnish to evict from cache if a URI that is cached receives > a POST/PUT/DELETE to it I started a thread back in the 2.x days about your point #1: https://www.varnish-cache.org/lists/pipermail/varnish-misc/2011-May/020507.html The naive purge I came up with may not be optimal for 3.x (and may not have been best for 2.x!) As you'll see through that thread, the opinion of the list seemed to be that just writing VCL to do it wasn't the way forward. I'm not *convinced* this is the case however. > 2. I want Varnish to do conditional GET after cache expires > 3. I want to evict all sub-resources of a resource (URI) from cache > upon receiving POST/PUT/DELETE to it I'm not sure what you mean by this. Can you give us some examples? Jonathan -- Jonathan Matthews London, Oxford, UK http://www.jpluscplusm.com/contact.html From straightflush at gmail.com Fri Mar 23 18:35:28 2012 From: straightflush at gmail.com (AD) Date: Fri, 23 Mar 2012 14:35:28 -0400 Subject: vmod-bootstrap In-Reply-To: References: Message-ID: You should try and merge with the existing template out there https://github.com/varnish/libvmod-example On Fri, Mar 23, 2012 at 1:26 PM, Cosimo Streppone wrote: > During today's VUG5 dev meeting, we discussed > vmod development, and looks like most people > are interested in it. > > Now, I may be a bit slow to understand how to build > a vmod, but my personal view is I don't like copying and > pasting stuff around to start something new. > > For this reason, during this morning dev meeting, > I hacked together, with a bit of spit and duct tape, > sorry for that, vmod-bootstrap. > > https://github.com/cosimo/**vmod-bootstrap/ > > vmod-bootstrap is a script that will generate > a new vmod skeleton for you. > > It needs a "vmod.conf" file: > > { > "name" : "frobnicator", > "author" : "James J. Hacker", > "version" : "0.01", > "src" : "src/vmod_frobnicator.vcc", > "required_libs" : [ > { > "name" : "mhash", > "function" : "mhash_count", > }, > ], > "copyright" : "Copyright (c) 2012 James J. Hacker", > "repository" : "git://github.com/**jamesjhacker/vmod-frobnicator > "**, > ... > yadda yadda > ... > } > > Run vmod-bootstrap and it will: > > - check pre-requisite packages (automake, libtool and friends) > - build autoconf and automake files > - inflate "m4" and "src" dirs > > so you can hopefully run ./autogen.sh && ./configure. > > Pointless? Yeah, probably. It helps me in 3 ways: > > - understanding which of these files are actually necessary > - saves me time doing search/replace > - keeps all files consistent > > Additional intelligence can be hardwired directly into the bootstrap tool, > which makes it really interesting going forward, where now is quite > stupid. > > Bonus idea: take all the vmod.conf you can find, and > build a tool that automatically clones the sources, builds > and installs/packages the vmod, cpanm-like. > > Thoughts? > > -- > Cosimo > > ______________________________**_________________ > varnish-misc mailing list > varnish-misc at varnish-cache.org > https://www.varnish-cache.org/**lists/mailman/listinfo/**varnish-misc > -------------- next part -------------- An HTML attachment was scrubbed... URL: From cosimo at streppone.it Fri Mar 23 18:39:17 2012 From: cosimo at streppone.it (Cosimo Streppone) Date: Fri, 23 Mar 2012 19:39:17 +0100 Subject: vmod-bootstrap In-Reply-To: References: Message-ID: On Fri, 23 Mar 2012 19:35:28 +0100, AD wrote: > You should try and merge with the existing template out there > https://github.com/varnish/libvmod-example Okay... that's exactly what I thought I did. The files that vmod-bootstrap builds are exactly the same files that you find in libvmod-example. Maybe I didn't understand your comment? -- Cosimo From straightflush at gmail.com Fri Mar 23 19:45:31 2012 From: straightflush at gmail.com (AD) Date: Fri, 23 Mar 2012 15:45:31 -0400 Subject: vmod-bootstrap In-Reply-To: References: Message-ID: no i just wasnt sure if you were aware of it since I think its what people are using to start their vmod dev. Sorry, i didnt fully check your repo i was just pointing it out. On Fri, Mar 23, 2012 at 2:39 PM, Cosimo Streppone wrote: > On Fri, 23 Mar 2012 19:35:28 +0100, AD