HTTP/2 SSL Offloading with Hitch and Varnish

Anonymous

Jules

Jules is the owner and author of ISPIRE.ME. He's a Linux System Engineer, Tech fanatic and an Open Source fan.

You may also like...

10 Responses

  1. Hu Hu says:

    Thank you!

    I have an error when changing vcl:
    Message from VCC-compiler:
    Symbol not found: ‘std.port’ (expected type BOOL):
    (‘/etc/varnish/default.vcl’ Line 55 Pos 9)
    if (std.port(local.ip) == 6086) {
    ——–########———————

    Running VCC-compiler failed, exited with 2
    VCL compilation failed

    I am using varnish 5.2.

    Something changed in 5.2?

    Thank you.

    Rating: 5.0. From 1 vote.
    Please wait...
    • Jules Jules says:

      You have to enable std module first:
      import std;
      Put it right after vcl 4.0; in your vcl.

      Rating: 5.0. From 2 votes.
      Please wait...
  2. Hu Hu says:

    Hello,

    Do you have an idea on enable server push (on WordPress)?

    I have successful installed varnish for https (thank you), I can see it is using http/2, but no push. I tried wordpress plugin for server push, no use.

    Thank you.

    No votes yet.
    Please wait...
    • Jules Jules says:

      You have to write your own HTTP/2 Server Push vcl since Varnish doesnt support Server Push nativetly.

      Reasons you can find here: https://varnish-cache.org/docs/trunk/phk/spdy.html

      Rating: 5.0. From 1 vote.
      Please wait...
  3. Hu Hu says:

    I am hunting half a day, there are no ready info, some are outdated.

    It is quite complicated for me: I have to wait someone else to write an updated version or a hint.

    No votes yet.
    Please wait...
  4. Hu Hu says:

    Hi, another question:

    I found http://domain.com redirected to https://domain.com

    But not http://www.domain.com to https

    Rating: 5.0. From 1 vote.
    Please wait...
    • Jules Jules says:

      have you checked and set everything like in the howto?

      See block: “Force http://www.ispire.me to https if connections comes from HTTP Listener.”
      That should redir http://www.ispire.me to https if http://www.ispire.me matches and x-forwarded-proto is NOT “https”.

      No votes yet.
      Please wait...
  5. Hu Hu says:

    Yes, only works in domain.com.

    Perhaps it is a bug of Varnish 5.2.0?

    No votes yet.
    Please wait...
    • Jules Jules says:

      On my setup it works fine with that settings.

      Rating: 5.0. From 3 votes.
      Please wait...
  6. Hu Hu says:

    Thank you, Jules, for offering personal help!

    It is ok now, due to my misconfiguration.

    If one day later, you install server push on ispire.me, please share it again, 🙂

    Many thanks again….

    Rating: 5.0. From 1 vote.
    Please wait...

Leave a Reply

Your email address will not be published. Required fields are marked *