Commit caccd81d authored by Geoff Simmons's avatar Geoff Simmons

Update Varnish docker image for TLS offload.

- Add a Unix socket listerner for the offloader.
- Use VCL 4.1 (required when Unix sockets are in use).
parent 2e457cc3
......@@ -25,6 +25,7 @@ COPY varnishd_exec.sh /
RUN /bin/chmod 755 /varnishd_exec.sh
ENV HTTP_PORT=80 PROTO=HTTP READY_PORT=8080 SECRET_PATH=/var/run/varnish \
SECRET_FILE=_.secret ADMIN_PORT=6081
SECRET_FILE=_.secret ADMIN_PORT=6081 GROUP=varnish \
OFFLOAD_PATH=/var/run/offload/varnish.sock
ENTRYPOINT ["/varnishd_exec.sh"]
vcl 4.0;
vcl 4.1;
include "bogo_backend.vcl";
......
vcl 4.0;
vcl 4.1;
include "bogo_backend.vcl";
......
......@@ -4,5 +4,6 @@ set -e
set -u
exec /usr/sbin/varnishd -F -a :${HTTP_PORT},${PROTO} -a k8s=:${READY_PORT} \
-a k8s_offload=${OFFLOAD_PATH},PROXY,group=${GROUP},mode=0660 \
-S ${SECRET_PATH}/${SECRET_FILE} -T 0.0.0.0:${ADMIN_PORT} \
-p vcl_path=/etc/varnish -I /etc/varnish/start.cli -f '' "$@"
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment