nisamudeen97

Well-Known Member
Jul 7, 2010
55
5
58
Cochin
cPanel Access Level
Root Administrator
HI,

Is any one using Xvarnish ? I would like to know experiences with Xvarnish. I have just implemented in one of my servers. Used the below doc. Has anyone else used this? How long have you used it, how many servers, how did it go?

repo.xvarnish.com/
 
Last edited by a moderator:

Droidism20011

Member
Jul 20, 2017
23
10
3
Amsterdam
cPanel Access Level
Root Administrator
@nisamudeen97

Maybe a bit late, but I just got my first cPanel VPS, so i a have no idea if you allready tried xVarnish (renamed to Cachewall) or not.

At this moment I have installed Cachewall (formerly xVarnish) and i'm blown away with how easy it was. The instructions are very simple and on the same level as installing ConfigServer on WHM/cPanel, only a few lines of code in the right order and you're done.

What I noticed was that my Apache security headers (i.e X-XSS-Protection and so on) where not served to the browser, which is actually not really unsurprising, since we now serve cached pages via Varnish.

After RTFVM (RTFVarnishM) I got a bit of an idea how one should accomplish this, but this didn't lead to any results. I then cowboy cd/ls'd the whole system and cd/ls'ed some more until I hit a file named vcl_deliver.vcl. This file is located in
/etc/varnish.conf.d/local

I added the code for my headers and then did a "service varnish restart", went to the WHM backend (in the browser) and purged the cache for my domain in the Cachewall UI.

One thing to note however is that the regular vcl syntax is the following:

Code:
sub vcl_deliver {
  set resp.http.X-XSS-Protection = "1; mode=block";
  rest of your code....
}
This won't work. What you need to do is remove

Code:
sub vcl_deliver {
}
and just add:

Code:
set resp.http.X-XSS-Protection = "1; mode=block";
 rest of your code....
save the file, restart varnish and purge cache via the WHM => Cachewall UI and your done.

Please also note that I have not yet received feedback from the xVarnish/Cachewall developers if this method is 100% correct. My guess is that it is save, because the vcl_deliver.vcl has a opening header with the following content in it:

Code:
# This VCL file will be included in the VCL sub-routine vcl_deliver.
#
# Custom VCL here won't be overwritten.
# We're open to ideas and will do our best to help with any problem. Contact us
# at www.xvarnish.com or [email protected]
When I receive confirmation from the dev's I will update this thread.

Hope that helps you and anyone else that is looking into Cachewall a.k.a. xVarnish.

Kindly,

W.
 
  • Like
Reactions: Anton Sergeev

KrasniyRus

Member
Dec 23, 2016
20
1
3
Russia
cPanel Access Level
Root Administrator
Hello nisamudeen97,

I am using the xVarnish on more than 30 servers with cPanel and so far there is only on problem. It not occur often and when it occur, it is on a random principle. Once we was able to recreate the issue and contact their support team, reported the issue. For more than 3+ months, I have not feedback from them, however I guess this is the price of the free services.
 
  • Like
Reactions: Anton Sergeev

Solokron

Well-Known Member
Aug 8, 2003
851
1
168
Seattle
cPanel Access Level
DataCenter Provider
Great product. Unfortunately, they seem to have fallen off the face of the planet. No support for http2/Let's Encrypt and several other necessary technologies in today's web. I have reached out to them/him several times over the past 8 months and have received zero response.