Varnish HTTP Cache

I’m new here, please explain this Varnish thing

Questions and Answers

What is happening

2018-06-08 - Publically available packages from UPLEX

The varnish-cache contributors from UPLEX are happy to announce an alternative source for varnish binary packages for Debian, Ubuntu and RHEL/CentOS (work in progress).

Debian/Ubuntu packages are based on fairly recent varnish-cache master snapshots and are expected to be updated on a bi-weekly basis, synchronized with the official varnish-cache weekly builds.

The main purpose of the UPLEX Packages is to provide simple and efficient access to up-to-date varnish builds and a matching range of additional vmods which are not commonly found in package repositories like blobdigest, re, re2, geoip2 and dcs in addition to the varnish-modules vmod bundle. Other will be added over time.

This packaging effort is still in its early stages and will grow over time.

2018-04-26 - Maintenance release: Varnish Cache 4.1.10

This maintenance release is recommended for all users of 4.0 and 4.1 versions, and contains several bug fixes. More information is available in the Change log

2018-03-15 - Varnish 6.0.0 is released

Come and get it… Varnish Cache 6.0.0

Now with support for Unix Domain Sockets, better HTTP/2 support, many bugfixes and … Well read more about it all here

2017-11-15 - Security Advisory: (Unlikely) data leak

Certain uncommon configurations of Varnish may leak data in synthetic responses from vcl_backend_error{}

Please see VSV00002 Data leak - ‘-sfile’ Stevedore transient objects

We have released Varnish Varnish Cache 4.1.9 and Varnish Cache 5.2.1 to fix this issue.

2017-09-15 - Varnish 5.2.0 is released

Come and get it… Varnish Cache 5.2.0

2017-08-02 - Security Advisory: Denial of Service

All varnish versions from 4.0.1 are vulnerable to a Denial of Service attack, please see VSV00001 DoS vulnerability

2017-08-02 - Security releases: 4.0.5, 4.1.8 and 5.1.3

Varnish versions 4.0.5, 4.1.8 and 5.1.3 are now available. See VSV00001 DoS vulnerability for details.

Package repository status

The official Linux (apt/yum) package repositories are now located at A list of all available repositories can be found at:

The old is going to be removed on the 31st of August.

For more details on packages, see Releases & Downloads


You can access the varnish-cache homepages with HTTP or HTTPS as you like.

We save the logfiles from our Varnish instance for a limited period, in order to be able to debug problems.

We do not use any external trackers and do not analyze traffic.