Bypass Cache for Particular Visitor IP Address

Thu Sep 12 21:12:14 CEST 2013

Hello Everyone,

We're using Varnish 3.0.3 behind a load balancer. We would like to bypass
the Varnish cache for a particular visitor IP address.

After doing research, I found the following solution. We’re using the
following in order for the acl to match the "http.x-forwarded-for" string.
This code is working and within varnishlog I see “6 VCL_acl c MATCH passem
7x.xxx.xxx.xxx”. However, even though it is matching the acl, the cache is
still not being bypassed.

I have a feeling it has to do with the “sub vcl_recv” or the “return
(pass)”. I also tried using “set req.hash_always_miss = true;” instead of
“return (pass)”, but this also didn’t work.

I would really greatly appreciate the help getting this to work. Many
thanks.

    C{

    #include <netinet/in.h>

    #include <string.h>

    #include <sys/socket.h>

    #include <arpa/inet.h>

    }C

    acl passem { "7x.xxx.xxx.xxx"; }

    sub vcl_recv {

    C{

    struct sockaddr_storage *client_ip_ss = VRT_r_client_ip(sp);

    struct sockaddr_in *client_ip_si = (struct sockaddr_in *) client_ip_ss;

    struct in_addr *client_ip_ia = &(client_ip_si->sin_addr);

    char *xff_ip = VRT_GetHdr(sp, HDR_REQ, "\020X-Forwarded-For:");

    if (xff_ip != NULL) {

    inet_pton(AF_INET, xff_ip, client_ip_ia);

    }

    }C

    if (!(client.ip ~ passem)) {

    return (pass);

            }

    }
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.varnish-cache.org/lists/pipermail/varnish-misc/attachments/20130912/21796197/attachment.html>