using varnish4 for HTTPS wordpress site

Guillaume Quintard guillaume at varnish-software.com
Fri Nov 3 08:28:08 UTC 2017 

To answer the HTTPS question, client-side HTTPS is easily done using hitch (
hitch-tls.org), for the backend-side, you would need Varnish Plus.

But you are saying Amazon provides the certificates, so my guess is that
the LB does the termination arrive unencrypted to Varnish.

Do the curl error, does the host used matches the certificate?

-- 
Guillaume Quintard

On Fri, Nov 3, 2017 at 9:18 AM, Luca Gervasi <luca.gervasi at gmail.com> wrote:

> Hi,
> this is totally unrelated to varnish. If you want to achieve purging, you
> can safely stay http and purge locally (if you are using a load balancer in
> front of your delivery, you either have just one varnish - hence purge
> locally - or your purges are inconsistently distributed among all your
> caches).
>
> Bye
>
> On Fri, 3 Nov 2017 at 08:31 Navneet Kashyap <navneet.kashyap at webners.com>
> wrote:
>
>> Hi
>>
>> I was using varnish-cahe (open source) for my wordpress website, it was
>> running well when its on HTTP only, but when i turn it to HTTPS its giving
>> me error message when testing status using plugin in wordpress i.e. *Varnish
>> HTTP Purge*
>> Error: This request cannot be performed: cURL error 60: Issuer
>> certificate is invalid.
>>
>> please check the screenshot also.
>> [image: Inline image 1]
>>
>> Currently the flow is like this:
>> client--> HTTPS request--> AWS load balancer --> Varnish--> apache2.
>>
>> we are using self-signed certs for backend authentication settings in
>> AWS-load balancer, and using AMAZON provided CA-certs (using certificate
>> manager)
>>
>> Note: Is this possible in varnish-cache software (open-Source) or else we
>> have to buy varnish-cache plus software (Paid Version). or we have to busy
>> CA-certs for that domain. ?
>>
>> kindly guide us.
>>
>>
>> Thanks and Regards
>>
>> Navneet Kashyap
>> Sr. System Administrator - Webner Solutions Pvt. Ltd.
>> Web - www.webnersolutions.com <http://www.webners.com/>
>> [image: Zoho Development, Salesforce Development, Web and Mobile App
>> Development] <http://www.webnersolutions.com>
>>
>> _______________________________________________
>> varnish-misc mailing list
>> varnish-misc at varnish-cache.org
>> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc
>
>
> _______________________________________________
> varnish-misc mailing list
> varnish-misc at varnish-cache.org
> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.varnish-cache.org/lists/pipermail/varnish-misc/attachments/20171103/eb40aa8a/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image.png
Type: image/png
Size: 71209 bytes
Desc: not available
URL: <https://www.varnish-cache.org/lists/pipermail/varnish-misc/attachments/20171103/eb40aa8a/attachment-0001.png>

More information about the varnish-misc mailing list