<div dir="ltr">We're terminating HTTPS on the ELB level, so Varnish doesn't really know or care what protocol is being used. <div><br></div><div>On the ELB level, we have disabled SSLv3, but this particular quirk (The "No data received" error) occurs with and without SSLv3 in ELB's configuration.</div><div><br></div><div>My initial theory was that something was timing out somewhere in the stack (ELB->Varnish->App server), but I haven't been able to back that up with anything concrete. I've upped the timeouts across the board to test the theory with no improvement in behavior.</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Oct 20, 2014 at 5:24 PM, nick tailor <span dir="ltr"><<a href="mailto:nick.tailor@gmail.com" target="_blank">nick.tailor@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr">Are these doing any SSL?<div><br></div><div>This could be related to poodle bug, a lot of people are disabling sslv3 and only using tls1.0+.</div><div><br></div><div>The handshake if using ssl could your problem, however just a guess based on its around the same time poodle was released.</div><div><br></div><div>Cheers</div><div><br></div><div>Nick Tailor</div><div><a href="http://nicktailor.com" target="_blank">nicktailor.com</a></div></div><div class="gmail_extra"><br><div class="gmail_quote"><div><div class="h5">On Mon, Oct 20, 2014 at 1:50 PM, Greg Taylor <span dir="ltr"><<a href="mailto:greg@pathwright.com" target="_blank">greg@pathwright.com</a>></span> wrote:<br></div></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><div class="h5"><div dir="ltr">We've been running Amazon Elastic Load Balancer (ELB) as our front-facing reverse proxy and SSL terminator, with a pool of Django app servers behind it. This setup has worked very well for us for about four years now.<div><br></div><div>To help withstand some bursty traffic from one of our customers, we worked Varnish in behind ELB and in front of our Django app servers. For the most part, this went over very well. The only issue is that some (but not all) of our users are now seeing intermittent "No data received" errors. This looks to mostly be happening with Chrome (but not Chromium on Linux). Here's what it looks like:</div><div><br></div><div><a href="http://imgur.com/HRkNO6u" target="_blank">http://imgur.com/HRkNO6u</a></div><div><br></div><div>This error is seen every once in a while inconsistently when browsing around. Whether the page is a cache hit or miss doesn't seem to matter. One of our users has been able to replicate the issue by closing Chrome entirely, then visiting the site. I haven't been able to reproduce it at all on Chromium + Linux.</div><div><br></div><div>If we yank Varnish out, the problem goes away immediately. Here's what our varnish config looks like atm:</div><div><br></div><div><a href="https://gist.github.com/gtaylor/ba1ea77b68bd84664e85" target="_blank">https://gist.github.com/gtaylor/ba1ea77b68bd84664e85</a></div><div><br></div><div>Here's our test site:</div><div><br></div><div><a href="http://littlepeople.pathwright.com" target="_blank">http://littlepeople.pathwright.com</a></div><div><br></div><div>Any help or ideas would be greatly appreciated. We'd really like to use Varnish for this upcoming traffic burst, but we had tons of complaints about this error when we flipped it on the first time.<br clear="all"><div><br></div>
</div></div>
<br></div></div><span class="">_______________________________________________<br>
varnish-misc mailing list<br>
<a href="mailto:varnish-misc@varnish-cache.org" target="_blank">varnish-misc@varnish-cache.org</a><br>
<a href="https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc" target="_blank">https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc</a><br></span></blockquote></div><span class="HOEnZb"><font color="#888888"><br><br clear="all"><div><br></div>-- <br><div dir="ltr"><div><font color="#76b900" face="Arial, sans-serif" size="3">Nick Tailor</font><br></div><div><p><span style="color:rgb(65,75,86);font-family:Arial,sans-serif;font-size:9pt">Senior Linux Systems Administrator<br></span><span style="font-family:Arial,sans-serif;font-size:9pt"><font color="#414b56">BCLC, 2940 Virtual Way, Vancouver B.C. V5M 0A6<br></font></span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(118,185,0)">T</span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:navy"> </span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(65,75,86)"><a value="+16042283046" style="color:rgb(17,85,204)">604 228 3046</a></span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:navy"> </span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(118,185,0)">C</span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:navy"> </span><span lang="FR-CA" style="font-family:Arial,sans-serif;color:rgb(65,75,86)"><span style="font-size:9pt">778 388 1397</span><br><br>Connect with us:<br></span><span lang="EN-US" style="font-size:12pt;font-family:'Times New Roman',serif"><a href="http://twitter.com/BCLC" style="color:rgb(17,85,204)" target="_blank"><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(65,75,86)">Twitter @BCLC</span></a></span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(65,75,86)">| </span><span lang="EN-US" style="font-size:12pt;font-family:Arial,sans-serif"><a href="http://twitter.com/BCLCGameSense" style="color:rgb(17,85,204)" target="_blank"><span lang="FR-CA" style="font-size:9pt;color:rgb(65,75,86)">Twitter @BCLCGameSense</span></a></span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(65,75,86)"> | </span><span lang="EN-US" style="font-size:12pt;font-family:Arial,sans-serif"><a href="http://youtube.com/user/BCLCPlayingItRight/videos" style="color:rgb(17,85,204)" target="_blank"><span lang="FR-CA" style="font-size:9pt;color:rgb(65,75,86)">YouTube</span></a></span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(65,75,86)"> | </span><span lang="EN-US" style="font-size:12pt;font-family:Arial,sans-serif"><a href="http://blogs.bclc.com/" style="color:rgb(17,85,204)" target="_blank"><span lang="FR-CA" style="font-size:9pt;color:rgb(65,75,86)">Blog</span></a></span><span lang="FR-CA" style="font-size:9pt;font-family:Arial,sans-serif;color:rgb(65,75,86)"> | </span><span lang="EN-US" style="font-size:12pt;font-family:Arial,sans-serif"><a href="http://www.bclc.com/" style="color:rgb(17,85,204)" target="_blank"><span lang="FR-CA" style="font-size:9pt;color:rgb(65,75,86)">bclc.com</span></a></span></p><p><span style="font-size:12pt"> </span><span style="color:rgb(118,185,0);font-family:Arial,sans-serif;font-size:10pt">Last year, more than $1 billion generated by BCLC gambling activities went back into health care, education and community groups across B.C.</span></p></div></div>
</font></span></div>
</blockquote></div><br><br clear="all"><div><br></div>-- <br><div dir="ltr">Greg Taylor,<div>Pathwright Co-founder</div><div><a href="http://www.pathwright.com" target="_blank">http://www.pathwright.com</a></div>(864) 334-8735</div>
</div>