Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- /etc/varnish/default.vcl
- ------------------------
- backend default {
- .host = "127.0.0.1";
- .port = "8080";
- }
- backend srv01 {
- .host = "x.x.x.x";
- .port = "80";
- }
- backend srv02 {
- .host = "y.y.y.y";
- .port = "80";
- }
- director lb random {
- .retries = 5;
- { .backend = srv01; .weight = 7; }
- { .backend = srv02; .weight = 7; }
- }
- sub vcl_recv {
- set req.backend = lb;
- }
- Le firewall contient les règles suivantes :
- $IPTABLES -A INPUT -i $EXTIF1 -m state --state NEW,ESTABLISHED,RELATED -p tcp -s $UNIVERSE -d $EXTIP1 --dport 21 -j ACCEPT
- $IPTABLES -A INPUT -i $EXTIF1 -m state --state NEW,ESTABLISHED,RELATED -p tcp -s $UNIVERSE -d $EXTIP1 --dport 80 -j ACCEPT
- $IPTABLES -A INPUT -i $EXTIF1 -m state --state NEW,ESTABLISHED,RELATED -p tcp -s $UNIVERSE -d $EXTIP1 --dport 443 -j ACCEPT
- $IPTABLES -A INPUT -p tcp --dport 6081 -j ACCEPT
- $IPTABLES -A INPUT -s $UNIVERSE -d $UNIVERSE -j reject-and-log-it
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement