Running Varnish on Fly

karllhughes · August 4, 2020, 6:23pm

Outline

Introduction
- What is Varnish? Why use it?
- How does Varnish work? - Nothing super in-depth, but I think it’s important to understand how Varnish works at a high level to use it properly
- Why host Varnish on the Edge with Fly? - Performance - not only do you get the performance benefits of Varnish, you also lower latency by serving it on the edge.
How to deploy Varnish to Fly
- Creating a new Fly App
- Setting up the Dockerfile (based on https://hub.docker.com/_/varnish)
- Creating a Varnish config file (VCL)
- Connecting Varnish to a backend service - will probably use an open API from this list
- Benchmarking the performance improvement by going through Varnish - compare the original API to a call to Varnish on Fly
Conclusion

kurt · August 5, 2020, 1:31am

This one sounds amazing. I want to do a big “image service + caching” example with nginx, but it would be interesting to combine it with varnish as well.

mike · August 6, 2020, 7:51pm

This is a great outline - I’d add a few more things:

How to protect your backend so it is only available through Varnish, but yet retain the ability for you to access the backend to debug (via a custom access header)
How to monitor & “warm up” your Varnish install during the deploy process
I had a project where I used Varnish and due to the load (site was on TV, so immediate high load) I had to write a spider to warm up the cache a bit.

Just some ideas!

karllhughes · August 18, 2020, 1:52pm

We’ve got this working locally in Docker (using a an Express app hosted on Fly as the backend), but when we try to run the Varnish image on Fly, we’re getting this error:

Running: docker-varnish-entrypoint varnishd -F -f /etc/varnish/default.vcl as root
Error: Could not resolve -T argument to address
Name or service not known
(-? gives usage)
reboot: Restarting system

Here’s the whole Varnish, Dockerfile, etc. from the writer: https://gist.github.com/gaurav-nelson/cf2f34f604f81c2960b8b82e3d89af15

Does this seem like a Fly issue? If so, any ideas how we might debug it?

Codepope · August 18, 2020, 2:20pm

It’s saying how to debug it - The -T flag on varnish opens a management console.

I’m assuming it can’t resolve the address of the backend server at that point. Try the default.vcf with and IP address first and see what the results are like.

Gaurav · August 18, 2020, 11:46pm

Thanks @Codepope

I did try with IP address only, but the same error persists.

ben · August 19, 2020, 3:00am

Curious: when would you use Varnish rather than Nginx? What’s their respective strengths?

karllhughes · August 20, 2020, 8:22pm

@Gaurav I got the same error first, then I realized that Varnish runs on port 80 in the container. This means you need to update the internal_port in your fly.toml file:

...

[[services]]
  internal_port = 80
...

Now it’s getting stuck at the building fs... step, but that might be another issue.

@ben Varnish is typically used for caching an entire web page as static HTML. Nginx usually sits behind it and serves dynamic content when Varnish doesn’t serve the static content.

karllhughes · August 20, 2020, 11:40pm

Ok, that still didn’t work. I’m getting the same errors as @Gaurav on Fly, but no errors when I run it locally.

Is it possible this is some kind of network permission problem? Maybe Varnish can’t access the outside network? Is there a good way to test this?

kurt · August 24, 2020, 7:40pm

I think this has something to do with the default varnish options, the -T control socket, and the Fly VM. I’m not sure if there’s a simpler way to start Varnish, but I’d try running it with minimal options. There should be a way to disable -T and override all its defaults by specifying a command like this:

CMD ["/usr/sbin/varnishd", "-F", "-f", "/etc/varnish/default.vcl"]

karllhughes · August 25, 2020, 10:38am

@kurt thank you!

You turned me onto the -T flag, which you have to set to none in order to disable the admin. I ended up adding this to my Dockerfile and it works now:

CMD ["/usr/sbin/varnishd", "-F", "-f", "/etc/varnish/default.vcl", "-T", "none"]

@Gaurav let me know if you have any further questions.

karllhughes · September 1, 2020, 8:44pm

@Gaurav finished the article this week and I did a little cleanup before transferring it into the fly-examples repo: https://github.com/fly-examples/fly-varnish

So you can credit him with the article, Gaurav’s GitHub account is here: https://github.com/gaurav-nelson/

sh1 · August 9, 2023, 11:21pm

The linked repository is now archived. Is there a newer version?

Topic		Replies	Views
SSR Node.js + Varnish Proxy. Do I need Nginx? Questions / Help	13	939	August 14, 2023
Docker, Node, Foreman and Varnish Fails to build Build debugging	3	1160	February 19, 2022
Deploying an app with fastapi backend and svelte frontend	3	1883	October 4, 2022
Fly image proxy?	9	1782	October 14, 2021
Debugging a failing image without a deployment	6	513	November 23, 2021

Running Varnish on Fly

Outline

Related topics