Re: [I] Plugin execution in 9.2.8 [trafficserver]

Tue, 08 Apr 2025 21:58:59 -0700 


abdulsalam3105 commented on issue #12064:
URL: 
https://github.com/apache/trafficserver/issues/12064#issuecomment-2788282126

   @shukitchan Thanks for the response, let me tell about current setup in 
8.1.11 and how header_rewrite is used as you asked. 
   
   header_rewrite.so is added in plugin.config as below
   
   >>  cat plugin.config
   
   header_rewrite.so header_rewrite.config
   
   >> cat header_rewrite.config
   
   cond %{SEND_REQUEST_HDR_HOOK}
   set-header Host "trafficserverfqdn"
   
   >> cat remap.config
   map https://trafficserverfqdn/ https://ihsfqdn/
   reverse_map https://ihsfqdn/ https://trafficserverfqdn
   
   >> cat records.config
   CONFIG proxy.config.proxy_name STRING trafficserverfqdn
   CONFIG proxy.config.exec_thread.autoconfig INT 1
   CONFIG proxy.config.exec_thread.autoconfig.scale FLOAT 1.500000
   CONFIG proxy.config.accept_threads INT 0
   CONFIG proxy.config.task_threads INT 2
   CONFIG proxy.config.cache.threads_per_disk INT 8
   CONFIG proxy.config.exec_thread.affinity INT 3
   CONFIG proxy.config.http.server_ports STRING 443:ssl
   CONFIG proxy.config.http.insert_request_via_str INT 1
   CONFIG proxy.config.http.insert_response_via_str INT 1
   CONFIG proxy.config.http.response_via_str STRING ATS
   #CONFIG proxy.config.http.parent_proxy_routing_enable INT 0
   #CONFIG proxy.config.http.parent_proxy.retry_time INT 300
   #CONFIG proxy.config.http.parent_proxy.connect_attempts_timeout INT 30
   #CONFIG proxy.config.http.uncacheable_requests_bypass_parent INT 1
   CONFIG proxy.config.http.forward.proxy_auth_to_parent INT 1
   CONFIG proxy.config.http.keep_alive_no_activity_timeout_in INT 600
   CONFIG proxy.config.http.keep_alive_no_activity_timeout_out INT 600
   CONFIG proxy.config.http.transaction_no_activity_timeout_in INT 300
   CONFIG proxy.config.http.transaction_no_activity_timeout_out INT 300
   CONFIG proxy.config.http.transaction_active_timeout_in INT 0
   CONFIG proxy.config.http.transaction_active_timeout_out INT 0
   CONFIG proxy.config.http.accept_no_activity_timeout INT 3000
   CONFIG proxy.config.net.default_inactivity_timeout INT 86400
   CONFIG proxy.config.http.connect_attempts_max_retries INT 6
   CONFIG proxy.config.http.connect_attempts_max_retries_dead_server INT 3
   CONFIG proxy.config.http.connect_attempts_rr_retries INT 3
   CONFIG proxy.config.http.connect_attempts_timeout INT 300
   CONFIG proxy.config.http.post_connect_attempts_timeout INT 1800
   CONFIG proxy.config.http.down_server.cache_time INT 300
   CONFIG proxy.config.http.down_server.abort_threshold INT 10
   CONFIG proxy.config.http.keep_alive_enabled_out INT 0
   CONFIG proxy.config.http.keep_alive_post_out INT 0
   CONFIG proxy.config.http.negative_caching_enabled INT 0
   CONFIG proxy.config.http.negative_caching_lifetime INT 1800
   CONFIG proxy.config.http.negative_revalidating_enabled INT 0
   CONFIG proxy.config.http.insert_squid_x_forwarded_for INT 1
   CONFIG proxy.config.http.response_server_enabled INT 1
   CONFIG proxy.config.http.response_server_str STRING ATS
   CONFIG proxy.config.http.push_method_enabled INT 0
   CONFIG proxy.config.http.cache.http INT 1
   CONFIG proxy.config.cache.enable_read_while_writer INT 2
   CONFIG proxy.config.http.cache.ignore_client_cc_max_age INT 1
   CONFIG proxy.config.http.normalize_ae INT 1
   CONFIG proxy.config.http.cache.cache_responses_to_cookies INT 1
   CONFIG proxy.config.http.cache.cache_urls_that_look_dynamic INT 0
   CONFIG proxy.config.http.cache.ims_on_client_no_cache INT 0
   CONFIG proxy.config.http.cache.enable_default_vary_headers INT 1
   CONFIG proxy.config.http.cache.when_to_revalidate INT 4
   CONFIG proxy.config.http.cache.required_headers INT 1
   CONFIG proxy.config.http.cache.heuristic_min_lifetime INT 3600
   CONFIG proxy.config.http.cache.heuristic_max_lifetime INT 14400
   CONFIG proxy.config.http.cache.heuristic_lm_factor FLOAT 0.100000
   CONFIG proxy.config.net.connections_throttle INT 30000
   CONFIG proxy.config.cache.ram_cache.size INT 12884901888
   CONFIG proxy.config.cache.ram_cache_cutoff INT 268435456
   CONFIG proxy.config.cache.limits.http.max_alts INT 5
   CONFIG proxy.config.cache.max_doc_size INT 8589934592
   CONFIG proxy.config.cache.min_average_object_size INT 8000
   CONFIG proxy.config.http.cache.range.lookup INT 0
   CONFIG proxy.config.http.cache.range.write INT 0
   CONFIG proxy.config.http.allow_multi_range INT 1
   #Create softlink for logfolder
   CONFIG proxy.config.log.logfile_dir STRING /var/log/trafficserver
   CONFIG proxy.config.log.logfile_perm STRING rw-r-----
   CONFIG proxy.config.log.logging_enabled INT 3
   CONFIG proxy.config.log.max_space_mb_for_logs INT 4000
   CONFIG proxy.config.log.max_space_mb_headroom INT 1000
   #Logging is configured in the logging.config
   
   CONFIG proxy.config.log.rolling_enabled INT 1
   CONFIG proxy.config.log.rolling_interval_sec INT 3600
   # Do rotate logfiles after 4h (value above), not if it reaches 10MB (value 
below)
   # CONFIG proxy.config.log.rolling_size_mb INT 10
   CONFIG proxy.config.log.auto_delete_rolled_files INT 1
   CONFIG proxy.config.url_remap.filename STRING remap.config
   CONFIG proxy.config.url_remap.remap_required INT 1
   CONFIG proxy.config.url_remap.pristine_host_hdr INT 0
   CONFIG proxy.config.reverse_proxy.enabled INT 1
   CONFIG proxy.config.ssl.client.verify.server INT 1
   CONFIG proxy.config.ssl.client.CA.cert.filename STRING 
/etc/ssl/certs/TR_CA_RSA_combined.pem
   #Disabled for TLSv1 usage as SSLv3 Ciphers are required.
   #CONFIG proxy.config.ssl.server.cipher_suite STRING 
ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES256-SHA384:AES128-GCM-SHA256:AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA:AES256-SHA:!ECDHE-RSA-RC4-SHA!RC4-SHA:!RC4-MD5:!AES128-SHA:!DES-CBC3-SHA:!SRP:!DSS:!PSK:!aNULL:!eNULL:!SSLv3:!SSLv2
   #Ciphers for TLSv1 + TLSv1.2 usage tested with RTC 6.0.5 Client and TLSv1
   CONFIG proxy.config.ssl.server.cipher_suite STRING 
ALL:!PSK:!SEED:!IDEA:!CAMELLIA128:!DH:!ADH:!MD5:!RC4:!RC2:!3DES:!DES:!eNULL:!aNULL:!SSLv2
   CONFIG proxy.config.ssl.server.honor_cipher_order INT 1
   CONFIG proxy.config.ssl.TLSv1 INT 1
   CONFIG proxy.config.ssl.TLSv1_1 INT 0
   CONFIG proxy.config.ssl.TLSv1_2 INT 1
   #Disable TLSv1.3 as it requires at least openssl v1.1.1
   CONFIG proxy.config.ssl.TLSv1_3 INT 0
   CONFIG proxy.config.ssl.hsts_max_age INT 63072000
   CONFIG proxy.config.ssl.hsts_include_subdomains INT 0
   CONFIG proxy.config.ssl.client.certification_level INT 0
   CONFIG proxy.config.ssl.server.multicert.filename STRING ssl_multicert.config
   CONFIG proxy.config.ssl.CA.cert.filename STRING 
/etc/ssl/certs/TR_CA_RSA_combined.pem
   CONFIG proxy.config.ssl.server.cert_chain.filename STRING 
/etc/ssl/certs/TR_CA_RSA_combined.pem
   
##############################################################################
   # HTTP2
   
##############################################################################
   CONFIG proxy.config.http2.max_continuation_frames_per_minute INT 120
   ###############################################################
   # Random
   ###############################################################
   CONFIG proxy.config.body_factory.template_sets_dir STRING 
/etc/trafficserver/body_factory
   
   
   same setup doesnt work in 9.2.X, 
   
   
   
   
   
   
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to