From a245784ed5c12aedc4ac3e19bac9b216daee2571 Mon Sep 17 00:00:00 2001
From: Peter Palfrader <peter@palfrader.org>
Date: Thu, 20 Oct 2016 09:41:41 +0200
Subject: [PATCH] redirect linux updates to fastly

---
 .../roles/templates/security_mirror/security.debian.org.erb  | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/modules/roles/templates/security_mirror/security.debian.org.erb b/modules/roles/templates/security_mirror/security.debian.org.erb
index c5961ead4..d4be2a440 100644
--- a/modules/roles/templates/security_mirror/security.debian.org.erb
+++ b/modules/roles/templates/security_mirror/security.debian.org.erb
@@ -39,6 +39,11 @@
    RewriteEngine on
    RewriteRule ^/$      http://www.debian.org/security/
 
+   RewriteCond %{HTTP:Fastly-Client-IP} !. [NV]
+   RewriteRule ^/(pool/updates/main/l/linux/.*) http://security-cdn.debian.org/$1 [L,R=302]
+   RewriteCond %{HTTP:Fastly-Client-IP} !. [NV]
+   RewriteRule ^/debian-security/(pool/updates/main/l/linux/.*) http://security-cdn.debian.org/$1 [L,R=302]
+
    # Possible values include: debug, info, notice, warn, error, crit,
    # alert, emerg.
    LogLevel warn
-- 
2.20.1