--- a/admin/default.vcl
+++ b/admin/default.vcl
@@ -26,6 +26,9 @@
  if (req.url ~ "\.(png|gif|jpg|jpeg|swf|css|js|woff|eot)$") {
     return(lookup);
  }
+if (req.url ~ "/(..|.._..)/") {
+    set req.url = regsub(req.url, "/((?!js)..|.._..)/", "/");
+}
   if (req.http.Cookie) {
     set req.http.Cookie = regsuball(req.http.Cookie, "(^|; ) *__utm.=[^;]+;? *", "\1"); # removes all cookies named __utm? (utma, utmb...) - tracking thing
 
@@ -34,6 +37,17 @@
     }
   }
 } 
+sub vcl_hash {
+     # http://serverfault.com/questions/112531/ignoring-get-parameters-in-varnish-vcl
+     set req.url = regsub(req.url, "(?:(.com|.au))/((?!js)..|.._..)/", "/");
+     hash_data(req.url);
+     if (req.http.host) {
+         hash_data(req.http.host);
+     } else {
+         hash_data(server.ip);
+     }
+     return (hash);
+}
 sub vcl_deliver {
     if (!resp.http.Vary) {
         set resp.http.Vary = "Accept-Encoding";