We have weird traffic pattern for one product which is pretty much random request for very big (several TB) content base. Running traditional cache in this situation is impossible because Linux/UNIX file system (pretty much any kind of) hits the ceiling when d-entry cache fills memory. Directory lookups becomes a real issue when number of files reaches 6-7 digit numbers. Thats where custom file storage comes to help. After trying COSS with little success (it was not quite stable in 2.6) I tried varnish but inability of varnish to keep persistent cache (which is fixed right now I believe) made it unattractive. So I returned to COSS after 2.7 came out and it appeared to be working great and in fact it was so much greater than native storage that I forgot my experiments with varnish and run squid right now with 4-digit number of requests per minute per server with almost no server load and manageable disk IO. I will probably revisit varnish someday when persistent cache gets into stable state - but beware - you need serious kernel tuning before you turn varnish into production, by default it tends to dump dirty pages in very big chunks during which it does not serve requests.... So here is working squid web accelerator config using several COSS files (to keep cache block size small). If you can distribute COSS files over different spindles to get even higher performance. Note that we use "digest_generation off", because enabling it causes short squid outages every hour, since we don't exchange digest with any peers we don't need that feature. visible_hostname www.mydomain.com#debug_options ALL,2http_port 80 vhosticp_port 0#acl www_domain dstdomain .mydomain.comacl www_domain dstdom_regex -i ^www.*\.mydomain\.com\.?$cache_peer_access wwwbackend allow www_domainacl apache rep_header Server ^Apachebroken_vary_encoding allow apachecache_mem 2 GBmaximum_object_size 5 MB#maximum_object_size_in_memory 1 MBmaximum_object_size_in_memory 6 KB#memory_replacement_policy heap GDSFcache_dir coss /opt/squid/coss1 50000 block-size=4096 max-size=131072 membufs=400 max-stripe-waste=8192 cache_dir coss /opt/squid/coss2 50000 block-size=4096 max-size=131072 membufs=400 max-stripe-waste=8192cache_dir coss /opt/squid/coss3 50000 block-size=4096 max-size=131072 membufs=400 max-stripe-waste=8192cache_dir coss /opt/squid/coss4 50000 block-size=4096 max-size=131072 membufs=400 max-stripe-waste=8192cache_dir coss /opt/squid/coss5 50000 block-size=4096 max-size=131072 membufs=400 max-stripe-waste=8192cache_dir coss /opt/squid/coss6 50000 block-size=4096 max-size=131072 membufs=400 max-stripe-waste=8192cache_swap_log /opt/squid/%s.swap#cache_dir null /tmplogformat mydomain %>a %{True-Client-IP}>h [%tl] "%rm %ru HTTP/%rv" %Hs %<st "%{Referer}>h" "%{User-Agent}>h" %Ss:%Sh %traccess_log syslog:LOG_LOCAL5 mydomain#access_log syslog:LOG_LOCAL5 squid#access_log /var/log/squid/access.log squidcache_store_log nonehosts_file /etc/hostsauthenticate_cache_garbage_interval 1 daystrip_query_terms offrefresh_pattern . 518400 80% 518400 ignore-reload ignore-privateforward_timeout 1 minuteconnect_timeout 15 secondsread_timeout 1 minuterequest_timeout 15 secondspersistent_request_timeout 5 secondsshutdown_lifetime 5 secondsacl all src 0.0.0.0/0.0.0.0acl manager proto cache_objectacl localhost src 127.0.0.1/255.255.255.255acl to_localhost dst 127.0.0.0/8acl SSL_ports port 443 # httpsacl SSL_ports port 563 # snewsacl SSL_ports port 873 # rsyncacl Safe_ports port 80 # httpacl Safe_ports port 21 # ftpacl Safe_ports port 443 # httpsacl Safe_ports port 70 # gopheracl Safe_ports port 210 # waisacl Safe_ports port 1025-65535 # unregistered portsacl Safe_ports port 280 # http-mgmtacl Safe_ports port 488 # gss-httpacl Safe_ports port 591 # filemakeracl Safe_ports port 777 # multiling httpacl Safe_ports port 631 # cupsacl Safe_ports port 873 # rsyncacl Safe_ports port 901 # SWATacl purge method PURGEacl CONNECT method CONNECTacl snmp_mydomain snmp_community open_sesamesnmp_port 3401snmp_access allow snmp_mydomainsnmp_access deny allhttp_access allow manager localhosthttp_access deny managerhttp_access allow purge localhosthttp_access deny purgehttp_access deny !Safe_portshttp_access deny CONNECT !SSL_portshttp_access allow www_domainhttp_access allow localhosthttp_access deny allhttp_reply_access allow allicp_access deny allheader_access Cookie deny allcache_effective_group proxyclient_db offnever_direct allow all#### launch squid guard if you want to rewrite some URLs.#redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf#redirect_children 120This is config for 2.7, make sure to create COSS files of correct size with before you start it with this command: dd if=/dev/zero bs=1048576 count=50000 of=/opt/squid/cossX where X is number. Note that you cannot increase COSS file size here without changing of block size so better add another one for cache expansion. |
|
|