本文共 8170 字,大约阅读时间需要 27 分钟。
yum -y install ntp make openssl openssl-devel pcre pcre-devel libpng libpng-devel libjpeg-6b libjpeg-devel-6b freetype freetype-devel gd gd-devel zlib zlib-devel gcc gcc-c++ libXpm libXpm-devel ncurses ncurses-devel libmcrypt libmcrypt-devel libxml2 libxml2-devel imake autoconf automake screen sysstat compat-libstdc++-33 curl curl-devel
wget http://www.squid-cache.org/Versions/v3/3.2/squid-3.2.0.18.tar.gz
tar -zvxf squid-3.2.0.18.tar.gz
cd squid-3.2.0.18
./configure --prefix=/usr/local/squid --enable-gnuregex --enable-async-io=80 --enable-cache-digests --enable-err-language="zh-cn"--enable-default-err-language="zh-cn" --enable-epoll --disable-internal-dns --with-filedescriptors=20480 --enable-kill-parent-hack
make
make install
#创建squid相关目录
groupadd squid #创建squid squid用户组
useradd -g squid -s /sbin/nologin #创建squid用户,并加入到squid组里,不允许登录系统
chown -R squid /usr/local/squid/ #修改squid的安装目录所属用户为squid用户
mkdir -p /var/cache1 #创建squid的第一个缓存目录
mkdir -p /var/cache2 #创建squid的第二个缓存目录
chown squid.squid -R /var/cache1 /var/squid2 #设置目录所有者
chmod -R 777 /var/cache1 /var/squid #设置目录权限
mv /usr/local/squid/etc/squid.conf /usr/local/squid/etc/squid.conf.bak
max_filedescriptors 65535
visible_hostname rui
acl SSL_ports port 443
acl Safe_ports port 80
acl CONNECT method CONNECT
acl myip src localhost
#http_access deny OverConnLimit
#acl web1 src 117.21.227.134
#acl web2 src .....
http_access allow manager localhost
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
acl OverConnLimit maxconn 300
http_access deny OverConnLimit
http_access allow all
#header_access X-Forwarded-For allow all
#acl_uses_indirect_client on
#follow_x_forwarded_for allow all
allow_underscore on
half_closed_clients off
cache_peer 222.174.95.21 parent 9011 0 no-query originserver name=web21
cache_peer 122.226.213.41 parent 80 0 no-query originserver name=web41
http_port 80 accel vhost vport
cache_peer_domain web21 .upbar.net mypig.upbar.net .mypig.net .8goo.com .vitas.com.cn .ibar.cc .360loss.com .99zyz.com
cache_peer_domain web21 .grow100.com.cn .jpstore.net .jk0769.com .maxmancapsule.com .maxmancapsule.com.cn .maxmancapsules.com.tw .72sun.com .30jf.com .356jf.com .24jf.com .aidashan.com .she36.com
cache_peer_domain web21 .grow100.net .gao36.com .gao36.net .way200.com .easy900.com .show1000.com .gft400.com .topgouwu.net
cache_peer_domain web21 .igaofei.com .igaofei.net .mek123.com .mek123.net .yugutoo.com yututoo.com
cache_peer_domain web41 .bibe.cn .yein.cc .youxia.cn
cache_peer_access web21 allow all
cache_peer_access web41 allow all
forwarded_for on
acl QUERY urlpath_regex cgi-bin .cgi .php .avi .wmv .rm .ram .mpg .mpeg .zip .exe .asp .aspx
cache deny QUERY
reload_into_ims on
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
refresh_pattern -i \.html 1440 100% 129600 reload-into-ims
refresh_pattern -i \.shtml 1440 100% 129600 reload-into-ims
refresh_pattern -i \.htm 1440 100% 129600 reload-into-ims
refresh_pattern -i \.gif 1440 100% 129600 ignore-reload
refresh_pattern -i \.jpg 1440 100% 129600 ignore-reload
refresh_pattern -i \.png 1440 100% 129600 reload-into-ims
refresh_pattern -i \.bmp 1440 100% 129600 reload-into-ims
refresh_pattern -i \.swf 1440 100% 129600 reload-into-ims
refresh_pattern -i \.flv 129600 100% 129600 ignore-reload
refresh_pattern -i \.js 1440 100% 129600 reload-into-ims
refresh_pattern -i \.css 1440 100% 129600 reload-into-ims
pid_filename /usr/local/squid/var/logs/squid.pid
#logformat squid %ts.%03tu %6tr %>a %Ss/%03Hs %<st %rm %ru %un %Sh/%<A %mt
#cache_log /usr/local/squid/var/logs/cache.log
#access_log /usr/local/squid/var/logs/access.log
access_log /dev/null
cache_log /dev/null
cache_store_log none
#error_directory none
cache_mem 256 MB
memory_pools_limit 312 MB
maximum_object_size_in_memory 4096 KB
max_open_disk_fds 0
minimum_object_size 0 KB
maximum_object_size 4096 KB
maximum_object_size_in_memory 4096 KB
memory_replacement_policy lru
cache_dir ufs /var/cache1 1024 16 256
#cache_dir null /tmp
EOF
maximum_object_size 是 能cache最大的文件大小。对应wmv,rm文件,建议设置为32768 kB maximum_object_size_in_memory 是在内存中cache的最大文件大小。 cache_mem 是SQUID可用到的最大内存。经实践,4G内存的服务器用2G;超过2G导致SQUID运行不稳 首先要分析SQUID所cache内容: 运行 squidclient -p 80 cache_object://localhost/info 能看到如下内容: Storage Swap size: 7549104 KB Storage Mem size: 418804 KB Mean Object Size: 160.46 KB Mean Object Size是平均内容大小,一般要把maximum_object_size_in_memory设置成离它最近的128的倍数。在这个例子中maximum_object_size_in_memory 的值应该是256kB。 cache_mem 一般设置成服务器内存的一半或更多,只要运行过程中LINUX没有使用SWAP就可以。 再就是按业务分SQUID。 比如某个论坛,用户能上载图片和视频;当然我们要把上载的图片、视频放在单独的域名上,比如img.example.com, video.example.com;这两个域名只提供静态文件服务。 根据统计,图片的平均大小在100KB,视频的平均大小在4M,差别是很大,应该建两个squid分别作图片和视频的CACHE。图片SQUID的 maximum_object_size_in_memory 设置为256KB,视频的SQUID的maximum_object_size_in_memory设置为8196KB。 Squid优化(2) Hot!探讨动态内容的CACHE。 BBS,论坛是典型动态内容,要保证内容更新及时的同时,提高访问速度,降低数据库负担不是个简单任务。经实践发现如下办法取得很好效果: 1) 配置SQUID,对动态内容强制CACHE,用到的配置参数是refresh_pattern refresh_pattern ^/forum/viewthread.php 1440 1000% 1440 ignore-reload /forum/viewthread.php的内容将强制保持1天 2) 修改论坛程序在用户回复帖子后,向SQUID发送PURGE命令清除相应帖子的页面CACHE,保证失效性 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~实现过这一功能,但是有时候生效,有时候无效,还未进一步查明原因.(Edit by Sean) 3) 有些频繁更新的页面可以不CACHE,用no_cache参数 acl no_forum_cache urlpath_regex ^/forum/forumdisplay.php no_cache DENY no_forum_cache |
/usr/local/squid/sbin/squid
0 4 * * * /usr/local/squid/sbin/squid -k rotate
结束squid进程 /squid/sbin/squid –k shutdown
取得squid运行状态信息:/squid/bin/squidclient -p 80 mgr:info
取得squid内存使用情况:/squid/bin/squidclient -p 80 mgr:mem
取得squid已经缓存的列表:/squid/bin/squidclient -p 80 mgrbjects. use it carefully,it may crash
取得squid的磁盘使用情况:/squid/bin/squidclient -p 80 mgr:diskd
强制更新某个url:/squid/bin/squidclient -p 80 -m PURGE http://www.rui.com/
查命中率:
/soft/squid/bin/squidclient -h111.222.111.111 -p80 mgr:info
/soft/squid/bin/squidclient -h具体的IP -p80 mgr:info
qingli.sh www.xiuxiukan.com
qingli.sh jpg
qingli.sh xiuxiukan.com 123 bbb jpg
#!/bin/sh
squidcache_path="/squidcache"
squidclient_path="/home/local/squid/bin/squidclient"
#grep -a -r $1 $squidcache_path/* | grep "http:" | awk -F 'http:' '{print "http:"$2;}' | awk -F\' '{print $1}' > cache.txt
if [[ "$1" == "swf" || "$1" == "png" || "$1" == "jpg" || "$1" == "ico" || "$1" == "gif" || "$1" == "css" || "$1" == "js" || "$1" == "html" || "$1" == "shtml" || "$1" == "htm" ]]; then
grep -a -r .$1 $squidcache_path/* | strings | grep "http:" | awk -F 'http:' '{print "http:"$2;}' | awk -F\' '{print $1}' | grep "$1$" | uniq > cache.txt
else
grep -a -r $1 $squidcache_path/* | strings | grep "http:" |grep $2$ |grep $3$|grep $4$|grep $5$ |grep $6$| awk -F 'http:' '{print "http:"$2;}' | awk -F\' '{print $1}' | uniq > cache.txt
fi
sed -i "s/\";$//g" cache.txt
cat cache.txt | while read LINE
do
$squidclient_path -p 80 -m PURGE $LINE
done
squid启动文件
cat >> /etc/init.d/squid <<EOF
#!/bin/bash
#chkconfig: 345 85 15
#description: squid test
#BY liyaoyi 2012-05-04
. /etc/rc.d/init.d/functions
squid="/usr/local/squid/sbin/squid"
prog="squid"
RETVAL=0
start() {
echo -n $"Starting $prog: "
daemon $squid -s
RETVAL=$?
echo
return $RETVAL
}
stop () {
echo -n $"Stoping $prog: "
daemon $squid -k shutdown
echo
return $RETVAL
}
reload () {
echo -n $"Reloading $prog: "
daemon $squid -k reconfigure
echo
return $RETVAL
}
case "$1" in
start)
start
;;
stop)
stop
;;
reload)
reload
;;
restart)
stop
start
;;
*)
echo $"Usage: $0 {start|stop|restart|reload}"
RETVAL=1
esac
exit $RETVAL
EOF
chmod a+x /etc/init.d/squid
chkconfig --add squid
chkconfig squid on
/etc/init.d/squid start
转载地址:http://vyuqa.baihongyu.com/