Hello
I have a bunch of Squid 2.5.13 servers doing accelerated caching that I am
converting to 2.6 and would love any comments or suggestions on my config. I
think I have it mostly correct. It works, but I am uncertain it has the best
ACL's since the conversion. Any suggestions?
USER --> SQUIDCACHE:80 --> MYSERVER:80 (no ssl or anything else)
Also, I want to start having some peering to another cache server or 2. However
I am unsure how to alter my config for that. I would love any pointers.
Thanks very much!
Nicole
==============================================================
Server has 4 disks & 4 gigs of memory running on FreeBSD AMD64
caching server1 = 6.4.9.1
caching server2 = 6.4.9.2
caching server3 = 6.4.9.3
--------------------------------------
cache_effective_user squid
cache_mgr webmaster@xxxxxxxxxxxxxxxx
cache_mem 1000 MB
cache_swap_low 95
cache_swap_high 98
maximum_object_size 16096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 500 KB
dns_nameservers 6.2.4.10 6.4.9.9
##########
## To ignore Reloads
#refresh_pattern . 0 20% 4320 ignore-reload
refresh_pattern . 0 100% 4320 ignore-reload
# keep jpgs & flash for a very long time.
# Case Insensitive - jpgs - (Min Cache Time) - (Age percentiage) - (Max
Cache Time)
#refresh_pattern -i \.jpg$ 10080 150% 40320 reload-into-ims
#refresh_pattern -i \.jpg 0 20% 4320 ignore-reload
refresh_pattern -i \.jpg 10080 150% 40320 ignore-reload
#refresh_pattern -i \.swf 0 20% 4320 reload-into-ims
refresh_pattern -i \.swf 10080 150% 40320 ignore-reload
##########
positive_dns_ttl 5 hours
negative_dns_ttl 2 minutes
half_closed_clients off
cache_swap_log /cache0/swapstate
# DISKS ## 36 Gig drive and 72 Gig Drive - minus 20%
#cache_dir ufs /cache1 29000 32 512
#cache_dir ufs /cache2 58000 64 768
#cache_dir diskd /cache0 12000 32 256 Q1=72 Q2=64
#cache_dir diskd /cache1 54000 64 768 Q1=72 Q2=64
#cache_dir diskd /cache2 54000 64 768 Q1=72 Q2=64
#cache_dir diskd /cache3 54000 64 768 Q1=72 Q2=64
## 72+147 Gig Disk Units
cache_dir diskd /cache0 12000 32 256 Q1=72 Q2=64
cache_dir diskd /cache1 90000 64 768 Q1=72 Q2=64
cache_dir diskd /cache2 90000 64 768 Q1=72 Q2=64
cache_dir diskd /cache3 90000 64 768 Q1=72 Q2=64
#########################################################################
## LOGGING ####
access_log /var/log/apache/squid_access.log squid
emulate_httpd_log on
logformat small %ru %<st
access_log /var/log/apache/access_log small
cache_log /var/log/apache/cache.log
#cache_store_log /var/log/apache/store.log
cache_store_log none
##### ACL ############
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
acl all src 0.0.0.0/0.0.0.0
acl acceleratedHost dst 6.2.8.3/255.255.255.255
acl acceleratedPost port 80
acl DSUKoffice src 7.12.1.4/255.255.255.248
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl Safe_ports port 80 # http
acl CONNECT method CONNECT
http_access deny !Safe_ports
#### PURGE ACL
acl AdminBoxes src 127.0.0.1 7.12.1.4
PURGE method PURGE
http_access allow AdminBoxes Purge
http_access deny Purge
### ACCEL SETUP #############
# www.mycooldomain.com = 6.2.8.3
http_port 80 vhost defaultsite=www.mycooldomain.com
cache_peer 6.2.8.3 parent 80 0 no-query originserver
acl port80 port 80
###### make all .php/.php3's uncachable:
acl PHP url_regex .php$
acl PHP3 url_regex .php3$
no_cache deny PHP PHP3 QUERY acceleratedHost acceleratedPost DSUKoffice manager
localhost Safe_ports CONNECT
## TUNES
ie_refresh off
hosts_file /etc/hosts
( Any coincedence to an live ip's are by mistake only.)
--
|\ __ /| (`\
| o_o |__ ) )
// \\
- nmh@xxxxxxxxxxxxxx - Powered by FreeBSD -
------------------------------------------------------
"The term "daemons" is a Judeo-Christian pejorative.
Such processes will now be known as "spiritual guides"
- Politicaly Correct UNIX Page
