On Sun, Jun 29, 2014 at 3:57 AM, Owen Crow <owen.crow@xxxxxxxxx> wrote: > Consider this a reply to Kinkie and Eliezer. > > Yes, I expect my setup is unusual, but that's why I'm trying to get > advice from others who might have a similar setup. > > I run the proxy as the main destination for a wildcard DNS. This is > our many tenants use URLs in the wildcard domain (lets call it > "*.wild.com") and the proxy connects them to the various backend > services based on the hostname such as: > > acme-www.wild.com connects to the WWW server for Acme customer > beta-www.wild.com connects to a similar but different WWW server for > Beta customer. > > For each customer there are 5-10 unique hostnames to keep the services > separate. We do this as it is much simpler than URL-rewriting (or at > least it seemed so to me at the beginning). > > In addition, our proxy listens on about 8 different ports > (80/443/8080, etc) for different services. The different ports require > 7 ACLs that excludes the other ports that are not for that one > service/port combination. > > I can get more specific if anyone is interested. > I use make+M4 macros to generate the squid.conf file from a source > file and then separate all the customers into individual configuration > files based on a conf.d directory. Hi, yes, it could be interesting. Not the full configuration, which is most likely confidential. But the template you are using for a single entry may be interesting and maybe give us enough information to understand if there are opportunities for optimization. Kinkie
