Pete Yandell wrote:
>
> Has anyone out there done any large scale transparent proxying?
>
> I'm running squid-2.2.STABLE4 under NetBSD 1.4.1 doing transparent
> proxying without caching, and with about 200 concurrent users (I don't
> have a figure for number of hits per second) the load gets really high
> (85% CPU usage or thereabouts) on a Pentium II 450 with 256Mb of RAM.
> A lot of that load seems to be system CPU time dealing with the
> required NAT translation.
>
> It seems to me that load shouldn't really be high...what it's doing is
> really pretty simple, especially given that it's not caching.
>
> Has anyone out there run any large transparent proxies? We need to
> scale this up for many more users and want to work out how we go about
> doing it. I'm happy to choose the OS and the platform to suit the
> task.
>
Consider WCCP.
Ok, it's still under development, not yet available on most platforms
since you need a GRE kernel module and you need a Cisco, of course.
But it allows for very scalable and redundant setups.
WCCP avoids NAT altogether (additional load on the routers is rather
negligible), allows for multiple caches and much more flexible routing.
Markus
Received on Thu Oct 14 1999 - 05:11:07 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:48:49 MST