Hello all!
I have a SQUID server running on a Piii 1100ghz server with 1024 RAM,
SCSI disks. We have almost 100 users. And a 700Kbps ADSL Connection. The
cache directory is in it's own scsi drive.
I am seeing some very slow response in the proxy server. The incoming
traffic in the internet connection is almost exactly the same as the
outgoing traffic in the internal network, which basically means that the
traffic from the internal proxy client is the same as the downloaded
stuff. (am i right?) I have "System Health" graphics from both
interfaces, I can send them to private mails if you want to take a look.
DNS is being handled by a BIND server on the same machine.
We are using ntlm auth via samba.
We compiled our own SQUID server.
CFLAGS="-O3 -march=i686 -mcpu=i686"
SQUID was compiled as:
Squid Cache: Version 2.5.STABLE5
configure options: --prefix=/opt/EPAWebCachingSuite-1.0-i686/
--sysconfdir=/opt/EPAWebCachingSuite-1.0-i686/etc/squid --with-dl
--enable-snmp --enable-carp --enable-useragent-log '--enable-auth=basic
digest ntlm' '--enable-basic-auth-helpers=MSNT SMB getpwnam
multi-domain-NTLM winbind' '--enable-ntlm-auth-helpers=SMB no_check
winbind' --enable-digest-auth-helpers=password --enable-ntlm-fail-open
--enable-referer-log --enable-htcp --enable-underscores --enable-stackt
races --enable-delay-pools --enable-ssl --enable-cache-digests
--with-samba-sources=/home/vmedina/SOURCES/samba-2.2.9/
--enable-x-accelerator-vary --disable-ident-lookups --enable-truncate
--enable-removal-policies=heap --enable-xmalloc-statistics
--enable-linux-netfilter --enable-stacktraces
Most of the sites, that users can access are specified by acl's so they
are very predictable, most users have _only_ access to certain sites.
Even though there are a awful lot of users for a 700Kbps link, the site
are almost always the same. The cache dir is 7gb in size. SQUID has
plenty of RAM. File system being used is RAISER, and it's a linux
machine running kernel 2.6 under SuSE 9.1.
Anybody would be so kind and suggest any optimization that could somehow
improve performance? I will copy the relevant information about my
squid.conf.
icp_port 0
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache_mem 192 MB
cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF
cache_dir ufs /workload/cache 7168 16 256
cache_access_log
/opt/EPAWebCachingSuite-1.0-i686/var/logs/squid/access.log
cache_log
/opt/EPAWebCachingSuite-1.0-i686/var/logs/squid/cache.log
cache_store_log
/opt/EPAWebCachingSuite-1.0-i686/var/logs/squid/store.log
error_directory /opt/EPAWebCachingSuite-1.0-i686//share/errors/Spanish
# DEFINICION DE LA AUTENTICACION CON NTLM
auth_param ntlm program
/opt/EPAWebCachingSuite-1.0-i686/libexec/wb_ntlmauth
auth_param ntlm children 25
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 15 minutes
auth_param basic program
/opt/EPAWebCachingSuite-1.0-i686/libexec/wb_auth
auth_param basic children 25
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 6 hours
# NO TOCAR!
cache_mgr root
cache_effective_user proxy
cache_effective_group proxy
logfile_rotate 0
log_icp_queries off
cachemgr_passwd P6RsP6RsP6Rs all
buffered_logs on
delay_initial_bucket_level 50
delay_pools 0
Any suggestions or comments are welcome
Thanxs!
Victor.
Received on Thu Sep 30 2004 - 07:14:20 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Oct 01 2004 - 12:00:03 MDT