When authenticating against samba we have moments of traffic where the
average response time for the ntlm_auth is 26 seconds instead of
milliseconds and users requests start queuing up, and then it clears.
In test we have set up a configuration like this:
auth_param ntlm program /opt/samba/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 1 #Testing Only.
#auth_param ntlm children 100 #Actual Production Setting.
auth_param basic program /opt/samba/bin/ntlm_auth
--helper-protocol=squid-2.5-basic
auth_param basic children 10
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
#Default:
#authenticate_cache_garbage_interval 1 hours
#Default:
#authenticate_ttl 1 hours
Yet when one users goes to cnn the number of lines in the access logs
increases by over 200 lines which is expected, and the number of
requests in the cache manager NTLM authenticator stats increase by 20
some requests, not what I am looking for. Is there a way to have it
so once a user authenticates the credentials will be stored and won't
need the ntlm helper for a set time. Or is there something else that
we are doing wrong that would be causing us problems in production
right now we have 100 ntlm children.
Thank you,
Brian
Received on Mon Apr 23 2007 - 13:04:59 MDT
This archive was generated by hypermail pre-2.1.9 : Tue May 01 2007 - 12:00:01 MDT