Re: [squid-users] Please help setup my new squid servers

From: Luis Daniel Lucio Quiroz <luis.daniel.lucio_at_gmail.com>
Date: Wed, 12 Oct 2011 09:23:38 -0500

2011/10/11 <mc8647tv_at_mclink.it>:
> Good morning,
> I just received my new 3 servers for the squid infrastructure.
>
> Each server has:
> 2 CPU X5690 (each has 6 cores/12 threads, 3.46 Ghz)
> 12 GB ram (I have kits to upgrade to 24 if needed)
> 8 hd 146GB 15k rpm (I also have 300/600/900 GB 10k available)
>
> Actual setup are a couple of 2.7 that handles about 2500 clients, balanced via wpad. Squid sends traffic to antivirus software using a standard upstream connection. Internet connection is about 200 mbit.
>
>
> Now my questions: with all these cores I think that using some form of multi-instance is the best way to use them. My idea was to set 2 disks in raid 1 for boot and log and dedicate each other disk to one squid instance, 30 GB for coss and 100 GB for aufs.
>
> But I also got plenty of ram, 12 or 24 GB... so I also had the idea of a ram only squid...
>
>
> What would you suggest ? We are open to any suggestion, from s.o. to configuration...
>
> Thanks
> Francesco
>

You can do wonderful things with that servers. I guess you are
talking in a forward squid schema. I guess you are not using MD5
authentication shcema, if you so please clarify since MD5 needs
special attention. I suggest you this:

- Place a balancer, like ultramonkey3, with persistence src (if using
MD5) or RR (any variant for other) with this you can take ofline any
squid for maintenance without problem,
- inside each squid (i suggest you 3.1) place 2 squids (lets A and B).
 So intotal you will get 6 squids, 2 each box, squid A will face to
customer, squid B will face to lookpabck.
- install an icap server to do the AV.
- each squid A will be brother each other, each squid B will be
brother each other. ICP protocol.

this will warrant you that squid A cache content is always clean, and
squid B is only acting to speed up and save bandwith.

Let me know your thinking

LD
http://www.twitter.com/ldlq
Received on Wed Oct 12 2011 - 14:23:46 MDT

This archive was generated by hypermail 2.2.0 : Wed Oct 12 2011 - 12:00:02 MDT