[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
mark
2019-12-4 22:47
I appreciate your hard work. Keep posting new updates with us. This is really a wonderful post. Nice Blog Very interesting and useful information on your website. Thanks for sharing the blog and this great information which is definitely going to help us.
alexhydra11
2019-12-5 01:13
Excellent post keep sharing post like this. informative post keep posting like this. The McAfee Internet protection suite mcafee.com/activate and antivirus software are the products designed by McAfee for helping to secure home, business or school systems. You will need an identification key for the entire McAfee products brought online or from the retail store.Upgrade your protection to the next level.Office Setup your Microsoft Office version. Sign in at office.com/setup and download the setup. After installation, enter the 25 characters alphanumeric product key for activationOffice.com/setup - Get started with Microsoft Office by downloading and installing. You need the dedicated 25-digits product key for activation. Get the Office setup from office Setupmcafee.com/activateoffice.com/setupoffice.com/setup
alina
2019-12-5 14:10
There is an uncommon acceleration in the quantity of infections, malwares and different burdens to the PC programming. To control this expansion, a few viable antivirus applications are being created every day, one of such application is the norton antivirus. Not with standing being the most dependable, this software helps the client to securing the product in an assortment of platfor including workstations, work areas and tablets also.For protect your system you can take help from norton.com/setup where you will find best way to protect your system from viruses.
ramesh p
2019-12-5 14:51
Oh my goodness! Incredible article dude! Thank you, However I am having difficulties with your RSS. I don’t understand the reason why I cannot join it. Is there anybody else having the same RSS issues? Anybody who knows the answer will you kindly respond? Thanks!!
alienhalek
2019-12-5 14:53
Vidalista Want to best intimate sexual position? Buy Vidalista medication online which is best ED treatment for men. Check out dosage, side effects + Amazing OFFERS
trend micro
2019-12-5 15:24
www.trendmicro.com/downloadme Trend Micro uses advanced antivirus features to give your system multi-device and robust protection with comprehensive solutions everywhere. Either it is online data or offline file encryption, Trend Micro safeguards each data encryption by scanning your data from time to time through trendmicro.com/downloadme . After activating the Trend Micro software through www.trendmicro.com/downloadme also offers advanced security-based products such as Trend Micro Maximum Security in each country.
malwarebytespremium
2019-12-5 15:56
install malwarebytes with activation code | How to install and activate malwarebytes on multiple computers• Each copy of a multiple-device license for malwarebytes (for example, a 3 PCs license) is installed and activated in the same way on all computers you want to protect.• In conclusion to activate malwarebytes on all computers, use one and the same activation code you purchased.<a href="https://malwarebytespremium.org">malwarebytes.com/install</a><a href="https://malwarebytespremium.org/www-malwarebytes-com-download">malwarebytes.com/download</a><a href="https://malwarebytespremium.org/malwarebytes-download-reinstall/">install malwarebytes with activation code</a><a href="https://malwarebytespremium.org">malwarebytes download already purchased</a>
Claryfray
2019-12-5 16:19
The right HP wireless printer setup allows you to print from any convenient place and work from a convenient location and also print at an ease. Since, there are no cables associated with the printer, the efficiency of the wireless printer increases and hence the comfort of running a business increases. But if you still are a little confused and feel blue during HP Printer Setup , this article will help you in getting the direction of the setup process.
mdsnjani
2019-12-5 16:43
ESPN program audiences have access to each of ESPN system, live events, and reveals including all of the accessible content just once subscribing to the station. ESPN program can be found on Roku apparatus which comes together with a few minimal cost. Sometimes clients confront the issue with troubleshooting fo activation or installation of the ESPN program. In this circumstance, we'll give you with comprehensive support together with the instructions on how to include ESPN in your Roku device station list and to receive it triggered to stream live broadcasts.you can trigger to go to espn.com/activate
robertpowelt
2019-12-5 17:42
Super Fildena Love your partner with desire and passion buy Super Fildena at 100% trusted generic store. Uk, US, Australia & France Shipping available
mcafee activate card
2019-12-5 18:30
Avg works similarly to all of the AVG products, such as AVG internet security, AVG Ultimate, or AVG TuneUp.www.avg.com/retail | avg.com/retail |www.avg.com/activation | install avg with license number
garminexpress-garmin
2019-12-6 15:27
<a href="https://garminexpress-garmin.com/garmin-gps-updates">garmin gps updates</a><a href="https://garminexpress-garmin.com/connect-garmin-gps-to-laptop">connect garmin gps to laptop</a><a href="https://garminexpress-garmin.com/garmin-express-download">garmin express download</a><a href="https://garminexpress-garmin.com/www-garmin-com-express/">www.garmin.com/express</a><a href="https://garminexpress-garmin.com/garmin-gps-navigation">garmin gps navigation</a><a href="https://garminexpress-garmin.com/garmin-com-expressupdate">garmin.com/expressupdate</a><a href="https://garminexpress-garmin.com/garmin-express-login">garmin express login</a><a href="https://garminexpress-garmin.com/update-garmin-nuvi">update garmin nuvi/a><a href="https://garminexpress-garmin.com/garmin-map-updates">garmin map updates/a>
Webroot.com/safe
2019-12-6 17:24
Webroot.com/safe is one of the most trusted cyber threat intelligence providers. It is used worldwide by individuals and businesses. It offers a wide range of products to keep your digital life fully secure from cyber criminals, identity theft, and data thefts etc. In order to stay ahead of the ever evolving cyber threats, it constantly keeps reinventing itself.http://www.webrootsafez.com
magellan maps update
2019-12-6 17:26
Magellan Gps Update The advance and innovative GPS technology has become a necessity in today’s fast paced world. Magellan GPS devices has an extensive range of cutting-edge and user-friendly devices that covers the needs of varied users.http://magellan-gps-updates.com
magellan maps update
2019-12-6 17:26
Garmin Express is an application that is designed to manage your Garmin GPS device from your computer. You can use this app to register your device, update your maps, and even to create backup copies. Garmin Express also allows you to save various maps and preferred locations. You can get the latest detailed street maps to ensure fast and accurate navigation. It notifies you when the map updates are available and helps you to install them.http://www.garmin-express.support
Kaspersky Login
2019-12-6 17:27
Kaspersky Login is an antivirus software that provides protection to businesses from all types of viruses, malware, ransomware, and cyber threats. The software scans your PC to detect all kinds of threats and helps in removing them.
Webroot.com/safe
2019-12-6 17:28
Webroot.com/safe is a cloud-based antivirus software. This antivirus software offers complete security of your device from malware and viruses. It protects you during web surfing sessions by blocking harmful sites. http://zyan.cc/inc/securitycode.php?rand=0.5009788676974436
Rand McNally GPS Update
2019-12-6 17:29
Rand McNally GPS updates are essential for the optimized performance and accuracy of the powerful GPS navigation device. Some of these technological geniuses from Rand McNally requires manual update through a desktop application called Dock.
AVG Login
2019-12-6 17:29
AVG login account is a comprehensive management tool that allows users to customize and manage their AVG services in the most simplified manner. It allows you to:
Garmin.com/express
2019-12-6 17:30
Garmin Express is a tool that helps you to manage and update your Garmin devices. You are required to keep your device updated with the latest software and maps. This will help you in getting better and more accurate information.
分页: 102/436 97 98 99 100 101 102 103 104 105 106