[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
jsara
2019-12-11 17:25
McAfee has been running at the pace of eliminating viruses and threats from more than 30 years. This is the reason why people trust its widespread global threat intelligence network to protect their most valuable assets. mcafee activate|Router Support Number||[url=http://how-to-activate.me/]www.mcafee.com/activate
josepireh12
2019-12-11 19:50
TADALISTA 20 MG Boost your power of intimacy with partner buy Tadalista 20 mg best ED Treatment in the USA, Check out price, reviews & side effectshttps://www.genericday.com/tadalista-20-mg.html
kellydev
2019-12-11 20:08
123.hp.com/setup – If you are planning to buy a new printer, then HP Printer is the best you can invest on. The company has been manufacturing best quality printers for personal and business use and are compatible with computers. Once you buy the HP printer, it is important you unbox the printer and do the setup on your PC to get the printer. It is obvious that you are using the printer for the first time, and then you need to get the HP Support Assistance. For assistance website www.123.hp.com/setup and follow-up all the noted instructions very carefully. Apart from this, you can also take the personalised assistance from technical support engineer.
ALEXA Russa
2019-12-12 06:46
Thank you so much for this Post and all the best for your future
installvipreantivirus
2019-12-12 13:32
Install vipre on your device and protect it from cyber threats.<a href="https://installvipreantivirus.com/">install vipre using product key</a><a href="https://installvipreantivirus.com/vipre-download-with-product-key/">vipre download with product key</a><a href="https://installvipreantivirus.com/vipre-activation/">vipre activation</a> <a href="https://installvipreantivirus.com/i-need-to-install-vipre/">i need to install vipre</a> <a href="https://installvipreantivirus.com/install-vipre-with-key-code/">install vipre with key code</a><a href="https://installvipreantivirus.com/vipre-download/">vipre download</a><a href="https://installvipreantivirus.com/vipre-antivirus-download/">vipre antivirus download</a> <a href="https://installvipreantivirus.com/viper-security/">viper security</a> <a href="https://installvipreantivirus.com/vipre-internet-security/">vipre internet security</a> <a href="https://installvipreantivirus.com/vipre-advanced-security-download/">vipre advanced security download</a> <a href="https://installvipreantivirus.com/vipre-rescue/">vipre rescue</a> <a href="https://installvipreantivirus.com/vipre-download-already-purchased-key/">vipre download already purchased key</a> <a href="https://installvipreantivirus.com/reinstall-vipre-with-product-key/">reinstall vipre with product key</a> <a href="https://installvipreantivirus.com/vipre-internet-security-lifetime-reinstall/">vipre internet security lifetime reinstall</a> <a href="https://installvipreantivirus.com/vipre-antivirus-hsn-install-download/">vipre antivirus hsn install download</a> <a href="https://installvipreantivirus.com/vipre-download-and-install/">vipre download and install</a>
kangraevents
2019-12-12 15:10
I have to agree with all your inclusions such great information that will be very useful, Thank you for sharing this great blog.
robert
2019-12-12 19:59
Vidalista 2.5 Mg Desire to beyond romance experience with your partner? Buy Vidalista 2.5 mg which is FDA approved best ED treatment in the USA. Check out Deals & OFFERShttps://www.flatmeds.com/product/tadarise-oral-jelly/https://www.flatmeds.com/product/tadarise-5-mg/https://www.flatmeds.com/product/tadarise-10-mg/https://www.flatmeds.com/product/tadarise/
office setup
2019-12-12 20:13
Download office setup from www.office.com/setup and activate all office products like Excel, world, power point, outlook and latest version of office setup. For more information just visit official website of Microsoft office@- office.com/setup.
markleed
2019-12-13 02:19
I love this post and wonderful post.
installtrendmicro
2019-12-13 13:54
Install trend micro at www.installtrendmicro.com antivirus is one of the top rated antivirus program available online. It safeguards a user from cyber threats such as malware, spyware and viruses that may steal confidential user information and that information later can be used by hackers for financial gains. Trend micro also optimizes computer system for performance related issues. <a href="https://installtrendmicro.com/download-trend-micro-with-key/">Download trend micro with Serial number</a><a href="https://installtrendmicro.com/">install trend micro activation code</a><a href="https://installtrendmicro.com/install-trend-micro-on-new-computer/">Install trend micro on new computer</a><a href="https://installtrendmicro.com/install-trend-micro-without-disk/">install trend micro without disk</a><a href="https://installtrendmicro.com/trend-micro-security-activation/">trend micro internet security activation</a><a href="https://installtrendmicro.com/best-buy-trendmicro/">trendmicro.com/bestbuy</a><a href="https://installtrendmicro.com/www-trendmicro-com-activation/">www.trendmicro.com/activation</a><a href="https://installtrendmicro.com/trendmicro-com-max/">www.trendmicro.com/getmax</a><a href="https://installtrendmicro.com/download-trend-micro-with-key/">trendmicro homeinstall</a>
alienhalek
2019-12-13 14:06
Vilitra 20 MgWant to increase beyond bed pleasure experience? Buy Vilitra 20 Pills which is perfect ED Treatment for men's. Check Out Side Effects + 20% Extra OFFERShttps://www.flatmeds.com/product/vilitra-20-mg/
genericonline
2019-12-13 14:38
<a href="https://www.genericday.com/poxet-90-mg.html">POXET 90 MG</a> satisfy your mate absolutely by taking Poxet 90(Dapoxetine) which is helping to cure erectile dysfunction for men. Get 10% OFF + Free Shippinghttps://www.genericday.com/poxet-90-mg.htmlhttps://www.genericday.com/poxet-60-mg.htmlhttps://www.genericday.com/poxet-30-mg.html
TADARISE 2.5 MG
2019-12-13 14:40
TADARISE 2.5 MG wonderfully suits men who like to have frequent sex but repeatedly fail to get an erection. Check out price, side effects, uses or morehttps://www.genericday.com/tadarise-2-5-mg.htmlhttps://www.genericday.com/tadarise-2-5-mg.html
TADARISE 2.5 MG
2019-12-13 14:41
<a href="https://www.genericday.com/tadarise-2-5-mg.html">TADARISE 2.5 MG</a> wonderfully suits men who like to have frequent sex but repeatedly fail to get an erection. Check out price, side effects, uses or morehttps://www.genericday.com/tadarise-2-5-mg.html
shwetagaurmakeup
2019-12-13 15:42
Here you get all type of courses in very cheap prices with a expert hands By Shweta Gaur Makeup Artist Academy For more visit siteMakeup Artist in Delhihttp://shwetagaurmakeupartist.com/
garyritterm
2019-12-13 19:05
Tadarise 2.5 Mg Want to deep penetration without early discharge? Buy Tadarise 2.5 Online by using credit card & PayPal account.Check out price, reviews, dosageTadariseExtra Super TadariseTadarise Pro 20 Mg
kerala tour packages
2019-12-13 19:31
I would first like to thank the author for coming up with the insightful information every time. People if you are also looking for the best <a href="https://www.indiantravelstore.com/kerala-tour-packages.php">kerala tour packages for couple</a>, then reach out to Indian Travel Store as we are the best Travel Partners of yours.
macfee activate
2019-12-13 20:11
McAfee Total Protection is a good Windows antivirus solution, and while it's effective at blocking internet threats, it does create a lot of slowdown.www.mcafee.com activate card
mcafee activate
2019-12-14 13:56
123.hp.com/setupmcafee.com/activatenorton.com/setup
waldo2563
2019-12-14 14:52
Norton antivirus protects your computer against viruses, trojan, malware and other online threats. You have to select the Norton product and start downloading, installing and activating it by visiting the following link.https://nortoncom-nu16.com/setup/<a href="https://nortoncom-nu16.com/setup/">Norton.com/setup</a>
分页: 104/436 99 100 101 102 103 104 105 106 107 108