[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
james7thomas
2020-1-7 20:00
Setup HP Printer Connection Through Hp Solution Center Service Are you one of those who want to setup a Hp printer to your computer system and router? Don’t you know the real time process to do so? In such a case, you should opt for Hp Solution Center directly from the professionals who will assist you about what you are going to do with your device. http://hpprintersupportprous.over-blog.com/hp-solution-center.html
bitdefenderactivation
2020-1-8 13:55
Bitdefender is the best compatible antivirus among all the devices. It is a solid and robust combo of cloud scanning technology which protects your operating from all harmful elements.Below mentioned are the services provided by bitdefender activation<a href="https://bitdefenderactivation.com">bitdefender activation</a><a href="https://bitdefenderactivation.com/bitdefender-central">bitdefender central</a><a href="https://bitdefenderactivation.com/bitdefender-login-account">bitdefender login account</a><a href="https://bitdefenderactivation.com/install-bitdefender-antivirus">install bitdefender antivirus</a><a href="https://bitdefenderactivation.com/bitdefender-downloads/">bitdefender downloads</a>
sofiya
2020-1-8 14:53
Asus RT N66U is a dual-band wireless router which comes 2.4 GHz and 5.0 GHz concurrent dual-band transmission. most reliable internet performance. webroot geek squad |asus router support
sofiya
2020-1-8 14:53
Plumbers Near Me within 2 hours for services at best prices. Book Now! Best Plumbing Services near you with 30 Days Guarantee & Damage Protection. Assured Quality Services at your doorstep. Plumbers Near Me |turbotax support
sofiya
2020-1-8 14:54
Web root antivirus is one among the foremost hassle free antivirus programs that you simply can choose especially with help from Best Buy Geek squad. webroot geek squad
geeksquadwebroot
2020-1-8 16:10
Webroot Safe install is the most popular computer security that helps you to protect Windows,Mac and Android devices.Below mentioned are the services provided by webroot geek squad<a href="https://geeksquadwebroot.com/download-webroot-geek-squad/">download webroot geek squad</a><a href="https://geeksquadwebroot.com/geek-squad-download-webroot/">geek squad download webroot</a><a href="https://geeksquadwebroot.com/geek-squad-webroot/">geek squad webroot</a><a href="https://geeksquadwebroot.com/geek-squad-webroot-download/">geek squad webroot download</a><a href="https://geeksquadwebroot.com/geek-squad-webroot-install/">geek squad webroot install</a><a href="https://geeksquadwebroot.com/geeksquad-webroot-download/">geeksquad webroot download</a>https://geeksquadwebroot.com/download-webroot-geek-squad/https://geeksquadwebroot.com/geek-squad-download-webroot/https:...
Adam12Walker
2020-1-8 18:20
Not able to do Bellsouth email login, contact Bellsouth HelpIf you come across an issue in Bellsouth email login, although you are entering correct particulars and there is the good speed of the internet, please contact Bellsouth Help. The issue will be taken care of by experienced and trained technicians, who are always there to assist on time. Every little explanation is given on the internet regarding the issue but you need more clarification, contact us. Please feel free to contact Bellsouth Login.文字
Adam12Walker
2020-1-8 18:21
To Get rid of all issues related to Gmail Email Login, contact Gmail SupportGmail is manageable and effortless to use. If you confront any type of problem-related to Gmail Email Login[b]. The team of experts will help you instantly and will give you a perfect solution. Our team works 24/7, so do not wait to grab help from us at any moment. Apart from this, we promise to keep your account particulars protected and we are constantly beyond to keep you smiling. Please feel free to contact [b]Gmail Support.
Adam12Walker
2020-1-8 18:22
Facing issues Related to Reset Amazon Password?Fronting issues identified with the Reset Amazon password, then read and follow the directions explained on the blog and articles related to the change password. But if after that also you are are not able to Amazon Support then just reach us.
sofia milos
2020-1-8 19:09
Readability is the important factor, of course, while consulting the printouts. Many companies are reliant on printers and meeting the needs of the workload on a daily basis becomes quite important. Brother, in fact, is one of the top brands that can meet your standards in every respect. In addition, you can take advantage of most of Brother's innovative printers, offering the perfect printer for home and office needs. In addition to the laser printer advantages, the Brother hl 2270dw series wireless setup has set its level of convenience by providing a wireless feature.
books goat
2020-1-8 19:14
Booksgoat is one of the best online bookstores in the USA.With affordable prices, you can buy books online in the USA.Find new books collection here over 150 million & morecheap college textbooks
nazmul
2020-1-9 14:06
smart outsourcing solutions is the best outsourcing training in Dhaka, if you start outsourcing please visit us:<a href="https://www.outsourcingall.com" Freelancing training in bangladesh " rel="nofollow"> Freelancing training in bangladesh</a><a href="https://www.outsourcingall.com/outsourcing-training-in-dhaka-bangladesh/"Outsourcing training in bangladesh " rel="nofollow"> Outsourcing training in bangladesh</a><a href="https://www.outsourcingall.com/outsourcing-training-in-dhaka-bangladesh/" Outsourcing training in dhaka " rel="nofollow"> Outsourcing training in dhaka</a>
Finn
2020-1-9 14:49
AVG Secure is designed to keep your digital info safe and secure. Learn about its pricing, security features, and more in this review. www.avg.com/retail | AVG Download |
Jasper
2020-1-9 14:50
Webroot makes sure that you have the best security software products installed on your computer, it uses antivirus protection and a firewall, gives antispyware software, always keeps it up to date.www.webroot.com/secure | Install Webroot With Key Code
installvipre
2020-1-9 15:06
Vipre antivirus secures your computer against unwanted cyber threats available online. https://installvipre.orghttps://installvipre.org/i-need-to-install-viprehttps://installvipre.org/install-vipre-with-key-... href="https://installvipre.org/">install vipre antivirus</a><a href="https://installvipre.org/i-need-to-install-vipre/">i need to install vipre</a><a href="https://installvipre.org/install-vipre-with-key-code/">install vipre with key code</a><a href="https://installvipre.org/reinstall-vipre-with-product-key/">reinstall vipre with product key</a><a href="https://installvipre.org/vipre-antivirus-hsn-install-download/">vipre antivirus hsn installdownload</a>
activationavg
2020-1-9 16:12
Download avg on your computer and secure it from cyberthreats.<a href="https://activationavg.com/activate-avg/">activate avg</a><a href="https://activationavg.com/activate-avg-installation-setup/">activate avg installation setup</a><a href="https://activationavg.com/activate-avg-license-number/">activate avg license number</a><a href="https://activationavg.com/activate-avg-ultimate/">activate avg ultimate</a><a href="https://activationavg.com/activating-avg/">activating avg</a>https://activationavg.com/activate-avg/https://activationavg.com/activate-avg-installation-setup/https://activationavg.c...
TADALISTA 20 MG
2020-1-9 19:21
TADALISTA 20 MG Boost your power of intimacy with partner buy Tadalista 20 mg best ED Treatment in the USA, Check out price, reviews & side effectshttps://www.genericday.com/tadalista-20-mg.html
Journalism Assignment Writing Services
2020-1-9 19:56
Students seek professional Journalism Essay Writing Services and Journalism Research Paper Help Services to accomplish Journalism Custom Writing Services.https://researchpapers247.com/
Norton Login
2020-1-9 20:44
Norton offers a comprehensive range of avant garde cybersecurity software products for unbeatable protection. It provides state-of-the-art and robust protective cover against every possible online threat. These innovative products are backed by advanced technology, feature-dense design and proactive, user-friendly approach.
Norton Login
2020-1-9 20:45
Norton is an industry-leading software that provides digital security to various products. It serves its customers with real-time protection and various comprehensive products.
分页: 108/438 103 104 105 106 107 108 109 110 111 112