[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
jollyjoseph
2020-2-7 16:13
We are a support service provider who will consider all your queries and provide you with relevant solutions. All the queries related to your, Hulu activate, BT Mail GPS navigation device, McAfee antivirus, my drive connect software, Garmin Update, Navigon Fresh, Bitdefender central, Netgear Extender Setup, Webroot, Office.com/setup and much more will be considered. You will get a complete solution that will help you to resolve your issue in no time.http://mydriveconnect.ch http://officecomsetupl.com http://bt-maill.comhttp://mcafeeloginn.com
jollyjoseph
2020-2-7 16:13
http://webrootcomsafez.comhttp://wwwhulucomactivate.us/ http://netgearextendersetupp.com
jollyjoseph
2020-2-7 16:14
http://bitdefendercentralhub.com http://navigonfreshh.com http://garminupdate.de/
tarotcardreader
2020-2-7 18:25
Commendable and awesome work! Your writing skills are amazing! The ways to read tarot cards can be learned over the period of time through regular practice. The same can help you immensely in your life aspects. Read further to explore.
jack
2020-2-7 18:47
My name is Jack william. Jack william is the marketing manager of moodle monkey, our company based on Uk. Moodle monkey provides assignment help information in Uk.https://www.moodlemonkey.com/solution/unit-35-business-and-business-environment-assignment-help/
trendmicro-activate
2020-2-8 14:15
Trendmicro activate for your mac and pc.When you activate trendmicro antivirus, it protects your device from unwanted threats.Below mentioned are the services provided by trendmicro activation https://trendmicro-activate.com/https://trendmicro-activate.com/activate-trend-micro-internet-security/https://trendmicr... href="https://trendmicro-activate.com/">trend micro activation</a><a href="https://trendmicro-activate.com/activate-trend-micro-internet-security/">activate trend micro internet security</a><a href="https://trendmicro-activate.com/install-trend-micro-activation-code/">install trend micro activation code</a><a href="https://trendmicro-activate.com/trend-micro-internet-security-activation/">trend micro internet security activation</a><a href="https://trendmicro-activate.com/trendmicro-com-activate/">trendmicro.com/activate</a>
trendmicroactivation
2020-2-8 14:54
Activate trendmciro activation with code.https://trendmicroactivation.org/install-trend-micro-internet-security/https://trendmicroactivation.org/install-trend-mi... href="https://trendmicroactivation.org/install-trend-micro-internet-security/">install trend micro internet security</a><a href="https://trendmicroactivation.org/install-trend-micro-maximum-security/">install trend micro maximum security</a><a href="https://trendmicroactivation.org/install-trend-micro-on-new-computer/">install trend micro on new computer</a><a href="https://trendmicroactivation.org/install-trend-micro-paid-version/">install trend micro paid version</a><a href="https://trendmicroactivation.org/install-trend-micro-without-disk/">install trend micro without disk</a>
emmy raw
2020-2-8 15:02
Whenever Yahoo emailing platform has discontinued its service for mailing transfers, you would have to take the most positive remedy that is Yahoo support. So don't wait & quickly dial Yahoo Phone Number and talk to Live Yahoo Representative.YAHOO SUPPORT PHONE NUMBER
asimseo
2020-2-8 23:27
Мультимедийный и интерактивный контент. Первые веб-сайты interactivemediaбыли только текстовые и визуальные вскоре после этого. Затем для добавления аудио, видео и взаимодействия использовались плагины веб-браузера (например, для многофункционального интернет-приложения, которое отражает сложность настольного приложения, такого как текстовый процессор). InteractiveMediaJavaScript https://www.interactivemedia.az/также встроен в большинство современных веб-браузеров и позволяет создателям веб-сайтов отправлять код в веб-браузер; это научит вас, как интерактивно изменять содержимое страницы и общаться с веб-сервером, когда это необходимо. Внутреннее отображение содержимого в браузере известно как объектная модель документа (DOM) и методика динамического HTML. InteractivemediaПримерами таких дополнений являются апплеты, написанные на Microsoft Silverlight, Adobe Flash, Adobe Shockwave и Java. HTML 5 включает плагины для аудио и видео.
gerrycriston
2020-2-10 13:41
Nice Post, thanks for sharing.Girls chat area options anonymous chat therefore women will chat anonymously with freedom. the most effective chat avenue to talk with women and seek advice from girls online.omegle stranger talking
canon printer setup
2020-2-10 17:26
canon printer setup into your pc, your system does not need to install the driver on it. Canon printer that can be downloaded via page is the best wireless printer that you can connect to your device and print data smoothly.canon.com/ijsetup CD is not the well-suited technique to use canon.comijsetup setup installation for longer.
eset internet security
2020-2-10 17:28
eset internet security can be installed quickly on each device if the user follows the correct procedure. You can follow the instructions below to install the setup on your devices such as Windows PC, Mac, or mobile device. www.eset.com/ca/download Best IT security solutions for your home and business devices.
eset internet security
2020-2-10 17:28
eset internet security can be installed quickly on each device if the user follows the correct procedure. You can follow the instructions below to install the setup on your devices such as Windows PC, Mac, or mobile device. www.eset.com/ca/download Best IT security solutions for your home and business devices.
eset internet security
2020-2-10 17:28
eset internet security can be installed quickly on each device if the user follows the correct procedure. You can follow the instructions below to install the setup on your devices such as Windows PC, Mac, or mobile device. www.eset.com/ca/download Best IT security solutions for your home and business devices.
valadez258
2020-2-10 19:41
Norton antivirus protects your computer against viruses, trojan, malware and other online threats.https://mynorton-com.com/[url=https://mynorton-com.com/]
Rand McNally Dock
2020-2-10 20:18
Rand McNally Dock is an application that helps the users to install the maps and software updates on their GPS devices. This helps in the smooth functioning of your GPS device and provides the users with accurate and reliable information. For keeping your navigation device update, you have to download and install the Rand McNally dock application on your system. In order to install, follow the processes mentioned below.
Garmin Nuvi Update
2020-2-10 20:19
Garmin Nuvi update is a vehicle navigation device that uses GPS satellite signals to determine locations and routes. Also, the device comes with free-lifetime preloaded maps. Further, you can install the latest map updates according to your preference with the help of the Garmin Express software. Hence, follow the given guidelines carefully for the Garmin Nuvi Update.
McAfee LiveSafe
2020-2-10 20:19
McAfee LiveSafe offers its users to secure multiple devices with one subscription. You can protect your PC, Mac, iOS devices, Android devices, as well as tablets. It offers easy to use webpage for managing all your devices. This makes it easy for users to secure their entire household without buying multiple subscriptions.
Webroot Download
2020-2-10 20:20
Webroot download offers globally acclaimed, cutting-edge cybersecurity solutions that guarantee unbeatable protection for all your connected devices. Its innovative and user-friendly products are regarded as some of the most robust and versatile options. In order to secure your devices with this next-generation security software, you must deploy it properly on your system. In other words, you must purchase and perform a simple Webroot Download procedure.
Bitdefender Central
2020-2-10 20:20
Bitdefender central is an antivirus software that protects your system against viruses and other online threats. So, in order to use Bitdefender software on your system, you have to log in to the Bitdefender account. Here, is the complete guide that helps you to create and login to the Bitdefender Central account. Just follow the procedure carefully without skipping any step.
分页: 120/436 115 116 117 118 119 120 121 122 123 124