[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
xfinity.com/authorize
2020-6-8 16:48
Xfinity is an official link that helps the user to register new users with it. Save on XFINITY Digital Cable TV, High-Speed Internet, and Home Phone Services. Enjoy entertainment your way with great deals on XFINITY by Comcast. visit this site for more pieces of information:- https://visit-xfinity.com
xfinity.com/authorize
2020-6-8 16:49
Xfinity is an official link that helps the user to register new users with it. Save on XFINITY Digital Cable TV, High-Speed Internet, and Home Phone Services. Enjoy entertainment your way with great deals on XFINITY by Comcast. visit this site for more pieces of information:- https://a-xfinity.com/
malwarebytes download
2020-6-8 16:50
Malwarebytes is an anti-malware software for Microsoft Windows, macOS, Android, and iOS that finds and removes malware from computers. Malwarebytes is a better replacement for an antivirus. To download and install Malwarebytes on your Mac device, Open an Internet browser, and search for Malwarebytes for Mac.https://premium-malwarebytes.com/https://malwarebytes-mac.com/
installkaspersky
2020-6-8 17:50
install kaspersky with activation code | How to install and activate kaspersky on multiple computers• Each copy of a multiple-device license for Kaspersky Anti-Virus 2019 (for example, a 3 PCs license) is installed and activated in the same way on all computers you want to protect.• In conclusion to activate Kaspersky Internet Security 2019 on all computers, use one and the same activation code you purchased.<a href="https://installkaspersky.com/kaspersky-support-number/">kaspersky support number and Kaspersky Total Security Download</a><a href="https://installkaspersky.com/kaspersky-download-and-install">kaspersky installation</a><a href="https://installkaspersky.com/kaspersky-setup/">kaspersky setup</a><a href="https://installkaspersky.com">install kaspersky with activation code</a><a href="http://installkaspersky.com/kaspersky-code-activation">kaspersky code activation and kaspersky lab</a><a href="https://installkaspersky.com/geek-squad-kaspersky-activation-code">Geek squad kaspersky activation code</a>
William
2020-6-8 20:27
I really appreciate the kind of topics you post here. Thanks for sharing us a great information that is actually helpful. Good day!canon.com/ijsetupij.start.canon
garmin.com/express
2020-6-9 13:06
Garmin Express is an application designed to manage Garmin devices.It is used for app registration, software upgrades and map changes, Garmin Link Exercise data synchronization, and many more. Garmin Express, choose your computer’s operating system below: Windows or Mac. In order to Download and Install Garmin Express Software on your device, visit URL: https://visit-garmin.com/
roku setup without remote
2020-6-9 17:54
Roku TV is a smart TV with a built-in TV display, a simple, intuitive interface, watch live TV with bits of help of an antenna, and try to access connected devices like a Blu-ray player or cable set-top box. A simple-to-use remote and the free mobile app let you control your Roku TV and search for movies, shows and more across top streaming services and broadcast TV in your area. The addition of powerful features like Pause Live TC and Smart guide make Roku TV a compelling smart TV experience.It would help if you unpacked your new Roku Tv before you can start using i. Attach or connect the base which is included to wall mount make connections, and then complete the Guided Setup wizard. This post gives small details of the direct Setup. For more information on unpacking and attaching the base, read the quick start guide that included in Roku TV box of yours. Depth instructions when making connections, completing the Guided Setup, using features, or configuring settings; refer to the Roku Remote Setup or watch the setup video.Roku Remote Setup
result prediction
2020-6-9 18:57
BGP vs LDS The Hundred 2020 Match Prediction Who will win today? BGP vs LDS 2nd Match today match prediction, toss tips for prediction, betting tips, BGP vs LDS The Hundred 2nd 2020 match astrology prediction,, today match astrology prediction. Birmingham Phoenix vs London Spirit today match result prediction, match score prediction, Live cricket streaming info, pitch report, head-to-head weather report, BGP vs LDS head to head team news prediction, head to head live cricket score. Get 100 per cent free update on who will win the BGP vs LDS The Hundred 2020 Match Prediction with us ball by ball. BGP vs LDS today match prediction
Cbis
2020-6-9 20:25
CBIS is one of the reliable consulting firm which offers lean six sigma courses. We provide all training in two phases online as well as offline with well prepared and documented syllabus as per global standard. For more detail please visit our website at cbisco.com.au
norton setup
2020-6-10 13:06
Norton setup provides this another option for downloading the complete download setup. Most of the steps are same but with some modifications in the downloading procedures, one can download the setup on another device.
Office.com/Setup
2020-6-10 14:04
Learn how to Download, Install & Setup your MS Office using an Office product key.
ISOPro9001
2020-6-10 14:29
The article you have shared here very good. This is really interesting information for me. Thanks for sharing!ISO Certification in Saudi Arabia||ISO certification in iraq || ISO certification in oman
HP Assistant
2020-6-10 15:45
Find support options including software, drivers, manuals, how to and troubleshooting information for your HP Printers.
installvipreantivirus
2020-6-10 18:35
Install vipre on your device and protect it from cyber threats.<a href="https://installvipreantivirus.com/vipre-rescue/">vipre rescue</a> <a href="https://installvipreantivirus.com/vipre-download-already-purchased-key/">vipre download already purchased key</a> <a href="https://installvipreantivirus.com/reinstall-vipre-with-product-key/">reinstall vipre with product key</a> <a href="https://installvipreantivirus.com/vipre-internet-security-lifetime-reinstall/">vipre internet security lifetime reinstall</a> <a href="https://installvipreantivirus.com/vipre-antivirus-hsn-install-download/">vipre antivirus hsn install download</a> <a href="https://installvipreantivirus.com/vipre-download-and-install/">vipre download and install</a>
Solidworks Homework Help
2020-6-10 22:01
Solidworks Homework Helphttps://www.myassignmenthelp.net/solidworks-assignment-helpI would like to thank myassignmenthelp.net for doing a great job on my assignment. I have been using this site since a year and they never disappointed me. 5 star rating to the site for solidworks Assignment Help Our assignment experts are accessible 24*7 hours.
trendmicrobestbuy
2020-6-11 13:47
Trend micro best buy is one of the best security software provided by best buy to its customers.https://trendmicrobestbuy.com/trend-micro-best-buy-download/https://trendmicrobestbuy.com/trend-micro-login/https://tren... href="https://trendmicrobestbuy.com/trend-micro-best-buy-download/">trend micro best buy download</a><a href="https://trendmicrobestbuy.com/trend-micro-login/">trend micro login</a><a href="https://trendmicrobestbuy.com/www-trendmicro-com-best-buy-downloads/">www trendmicro com best buy downloads</a>
geeksquadwebroot
2020-6-11 18:40
Webroot Safe install is the most popular computer security that helps you to protect Windows,Mac and Android devices.Below mentioned are the services provided by webroot geek squadBelow mentioned are the services provided by webroot geek squad<a href="https://geeksquadwebroot.com/www-webroot-com-geek-squad-download/">www.webroot.com geek squad download</a><a href="https://geeksquadwebroot.com/www-webroot-com-geeksquad/">www.webroot.com/geeksquad</a><a href="https://geeksquadwebroot.com/www-webroot-com-geeksquaddownload/">www.webroot.com/geeksquaddownload</a><... href="https://geeksquadwebroot.com/www-webroot-geeksquad/">www.webroot/geeksquad</a>https://geeksquadwebroot.com...
webroot-activate
2020-6-11 18:52
sonuwah@gmail.comDownload webroot on your devices now.https://webroot-activate.com/webroot-geeksquad-download/https://webroot-activate.com/webroot-installation-without-cd/htt... href="https://webroot-activate.com/webroot-geeksquad-download/">webroot geeksquad download</a><a href="https://webroot-activate.com/webroot-installation-without-cd/">webroot installation without cd</a><a href="https://webroot-activate.com/webroot-key/">webroot key</a><a href="https://webroot-activate.com/webroot-key-code-activation/">webroot key code activation</a><a href="https://webroot-activate.com/webroot-keys/">webroot keys</a><a href="https://webroot-activate.com/webroot-new-keycode/">webroot new keycode</a>
toxatok212
2020-6-11 18:55
Webroot antivirus may be a famous program that gives full security for an own device from cyber threats. This Webroot Threat Intelligence for your business protects your device from appearing dangers.
toxatok212
2020-6-11 18:56
There is no day in an employee’s life when he doesn’t need to use email services because it is the basic method of formal communication in a working organization.Geek Squad Webroot Login |router login|att mail login|mcafee.com/activate
分页: 159/438 154 155 156 157 158 159 160 161 162 163