[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
allan
2020-6-12 04:29
I really happy found this website eventually. Really informative and inoperative, Thanks for the post and effort! Please keep sharing more such blog.https://nortononlinehelp.com/http://roadrunneremailcustomerservice.com/http://kasperskyhelpline.epizy.comhttp://printers...
Solidworks Homework Help
2020-6-12 10:27
Solidworks Homework Helphttps://www.urgenthomework.com/solidworks-homework-helpI found Solidworks Homework Help interesting that connected me with the natural world. But When I pursued the major branch of Solidworks the situation turned out to be stressful. I have loads of assignment on Solidworks that burdened me. I failed to organize my work and end up with low grades in one of the subject. But with the reference of my friend I switched to urgenthomework.com The team work and professional advice have made it easy for me to carry the complete task effectively. My grades have finally increased and I am looking further to remain in touch with the members of this site due to their co-operative nature and well-organized system.
webroot-activate
2020-6-12 16:15
Activate webroot on your devices now.https://webroot-activate.com/geek-squad-webroot-download-with-key/https://webroot-activate.com/geeksquad-webroot-downloa... href="https://webroot-activate.com/geek-squad-webroot-download-with-key/">geek squad webroot download with key</a><a href="https://webroot-activate.com/geeksquad-webroot-download/">geeksquad webroot download</a><a href="https://webroot-activate.com/how-to-install-webroot-from-cd/">how to install webroot from cd</a><a href="https://webroot-activate.com/install-webroot-on-new-computer/">install webroot on new computer</a><a href="https://webroot-activate.com/install-webroot-without-cd/">install webroot without cd</a><a href="https://webroot-activate.com/protection-with-webroot/">Protection with webroot</a>
installkaspersky
2020-6-12 16:52
install kaspersky with activation code | How to install and activate kaspersky on multiple computers• Each copy of a multiple-device license for Kaspersky Anti-Virus 2019 (for example, a 3 PCs license) is installed and activated in the same way on all computers you want to protect.• In conclusion to activate Kaspersky Internet Security 2019 on all computers, use one and the same activation code you purchased.<a href="https://installkaspersky.com/kaspersky-support-number/">kaspersky support number and Kaspersky Total Security Download</a><a href="https://installkaspersky.com/kaspersky-download-and-install">kaspersky installation</a><a href="https://installkaspersky.com/kaspersky-setup/">kaspersky setup</a><a href="https://installkaspersky.com">install kaspersky with activation code</a><a href="http://installkaspersky.com/kaspersky-code-activation">kaspersky code activation and kaspersky lab</a><a href="https://installkaspersky.com/geek-squad-kaspersky-activation-code">Geek squad kaspersky activation code</a>
True Magic Psychic
2020-6-12 17:37
<a href="https://www.powerfulvoodoomagicspells.com/" target="_blank"> Honey Jar Love Spells That Work Now </a><a href="https://truemagicpsychic.com/abbah/" target="_blank"> Love spells That work so fast </a><a href="https://truemagicpsychic.com/abbah/about/" target="_blank"> True Love spells </a><a href="https://truemagicpsychic.com/abbah/black-magic-spells/" target="_blank"> Black Magic Spells That Work </a><a href="https://truemagicpsychic.com/abbah/love-spells/" target="_blank"> Best Love spells Caster to Win Back Lost Lover True Magic Love Psychic </a><a href="https://truemagicpsychic.com/abbah/contact-me/" target="_blank"> Contact Me for Love spells, Black magic Love spells, Psychic Love readings and spiritual Healing </a>
installvipre
2020-6-13 18:04
Vipre antivirus secures your computer against unwanted cyber threats available online. https://installvipre.orghttps://installvipre.org/i-need-to-install-viprehttps://installvipre.org/install-vipre-with-key-... href="https://installvipre.org/">install vipre antivirus</a><a href="https://installvipre.org/i-need-to-install-vipre/">i need to install vipre</a><a href="https://installvipre.org/install-vipre-with-key-code/">install vipre with key code</a><a href="https://installvipre.org/reinstall-vipre-with-product-key/">reinstall vipre with product key</a><a href="https://installvipre.org/vipre-antivirus-hsn-install-download/">vipre antivirus hsn installdownload</a>
turbotax login
2020-6-13 21:08
TurboTax login is an essential part for accessing the TurboTax platform. By logging in, you can easily download and install its software on your device.turbotax login
jeff
2020-6-14 05:21
Amazing and Interesting things to read and learn. Its amazing to find something interesting and cool. Enjoy shayari and dosti shayari and share them.
SimulinkHomework Help
2020-6-15 10:46
Great material! This is really a good urgent home work help because you always provide grand related content and very informative information with powerful points. Just like Simulink Homework Help I was looking for to read Simulink assignment I want to tell you that it is very helpful for us. https://www.urgenthomework.com/simulink-homework-help
office
2020-6-15 14:08
I have to believe all of your inclusions such nice data which will be terribly helpful, thanks for sharing this nice diary.https://go-myoffice.com/ | https://anti-norton.com/ | https://foreoffice.com/setup | https://t-telstra.com/ | https://how-to-activate.me/
trendmicrobestbuy
2020-6-15 16:46
Trend micro best buy is one of the best security software provided by best buy to its customers.https://trendmicrobestbuy.com/trend-micro-best-buy-download/https://trendmicrobestbuy.com/trend-micro-login/https://tren... href="https://trendmicrobestbuy.com/trend-micro-best-buy-download/">trend micro best buy download</a><a href="https://trendmicrobestbuy.com/trend-micro-login/">trend micro login</a><a href="https://trendmicrobestbuy.com/www-trendmicro-com-best-buy-downloads/">www trendmicro com best buy downloads</a>
jack
2020-6-15 17:29
Thanks for sharing this post.It is very informative and helpful.office.com/setup | norton.com/setup
netgear range extender setup
2020-6-16 00:54
In this blog of Netgear range extender setup, we are discussing how you can solve Netgear Mywifiext Setup not working issue. Before we pursue to tell you the guidance on this, let's know something regarding Netgear wifi range extender setup. Netgear range extender setup
activationavg
2020-6-16 15:34
Download avg on your computer and secure it from cyberthreats.<a href="https://activationavg.com/activate-avg/">activate avg</a><a href="https://activationavg.com/activate-avg-installation-setup/">activate avg installation setup</a><a href="https://activationavg.com/activate-avg-license-number/">activate avg license number</a><a href="https://activationavg.com/activate-avg-ultimate/">activate avg ultimate</a><a href="https://activationavg.com/activating-avg/">activating avg</a>https://activationavg.com/activate-avg/https://activationavg.com/activate-avg-installation-setup/https://activationavg.c...
Alice
2020-6-17 14:35
It’s quite striking when we realize that Civilization 6 is almost four years old because the game is persisting in acquiring a spot in the list of trending video games.
Management Coursework Writing Services
2020-6-17 15:38
Online project management writing services have become very popular among custom management writing service students seeking management coursework writing services and management essay writing services.
norton setup
2020-6-18 12:35
https://nortonn-norton.com/ Norton Security Standard can protect only one system. Norton Security Deluxe can be used for up to 5 systems, and Norton Security Premium can protect up to 10 systems. To know more about them and their comparison you can visit the official site of Norton. https://nortonn-norton.com/
norton setup
2020-6-18 12:37
norton.com/setup https://nortoncom-nu16.comNorton Security Standard can protect only one system. Norton Security Deluxe can be used for up to 5 systems, and Norton Security Premium can protect up to 10 systems. To know more about them and their comparison you can visit the official site of Norton.
any mith
2020-6-18 18:52
My passion is to become a technical writer. Being as the technical writer I have worked on creating many blogs and articles related to Roku.com/link and for the hp set up process. To read my articles and blogs view my profilehttps://rokucomlinks.org/
downloadtrendmicro
2020-6-18 19:39
When you visit downloadcenter.trendmicro.com and download trendmicro, it protects your device from unwanted threats and spywares. Below mentioned are the services provided by downloadcenter.trendmicro.comhttps://downloadtrendmicro.com/https://downloadtrendmicro.com/best-buy-trend-micro-renewal/https://downloadtrendmicro.com/download-purchased-trend-micro/https://downloadtrendmicro.com/trend-micro-best-buy/<a href="https://downloadtrendmicro.com/">downloadcenter.trendmicro.com</a><a href="https://downloadtrendmicro.com/best-buy-trend-micro-renewal/">best buy trend micro renewal</a><a href="https://downloadtrendmicro.com/download-purchased-trend-micro/">download purchased trend micro</a><a href="https://downloadtrendmicro.com/trend-micro-best-buy/">trend micro best buy</a>
分页: 160/438 155 156 157 158 159 160 161 162 163 164