[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
Best Hand Blender
2018-12-4 16:13
Need a helping hand with making dinner We have rounded up the Best Hand Blender to consider when adding to your kitchen gadgets
Electric Hand Blender
2018-12-5 16:21
We hope these reviews help you in your decision to choose a blender. We are doing most of the blender reviews here at Electric Hand Blender. Educating, reviewing, informing, interacting and discussing with our readers on everything to do with blenders.
Electric Hand Blender
2018-12-5 16:21
We hope these reviews help you in your decision to choose a blender. We are doing most of the blender reviews here at Electric Hand Blender. Educating, reviewing, informing, interacting and discussing with our readers on everything to do with blenders.
wireitsolutions
2018-12-5 19:24
In the IT security services market, Wire IT Solutions is a top-rated and established company. Aptly labeled the best network security providers, it offers comprehensive and robust network security services. To get all-around security for internet and network, get in touch with the top internet and network security provider by dialing 8889967333 or 888-996-7333.We Provide:Internet SecurityNetwork SecurityInstant Problem Solution for Internet and Network SecurityCall Toll-Free Number 888-996-7333.You can Visit – 8889967333 to Get Secure your devices .8889967333
dialprintersupport
2018-12-6 05:50
HP Printer Support is a repair service organization available across the globe. This team of technical experts are a pro in dealing with all you HP printer issues. Call Us for help or suggestions on HP Printer Support number which is toll-free-1888-621-0339.HP Printer Support
Rijschool Den Haag
2018-12-6 15:55
Rijschool den haag Hofstad rijopleiding is écht gevestigd in Den Haag Wij helpen je met het behalen van je autorijbewijs na je rijexamen leer je pas echt autorijden Wij helpen je een heel eind op weg om het verkeer in Den Haag én in Nederland de baas te zijn Wij gaan voor kwalitatief rijden!
Transport company in Dammam
2018-12-8 15:50
تقدم شركة النقل في الدمام لجميع عملائها مجموعة واسعة من الخدمات لم تسبق رؤيتها من قبل أي شركة أخرى لنقل الرغيف. كما سيقدم لك مجموعة كبيرة من الخصومات الضخمة على عمليات النقل التي تصل إلى 40٪.
Transport company in Medina
2018-12-9 14:59
أفضل شركة نقل في المدينة المنورة والنجارين المبهرين في تفكيك وتركيب الأثاث والمفروشات.
AlexaBeth
2018-12-9 19:12
Great Information and nice your posting Thanks! Please look at my blog.Online pharmacy pill <a href="https://onlinepharmacypill.com/product/soma-500-mg/"> Soma 500mg </a>is Word's No. 1 Trusted Website to buy online Prescription Drugs. One Place for all of your Medicines needs. we provide 100% Genuine Medicines at Cheap Rate. wherever you stay you can buy medicines from your home.
Transport company In Taif
2018-12-10 14:36
أفضل شركة نقل في الطائف والنجارين في إعمار في تفكيك وتركيب الأثاث
Norton Setup
2018-12-10 17:38
Norton is one amongst the foremost standard antivirus that is extremely acknowledged for shielding device and giving a 1 stop security answer to any or all the individuals worldwide. The company offers an excellent vary of package answer that defend your desktops, laptops and mobile phones from the unwanted harmful on-line threats. With a Norton Antivirus on automatic data processing system, one will secure their laptop and might take care of the safety additionally as privacy of the knowledge. application, knowledge and package. No virus, phishing scam, worm or different threat will damage your device.http://nortonnorton-norton.com
Office Setup
2018-12-10 17:39
Office.com/setup is a self-decision supplier of remote specific help relationship for programming, mechanical get together, and peripherals. We are amazing since we have confine in things from a wide gathering of outcast affiliations. Offiicecom-setup.com has no association with any of these untouchable affiliations aside from if such relationship is unequivocally appeared.http://offiicecom-setup.com/http://offiicecom-setup.com/
Office Setup
2018-12-10 17:41
Office setup give has no association any of these aloof affiliations aside from if such relationship is unequivocally portrayed. For permitted use and specific ensures related with the thing, gear, and peripherals, you should contact the related disconnected.Officesetup-office-setup-show isn't responsible for removed Content gave on or through the Site and you bear all threats related with the use of such untouchable Content, things and affiliations.Officesetup-office-setup-present identity staff are Officesetup-office-setup-demonstrate Certified Technicians in any case don't everything considered hold any checks from any removed aside from if unequivocally showed up.www.office.com/setup.http://officeoffice-office.com/http://officeoffice-office.com/
aaa
2018-12-10 22:18
小米 LINE 貼圖代購網 - 全台最便宜 | -儲值享優惠- 原創20 官方40 主題60 | 提供LINE各國包含台灣、日本、美國等官方貼圖、原創貼圖、官方主題以及原創主題代購代送服務! 可使用超商代碼繳費、虛擬帳戶轉帳、信用卡或郵局無摺存款等付款方式。貼圖,貼圖代購,Line貼圖,買貼圖,貼圖怎麼買,原創貼圖,官方貼圖,國外貼圖,日本貼圖,超商買貼圖 貼圖代購最佳選擇,原創25元,官方45元,主題65元,另有超值優惠專區:只要10元即可入手可愛貼圖,購買後再享回饋點數,可免費換貼圖!國外貼圖主題亦可輕鬆購買,專業團隊經營,下單快速收圖,付款可使用超商繳費、虛擬帳號轉帳、信用卡、郵局無摺存款..等<a href="http://lines.tw">aaa</a><a href="https://yabeline.tw">aaa</a>
jneifferleio
2018-12-11 04:00
office.com/setup - Download, Install & Activate Ms office 365 for home & Business purpose. office.com/setupAlso get full technical help for office setup installation
Mcafee.com/Activate
2018-12-11 04:01
Mcafee.com/Activate - Protect unlimited devices with McAfee's complete virus protection and Internet Security. mcafee.com/activate
www.norton.com/setup
2018-12-11 04:11
norton.com/setup - Download the security product, and give you the best protection against online threats that won't interrupt your work by norton.com/setup
office.com/setup
2018-12-11 04:16
| office.com/setup - As we all know that Microsoft understand the significance of your data and that is why the company has worked vigorously to handle such data.
Rijschool Delft
2018-12-11 14:00
Rijschool Delft Ben je opzoek naar een goede rijschool in Delft Voor lessen van topkwaliteit tegen voordelige prijzen moet je zeker bij Hofstad Rijopleiding wezen!
turbo-steam
2018-12-11 22:11
Turbo Steam is a powerful, yet portable, fabric and clothes steamer for all of your steaming needs. Our Turbo Steam takes only 45 seconds to heat up and to start generating steam and its steam delivery system evenly distributes steam across fabrics to remove even the worst wrinkles. Read more https://turbo-steam.com/
分页: 18/436 13 14 15 16 17 18 19 20 21 22