[文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
2、创建Varnish日志目录(/var/logs/):
3、编译安装varnish:
4、创建Varnish配置文件:
输入以下内容:
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
7、配置开机自动启动Varnish
在末尾增加以下内容:
8、优化Linux内核参数
在末尾增加以下内容:
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
(3)、例:清除所有缓存:
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
设置在每天00:00定时执行:
我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。
今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。
在我看来,使用Varnish代替Squid的理由有三点:
1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。
下面来安装Varnish网站缓存加速器(Linux系统):
1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache
2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
chmod +w /var/logs
chown -R www:www /var/logs
3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install
4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf
输入以下内容:
引用
backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
set backend.host = "192.168.0.5";
set backend.port = "80";
}
acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}
sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}
if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}
sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}
sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}
这里,我对这段配置文件解释一下:
(1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
(3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。
5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &
7、配置开机自动启动Varnish
vi /etc/rc.local
在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
8、优化Linux内核参数
vi /etc/sysctl.conf
在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000
再看看如何管理Varnish:
1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat
2、通过Varnish管理端口进行管理:
用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help
引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool
3、通过Varnish管理端口,使用正则表达式批量清除缓存:
(1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/
(2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$
(3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$
4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):
附1:Varnish官方网站:http://www.varnish-cache.org/
附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
/var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz
设置在每天00:00定时执行:
/usr/bin/crontab -e
或者 vi /var/spool/cron/root
输入以下内容:引用
0 0 * * * /bin/sh /var/logs/cutlog.sh
mcafee.com/activate
2021-1-18 18:05
McAfee antivirus making brands have reliably strived hard to gather such programming that will proactively fight against creating perils.mcafee.com/activate The need to do so developed when advanced convicts examined each likelihood to debase our systems with toxic codes and savage contaminations. To guard our structures from the nosy eyes, we ought to just pass on incredible antivirus programming, for instance, McAfee on our devicesmcafee.com/activate
mcafee.com/activate
2021-1-18 18:06
I am a security expert and love to compose on web security and utilityprogramming subjects to mindful people groups from infection, malware and otherweb dangers. His territory of ??interest is to expound on Cyber ??security,Cryptography, infections, malware and up and coming potential dangers of the webworld. I compose for McAfee subjects.visit: mcafee.com/activate
office.com/setup
2021-1-18 18:07
Microsoft Office has become the most used productivity applications designed for business purposes from newly evolved software. People use this software across the globe in billions and millions. Microsoft Office comes with various versions,office.com/setup and you can choose one according to your choice. Being the most used and important software these days, it comes with easy to use a feature and easy to set up. You can have access to this software online and offline both. With the passing time and technology, Microsoft Office has kept an equal balance; over the years, it has worked on its applications and now comes with advanced features.office.com/setup
max
2021-1-18 22:47
really happy found this website eventually. Really informative and inoperative, Thanks for the post and effort! Please keep sharing more such blog.our websiteshttps://officesetup.link/https://mcafee-activate.us/https://bitcoinlogin.us/
max
2021-1-18 22:48
https://mcafee-activate.us/really happy found this website eventually. Really informative and inoperative, Thanks for the post and effort! Please keep sharing more such blog.our websiteshttps://officesetup.link/https://mcafee-activate.us/https://bitcoinlogin.us/
slotxo
2021-1-20 14:01
เกมสล็อตแตกบ่อย จ่ายจริง แจกรัวๆ เกมสล็อตออนไลน์ได้รับการการันตีแล้ว ว่านักเดิมพันสามารถเล่นเกมได้ตลอดและสามารถรวยได้เพียงชั่วข้ามคืน เท่านั้น ณ เวลานี้คงต้องยกให้เกมสล็อตออนไลน์เป็นเกมที่ทำเงินและสามารถสร้างรายได้ ได้ตลอด 24 ชั่วโมง ด้วยเหตุนี้ จึงมีหลายเว็บไซต์เริ่มที่จะทำการเปิดเว็บไซต์และเกมออนไลน์ต่างๆ เพิ่มมากขึ้น จึงทำให้เป็นที่นิยมในหมู่นักเสี่ยงโชคเลยก็ว่าได้ แต่เพราะเหตุนี้จึงทำให้เว็บไซต์ที่มีอยู่บนโลกมีจำนวนที่เยอะ ทำให้ลูกค้าหน้าใหม่ๆที่จะทำการทดลองเล่น ไม่รู้ว่าจะเข้าเล่นเว็บไซต์ไหนดี เราจึงได้หยิบเว็บไซต์มาแนะนำ เป็นเว็บไซต์ที่แอดมินยืนยันเลยว่า ดีที่สุด ณ ขณะนี้เลยก็ว่าได้ คลิกลองเล่นhttps://www.xopgth.com/https://xojoker.com/https://www.xoautobet.com/https://www.xosuperslot.com
james
2021-1-20 18:26
Garmin udate mapshttps://sites.google.com/view/nortoninstallingerror80047ec6/norton-comsetup-activateActivate Norton setuphttps://sites.google.com/view/123hpcomsetuphelp/home123.hp.com/setup
Arthurmax01
2021-1-21 16:20
Useful information. I am very happy to read this article..thanks for giving us this useful information. Fantastic walk-through. I appreciate this post. Brother printer offline windows 10
PawanBlogs
2021-1-21 18:45
Access the website PimpAndHost, then you can view their images or post, and also can upload yours, not available yet on google or bing.
sdasdasd
2021-1-22 16:14
เกมสล็อตแตกบ่อย จ่ายจริง แจกรัวๆ เกมสล็อตออนไลน์ได้รับการการันตีแล้ว ว่านักเดิมพันสามารถเล่นเกมได้ตลอดและสามารถรวยได้เพียงชั่วข้ามคืน เท่านั้น ณ เวลานี้คงต้องยกให้เกมสล็อตออนไลน์เป็นเกมที่ทำเงินและสามารถสร้างรายได้ ได้ตลอด 24 ชั่วโมง ด้วยเหตุนี้ จึงมีหลายเว็บไซต์เริ่มที่จะทำการเปิดเว็บไซต์และเกมออนไลน์ต่างๆ เพิ่มมากขึ้น จึงทำให้เป็นที่นิยมในหมู่นักเสี่ยงโชคเลยก็ว่าได้ แต่เพราะเหตุนี้จึงทำให้เว็บไซต์ที่มีอยู่บนโลกมีจำนวนที่เยอะ ทำให้ลูกค้าหน้าใหม่ๆที่จะทำการทดลองเล่น ไม่รู้ว่าจะเข้าเล่นเว็บไซต์ไหนดี เราจึงได้หยิบเว็บไซต์มาแนะนำ เป็นเว็บไซต์ที่แอดมินยืนยันเลยว่า ดีที่สุด ณ ขณะนี้เลยก็ว่าได้ คลิกลองเล่นhttps://www.xopgth.com/https://xojoker.com/https://www.xoautobet.com/https://www.xosuperslot.com
anisa
2021-1-22 16:27
Mywifiext arrangement, Netgear Extender Login, Mywifiext.net talk about any of the terms, everything drives you to one spot that is Netgear wifi Extender Setup login.
Air Canada Cancellation Policy
2021-1-22 16:29
Air Canada Cancellation Policy is an extremely mainstream banner transporter aircraft settled in Montreal which offers booked administrations to its travelers to different homegrown and global areas. Also Visit: Delta Airlines Cancellation & Air Canada Reservations
ameexam
2021-1-23 00:49
online application for aircraft maintenance engineering, aircraft maintenance engineering, best ame college in India, aircraft maintenance engineering online form, aircraft maintenance engineering application form, aircraft maintenance engineering apply online, aircraft maintenance engineering eligibility, aircraft maintenance engineering scope, aircraft maintenance engineering registration, aircraft maintenance engineering online registration, aircraft maintenance engineering registration formAircraft Maintenance Engineering, AME ENTRANCE EXAM
office.com/setup
2021-1-23 14:51
Microsoft Office has become the most used productivity applications designed for business purposes from newly evolved software. People use this software across the globe in billions and millions. Microsoft Office comes with various versions, and you can choose one according to your choice. Being the most used and important software these days, it comes with easy to use a feature and easy to set up. You can have access to this software online and offline both. With the passing time and technology, office.com/setup has kept an equal balance; over the years, it has worked on its applications and now comes with advanced features.office.com/setup
mcafee.com/activate
2021-1-23 14:52
McAfee antivirus making brands have reliably strived hard to gather such programming that will proactively fight against creating perils. The need to do so developed when advanced convicts examined each likelihood to debase our systems with toxic codes and savage contaminations. To guard our structures from the nosy eyes, we ought to just pass on incredible antivirus programming, for instance, mcafee.com/activate on our devices.mcafee.com/activate
joe
2021-1-23 15:48
Brother mfc l2700dw wifi setup is a very annoying error. If you are facing the same error check this blog and Just follow the steps which are written on the blog to fix the Brother mfc l2700dw wifi setup. We give online help for Any problem in Printer Errors.Brother mfc l2700dw wifi setup
geeksquadwebroot
2021-1-23 21:01
Webroot Safe install is the most popular computer security that helps you to protect Windows,Mac and Android devices.Below mentioned are the services provided by webroot geek squadBelow mentioned are the services provided by webroot geek squad<a href="https://geeksquadwebroot.com/www-webroot-com-geek-squad-download/">www.webroot.com geek squad download</a><a href="https://geeksquadwebroot.com/www-webroot-com-geeksquad/">www.webroot.com/geeksquad</a><a href="https://geeksquadwebroot.com/www-webroot-com-geeksquaddownload/">www.webroot.com/geeksquaddownload</a><... href="https://geeksquadwebroot.com/www-webroot-geeksquad/">www.webroot/geeksquad</a>https://geeksquadwebroot.com...
installvipre
2021-1-23 21:10
Vipre antivirus is one of the best security software available online today.https://installvipre.org/vipre-download-already-purchased-keyhttps://installvipre.org/vipre-download-and-installhttps://... href="https://installvipre.org/vipre-download-already-purchased-key/">vipre download already purchasedkey</a><a href="https://installvipre.org/vipre-download-and-install/">vipre download and install</a><a href="https://installvipre.org/vipre-download-with-product-key/">vipre download with product key</a><a href="https://installvipre.org/vipre-internet-security-lifetime-reinstall/">vipre internet security lifetimereinstall</a>
Trendmicro activate
2021-1-23 21:15
Trendmicro activate for your mac and pc.When you activate trendmicro antivirus, it protects your device from unwanted threats.Below mentioned are the services provided by trendmicro activation https://trendmicro-activate.com/https://trendmicro-activate.com/activate-trend-micro-internet-security/https://trendmicr... href="https://trendmicro-activate.com/">trend micro activation</a><a href="https://trendmicro-activate.com/activate-trend-micro-internet-security/">activate trend micro internet security</a><a href="https://trendmicro-activate.com/install-trend-micro-activation-code/">install trend micro activation code</a><a href="https://trendmicro-activate.com/trend-micro-internet-security-activation/">trend micro internet security activation</a><a href="https://trendmicro-activate.com/trendmicro-com-activate/">trendmicro.com/activate</a>
Hulu Error 94
2021-1-24 15:43
Want to know the complete guidance to resolve Hulu Error 94, then yes you are at right place, you have to just visit our website and you get the complete assistance through few steps to resolve Error 94 Hulu. So if you are dealing this error code in your Hulu app then visit our website today.
分页: 199/436 194 195 196 197 198 199 200 201 202 203