使用Varnish代替Squid做网站缓存加速器的详细解决方案[原创]

| |
[不指定 2007-11-29 22:11 | by 张宴 ]
  [文章作者:张宴 本文版本:v1.2 最后修改:2008.01.02 转载请注明出处:http://blog.zyan.cc]

  我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》,但当时仅仅是用着玩,没做深入研究。

  今天写的这篇关于Varnish的文章,已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少,中文资料更是微乎其微,希望本文能够吸引更多的人研究、使用Varnish。

  在我看来,使用Varnish代替Squid的理由有三点:
  1、Varnish采用了“Visual Page Cache”技术,在内存的利用上,Varnish比Squid具有优势,它避免了Squid频繁在内存、磁盘中交换文件,性能要比Squid高。
  2、Varnish的稳定性还不错,我管理的一台图片服务器运行Varnish已经有一个月,没有发生过故障,而进行相同工作的Squid服务器就倒过几次。
  3、通过Varnish管理端口,可以使用正则表达式快速、批量地清除部分缓存,这一点是Squid不能具备的。

  点击在新窗口中浏览此图片

  下面来安装Varnish网站缓存加速器(Linux系统):
  1、创建www用户和组,以及Varnish缓存文件存放目录(/var/vcache):
/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache


  2、创建Varnish日志目录(/var/logs/):
mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs


  3、编译安装varnish:
wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install


  4、创建Varnish配置文件:
vi /usr/local/varnish/vcl.conf

  输入以下内容:
引用
backend myblogserver {
       set backend.host = "192.168.0.5";
       set backend.port = "80";
}

acl purge {
       "localhost";
       "127.0.0.1";
       "192.168.1.0"/24;
}

sub vcl_recv {
       if (req.request == "PURGE") {
               if (!client.ip ~ purge) {
                       error 405 "Not allowed.";
               }
               lookup;
       }

       if (req.http.host ~ "^blog.zyan.cc") {
               set req.backend = myblogserver;
               if (req.request != "GET" && req.request != "HEAD") {
                       pipe;
               }
               else {
                       lookup;
               }
       }
       else {
               error 404 "Zhang Yan Cache Server";
               lookup;
       }
}

sub vcl_hit {
       if (req.request == "PURGE") {
               set obj.ttl = 0s;
               error 200 "Purged.";
       }
}

sub vcl_miss {
       if (req.request == "PURGE") {
               error 404 "Not in cache.";
       }
}

sub vcl_fetch {
       if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
               set obj.ttl = 3600s;
       }
       else {
               set obj.ttl = 30d;
       }
}

  这里,我对这段配置文件解释一下:
  (1)、Varnish通过反向代理请求后端IP为192.168.0.5,端口为80的web服务器;
  (2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存;
  (3)、Varnish对域名为blog.zyan.cc的请求进行处理,非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”;
  (4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存,对POST请求透过,让其直接访问后端Web服务器。之所以这样配置,是因为POST请求一般是发送数据给服务器的,需要服务器接收、处理,所以不缓存;
  (5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时,对其他的URL缓存时间设置为30天。

  5、启动Varnish
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on


  6、启动varnishncsa用来将Varnish访问日志写入日志文件:
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &


  7、配置开机自动启动Varnish
vi /etc/rc.local

  在末尾增加以下内容:
引用
ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &


  8、优化Linux内核参数
vi /etc/sysctl.conf

  在末尾增加以下内容:
引用
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000    65000


  再看看如何管理Varnish:
  1、查看Varnish服务器连接数与命中率:
/usr/local/varnish/bin/varnishstat

  点击在新窗口中浏览此图片

  2、通过Varnish管理端口进行管理:
  用help看看可以使用哪些Varnish命令:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help

引用
Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool


  3、通过Varnish管理端口,使用正则表达式批量清除缓存:
  (1)、例:清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址):
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/

  (2)、例:清除类似http://blog.zyan.cc/tech的URL地址:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$

  (3)、例:清除所有缓存:
/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$


  4、一个清除Squid缓存的PHP函数(清除Varnish缓存同样可以使用该函数,无需作任何修改,十分方便):


  附1:Varnish官方网站:http://www.varnish-cache.org/

  附2:2007年12月10日,我写了一个每天0点运行,按天切割Varnish日志,生成一个压缩文件,同时删除上个月旧日志的脚本(/var/logs/cutlog.sh):
  /var/logs/cutlog.sh文件内容如下:
引用
#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz

  设置在每天00:00定时执行:
  
/usr/bin/crontab -e
  或者  
vi /var/spool/cron/root
  输入以下内容:
引用
0 0 * * * /bin/sh /var/logs/cutlog.sh



Tags: , , ,



技术大类 » Cache与存储 | 评论(8410) | 引用(0) | 阅读(715715)
Canon Printer Offline Email Homepage
2021-2-4 13:46
I definitely enjoyed every little bit of it I have you bookmarked to check out new stuff you post. Want to fix the problem of Canon Printer errors? Just follow the steps which are mention on the blog to Resolve Canon Printer Error Code b504 issue. Thanks https://www.canonprintersupport247.com/blog/how-to-fix-canon-printer-offline-error/
Mcafee.com/activate Email Homepage
2021-2-4 16:27
McAfee is one of the most used antivirus software that protects devices from malicious programs and viruses. For using this software, you need first to install this software and then have to use McAfee activation to activate it so that you can use its all services.However, there are times when you can face issues while using this error and one such error is McAfee Update Error.Mcafee.com/activate
office setup Email Homepage
2021-2-5 18:29
To get started with your Office Installation you must need a valid product key code & visit office.com/setup and we can also help you with your entire process to setup office products online. The office is operated by users on Windows, laptop, smartphones, MacOS. The users can use Microsoft Office in any place they wish to. In case the users make any changes in their document online, then the changes will get synchronized. The user can buy an Office.com/setup from both the online or offline mode.office.com/setup
mcafeeprominent Email Homepage
2021-2-5 20:44
Thanks for this valuable information!https://mcafeeprominent.com/<a href="https://mcafeeprominent.com/">mcafeeprominent</a>
Iamrahul Email
2021-2-5 22:19
Honestly I found something new from this beautiful post. I am really thankful to you for this awesome post. Satta Matka
PawanBlogs Email Homepage
2021-2-6 01:30
Here we have 4 simple ways to  remove copy content protection, we know some mobile device users have also reached this they also can use those.
mcafee Email Homepage
2021-2-6 13:27
for paypal and mcafeepaypal accountwww.mcafee.com/activate
canon.com/ijsetup Email
2021-2-6 14:04
canon.com/ijsetup is the Official support site. Download Canon inkjet scanners and printers setup for multiple devices including MAXIFY, PIXMA, CanoScan, and imagePROGRAF. Being popular for multiple devices like cameras, scanners, printers, and more, Canon offers manuals to set up your printers. Get the latest drivers of Canon and start printing. Canon inkjet plays important role in printing, scanning, and other operations therefore check all the requirements carefully and setup inkjet drivers from canon.com/ijsetup site.
jonsonmark581 Email Homepage
2021-2-6 15:26
www.fubo.tv/connect - You can activate and watch fuboTV on any device on which you want to watch episodes. There are two ways to activate fuboTV by using email and password and fubo activation code using fubo.tv/connect.https://fubocomconnect.com/
ij.start canon Email Homepage
2021-2-6 18:30
Canon ij printer provides an answer for all type of canon printer problems by which you can undoubtedly figure out how to set up from ij.start canon
joehansan3
2021-2-8 13:57
Thank you so much for sharing these amazing tips. I must say you are an incredible writer, I love the way that you describe things. Please keep sharing.Brother Printer In Error State Windows 10
Dhaka University Admission Email Homepage
2021-2-8 16:23
Honours  under the Bangladesh National University Published Honours Exam Result Student or Candidate first & easily download. Our Government official website :1.  <a href="https://allresultsall.com/7college-masters-admission-circular/"> Du 7 College Admission</a> 2.  <a href="https://allresultsall.com/du-affiliated-college-honours-admission/"> Du 7 College Admission</a> 3.  <a href="https://allresultsall.com/dhaka-university-admission-test-notice/"> Dhaka University Admission</a> 4.  <a href="https://allresultsall.com/national-university-honours-admission/"> Honours Admission</a> 5.  <a href="https://allresultsall.com/degree-admission-circular/"> Degree Admission</a>
netflix helpline number uk Email Homepage
2021-2-8 16:56
The user will need an active Netflix subscription, also the movie or the TV show will need to have the download option for knowing more the user should get in touch with the technicians' lines are open for the users all the time. If you need to know more the user should get in touch with the Netflix experts line are open always. netlfix helpline number uknetflix helpline number uk
netflix helpline number uk Email Homepage
2021-2-8 16:56
The user will need an active Netflix subscription, also the movie or the TV show will need to have the download option for knowing more the user should get in touch with the technicians' lines are open for the users all the time. If you need to know more the user should get in touch with the Netflix experts line are open always. Netflix helpline number ukNetflix Helpline nUmber uK
mcafee Email Homepage
2021-2-8 17:14
Go to <a href="https://sites.google.com/view/macfeeactivate/home"> mcafee.com/activate</a> and download the desired package to protect your Mac, PC, and mobile device against potential malware, viruses, spyware, etc.<a href="https://sites.google.com/view/paypaloginusa/home">PayPal login</a>
office setup Email Homepage
2021-2-8 18:39
For people with a need for Productivity, That is every day and the general public. The office.com/setup is one of the best tools to work with. This is an easy and yet the most powerful productivity tool that can turn your productivity problems to dust within no time. Many offices and businesses are regular customers for the Microsoft Office Productivity tool. Buy your Office from Official office.com/setup
Brajput123 Email Homepage
2021-2-9 13:55
To get to the Amazon account, you should simply to enlist from your gadget and utilize the www .amazon.com/mytv enter code .That is of 5 to 6 character and it is arranged in the Amazon video application on the Tv,Laptop,Phones. Amazon prime is a paid membership application.
Brajput123 Email Homepage
2021-2-9 13:55
On the off chance that you're seeing Amazon Prime on your TV, you essentially need to open the application and get your extraordinary Activate Amazon.com/mytv . It will be given to you when you endeavor to activate an alternate device for review. For instance, getting a Prime Trial notwithstanding contraption Activation code.
How to get fallout 3 work on Windows 10? Email
2021-2-9 14:05
You might face that Fallout 3 may not work on the latest Windows OS, and you must take such issues lightly. You must know how to get fallout 3 to work on Windows 10 if you are facing such issues.How to make yourself system administrator windows 10Why it shows Avast Won;t Open Problem on Windows? - Press Windows + S key, type cp in the search box and open Control Panel to solve.how to get fallout 3 to work on Windows 10
分页: 202/421 第一页 上页 197 198 199 200 201 202 203 204 205 206 下页 最后页
发表评论
表情
emotemotemotemotemot
emotemotemotemotemot
emotemotemotemotemot
emotemotemotemotemot
emotemotemotemotemot
打开HTML
打开UBB
打开表情
隐藏
记住我
昵称   密码   游客无需密码
网址   电邮   [注册]