使用Varnish代替Squid做网站缓存加速器的详细解决方案[原创]

一个发送HTML邮件的PHP函数[原创]

Nginx 0.5.33 + PHP 5.2.5（FastCGI）搭建胜过Apache 10倍的Web服务器（第2版）[原创]

大 | 中 | 小

[

2007-11-29 22:11 | by 张宴 ]

　　[文章作者：张宴本文版本：v1.2 最后修改：2008.01.02 转载请注明出处：http://blog.zyan.cc]

　　我曾经写过一篇文章──《初步试用Squid的替代产品──Varnish Cache网站加速器》，但当时仅仅是用着玩，没做深入研究。

　　今天写的这篇关于Varnish的文章，已经是一篇可以完全替代Squid做网站缓存加速器的详细解决方案了。网上关于Varnish的资料很少，中文资料更是微乎其微，希望本文能够吸引更多的人研究、使用Varnish。

　　在我看来，使用Varnish代替Squid的理由有三点：
　　1、Varnish采用了“Visual Page Cache”技术，在内存的利用上，Varnish比Squid具有优势，它避免了Squid频繁在内存、磁盘中交换文件，性能要比Squid高。
　　2、Varnish的稳定性还不错，我管理的一台图片服务器运行Varnish已经有一个月，没有发生过故障，而进行相同工作的Squid服务器就倒过几次。
　　3、通过Varnish管理端口，可以使用正则表达式快速、批量地清除部分缓存，这一点是Squid不能具备的。

　　

　　下面来安装Varnish网站缓存加速器（Linux系统）：
　　1、创建www用户和组，以及Varnish缓存文件存放目录（/var/vcache）：

/usr/sbin/groupadd www -g 48
/usr/sbin/useradd -u 48 -g www www
mkdir -p /var/vcache
chmod +w /var/vcache
chown -R www:www /var/vcache

　　2、创建Varnish日志目录（/var/logs/）：

mkdir -p /var/logs
chmod +w /var/logs
chown -R www:www /var/logs

　　3、编译安装varnish：

wget http://blog.zyan.cc/soft/linux/varnish/varnish-1.1.2.tar.gz
tar zxvf varnish-1.1.2.tar.gz
cd varnish-1.1.2
./configure --prefix=/usr/local/varnish
make && make install

　　4、创建Varnish配置文件：

vi /usr/local/varnish/vcl.conf

　　输入以下内容：

引用

backend myblogserver {
set backend.host = "192.168.0.5";
set backend.port = "80";
}

acl purge {
"localhost";
"127.0.0.1";
"192.168.1.0"/24;
}

sub vcl_recv {
if (req.request == "PURGE") {
if (!client.ip ~ purge) {
error 405 "Not allowed.";
}
lookup;
}

if (req.http.host ~ "^blog.zyan.cc") {
set req.backend = myblogserver;
if (req.request != "GET" && req.request != "HEAD") {
pipe;
}
else {
lookup;
}
}
else {
error 404 "Zhang Yan Cache Server";
lookup;
}
}

sub vcl_hit {
if (req.request == "PURGE") {
set obj.ttl = 0s;
error 200 "Purged.";
}
}

sub vcl_miss {
if (req.request == "PURGE") {
error 404 "Not in cache.";
}
}

sub vcl_fetch {
if (req.request == "GET" && req.url ~ "\.(txt|js)$") {
set obj.ttl = 3600s;
}
else {
set obj.ttl = 30d;
}
}

　　这里，我对这段配置文件解释一下：
　　(1)、Varnish通过反向代理请求后端IP为192.168.0.5，端口为80的web服务器；
　　(2)、Varnish允许localhost、127.0.0.1、192.168.0.***三个来源IP通过PURGE方法清除缓存；
　　(3)、Varnish对域名为blog.zyan.cc的请求进行处理，非blog.zyan.cc域名的请求则返回“Zhang Yan Cache Server”；
　　(4)、Varnish对HTTP协议中的GET、HEAD请求进行缓存，对POST请求透过，让其直接访问后端Web服务器。之所以这样配置，是因为POST请求一般是发送数据给服务器的，需要服务器接收、处理，所以不缓存；
　　(5)、Varnish对以.txt和.js结尾的URL缓存时间设置1小时，对其他的URL缓存时间设置为30天。

　　5、启动Varnish

ulimit -SHn 51200
/usr/local/varnish/sbin/varnishd -n /var/vcache -f /usr/local/varnish/vcl.conf -a 0.0.0.0:80 -s file,/var/vcache/varnish_cache.data,1G -g www -u www -w 30000,51200,10 -T 127.0.0.1:3500 -p client_http11=on

　　6、启动varnishncsa用来将Varnish访问日志写入日志文件：

/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/varnish.log &

　　7、配置开机自动启动Varnish

vi /etc/rc.local

　　在末尾增加以下内容：

引用

　　8、优化Linux内核参数

vi /etc/sysctl.conf

　　在末尾增加以下内容：

引用

net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 300
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
net.ipv4.ip_local_port_range = 5000 65000

　　再看看如何管理Varnish：
　　1、查看Varnish服务器连接数与命中率：

/usr/local/varnish/bin/varnishstat

　　2、通过Varnish管理端口进行管理：
　　用help看看可以使用哪些Varnish命令：

/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 help

引用

Available commands:
ping [timestamp]
status
start
stop
stats
vcl.load
vcl.inline
vcl.use
vcl.discard
vcl.list
vcl.show
param.show [-l] []
param.set
help [command]
url.purge
dump.pool

　　3、通过Varnish管理端口，使用正则表达式批量清除缓存：
　　(1)、例：清除类似http://blog.zyan.cc/a/zhangyan.html的URL地址）：

/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge /a/

　　(2)、例：清除类似http://blog.zyan.cc/tech的URL地址：

/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge w*$

　　(3)、例：清除所有缓存：

/usr/local/varnish/bin/varnishadm -T 127.0.0.1:3500 url.purge *$

　　4、一个清除Squid缓存的PHP函数（清除Varnish缓存同样可以使用该函数，无需作任何修改，十分方便）：

　　附1：Varnish官方网站：http://www.varnish-cache.org/

　　附2：2007年12月10日，我写了一个每天0点运行，按天切割Varnish日志，生成一个压缩文件，同时删除上个月旧日志的脚本（/var/logs/cutlog.sh）：
　　/var/logs/cutlog.sh文件内容如下：

引用

#!/bin/sh
# This file run at 00:00
date=$(date -d "yesterday" +"%Y-%m-%d")
pkill -9 varnishncsa
mv /var/logs/youvideo.log /var/logs/${date}.log
/usr/local/varnish/bin/varnishncsa -n /var/vcache -w /var/logs/youvideo.log &
mkdir -p /var/logs/youvideo/
gzip -c /var/logs/${date}.log > /var/logs/youvideo/${date}.log.gz
rm -f /var/logs/${date}.log
rm -f /var/logs/youvideo/$(date -d "-1 month" +"%Y-%m*").log.gz

　　设置在每天00:00定时执行：
　　

/usr/bin/crontab -e

　　或者　　

vi /var/spool/cron/root

　　输入以下内容：

引用

0 0 * * * /bin/sh /var/logs/cutlog.sh

技术大类 » Cache与存储 | 评论(8714) | 引用(0) | 阅读(840824)

wifi

2021-3-16 16:37

">McAfee.com</a> offers a couple out of the case highlights to its clients as a piece of its www.mcafee.com/initiate Total Protection 2019 item. These highlights being exceptional to antivirus programming, are surprising in their quintessence. One of these highlights permits various clients to have their own space for information in a solitary PC or PC. Upwards of five client records can be created, each secured with a secret word special to the record with each record containing singular information out of reach to anyone who doesn't hold the secret phrase or is an unapproved client. Another of these highlights incorporates a high level determination of the 'Discover My Device' apparatus. This component permits distant admittance to cell phones if there should be an occurrence of robbery or scattering.McAfee.com

wifi

2021-3-16 16:38

Purchasing a WiFi extender, the initially imagined that would enter the client's brain would be how the speed would soar yet imagine a scenario where even subsequent to spending each and every penny held for the reason, he stays ignorant regarding the following stages. Imagine a scenario where the buy should cause you to feel calm however you are more astounded than any other time in recent memory.Fortunately, Netgear has ensured that you get the accommodation you long for. For this sole reason, Netgear has a devoted site curated for you. Everything from arrangement to investigating is made simple on a web interface planned particularly for your openness. This site called mywifiext net or <a href="http://sites.google.com/view/http-mywifiext/">mywifiext</a> nearby for Mac is planned cautiously to oblige each need of a client with regards to Netgear WiFi extenders.

http //ij.start.canon setup

2021-3-16 16:48

That is the one thing upon which I like to agree with you because it has been all about living it in the same style. We are always looking forward to get out of these types of situations which are seen there. Get more guidelines to <a href="https://ijstartcanonx.com/">ij.start.canon</a> setup, configure and troubleshoot your device setup, configure and troubleshoot you printers which resolves your problems in case if you have any queries just check into my websites blogs to resolve your problems. A very high certified Technical assistance post with a knowledgeable information for enough knowledge of digital electronic devices For the ones who are looking for availing the service of the Fund Solutions Provider.

installvipre

2021-3-16 17:10

trendmicro-activate

2021-3-16 17:10

Trendmicro activate for your mac and pc.When you activate trendmicro antivirus, it protects your device from unwanted threats.Below mentioned are the services provided by trendmicro activation https://trendmicro-activate.com/https://trendmicro-activate.com/activate-trend-micro-internet-security/https://trendmicr... href="https://trendmicro-activate.com/">trend micro activation</a><a href="https://trendmicro-activate.com/activate-trend-micro-internet-security/">activate trend micro internet security</a><a href="https://trendmicro-activate.com/install-trend-micro-activation-code/">install trend micro activation code</a><a href="https://trendmicro-activate.com/trend-micro-internet-security-activation/">trend micro internet security activation</a><a href="https://trendmicro-activate.com/trendmicro-com-activate/">trendmicro.com/activate</a>

Mothers Day Quotes

2021-3-17 04:23

Mothers Day Messages Mothers Day Quotes Mothers Day Background Wallpapers

Noida Escorts Agency

2021-3-17 14:47

<a href="http://nishanoidaescorts.com">Noida Escorts Agency</a> one of the best escorts agency who have good collection of <a href="http://nishanoidaescorts.com">call girls in noida</a>. You can meet our <a href="http://nishanoidaescorts.com">escorts in noida</a> at any private place. Contact us now for booking at 09711199012

Noida Escorts Agency

2021-3-17 14:48

Noida Escorts Agency one of the best escorts agency who have good collection of call girls in noida. You can meet our escorts in noida at any private place. Contact us now for booking at 09711199012

sophia

2021-3-17 16:22

Excellent blog here! This is really fascinating informatic article. Thanks for sharing your thoughts. I truly appreciate individuals like you!

Cash app Customer service

2021-3-17 18:12

Cash App handles most of the payment transaction perfectly. Whether you need to send money or receive from your friends, family members, or closed contacts, with Cash App you can make such transactions hassle-freely. And if you face any kind of Cash App problem, worry not, Cash App customer service number is available for you satisfaction. Simple solutions related to all kind of problems and errors are available such as payment failure, accidental transfer, and pending Cash App refund at Cash App support. If you need to talk to Cash App representative, feel free to contact Cash App helpdesk.

Cash app Customer service

2021-3-17 18:13

aol.com/mail

2021-3-17 19:34

For AOL Webmail is a free web-based email service that is provided by AOL mail. You can create an online address book for your important contacts through AOL Email service. To begin with the usage of AOL.

Fix AOL mail login, sign in issues

2021-3-18 14:22

Are you looking for AOL mail? it's provide free to access email, news and videos etc. if you are facing any issues due to access AOL sign in account and want to forgot password or reset password now can visit for basic steps at mail.aol.com and follow the on-screen instruction and use AOL email.General people query:How to fix office setup download/install issues?Having issues on HP printer fixAOL mail login

Xfinity email login

2021-3-18 16:56

If you are facing issues due to Xfinity email login or Comcast email account sign in can be numerous for instance, you have forgotten your password or you are entering the incorrect password or it may be because someone has hacked your account and changed its login details.

Brother support

2021-3-18 18:23

For Brother Printer Control Center gives you quick and easy access to every printer function there is. It only excludes several particular document printing tasks for a productivity app that you currently use. Accessing the Brother Control Center involves clicking the CC4 icon found on the system tray.

newvipre

2021-3-18 21:18

Thanks for this valuable information!https://newvipre.com<a href="https://newvipre.com/">install Vipre on the second computer</a><a href="https://newvipre.com/">install Vipre using product key</a><a href="https://newvipre.com/">install Vipre</a>https://newvipre.com

slot terbaru

2021-3-19 04:06

Woah! I'm really loving the template/theme of this site. It's simple, yet effective. A lot of times it's challenging to get that "perfect balance" between user friendliness and visual appearance.slot online terbaik daftar agen slot 4d nama nama situs judi slot terpercaya

ij.start.canon

2021-3-19 11:50

good for the blog to write our own comments when we done do this thing then we have to find some kind of things into it. the one thing is how it actually works and how to resove any of the problems whether if it is relate to the oink or to the paper and functioning and som other also. when all of this done try to find the new.

dygdfgt

2021-3-19 12:37

<a href= "https://www.fenceabroad.com/perpetual-medical-college.html">University of Perpetual Help System DALTA </a> is the best autonomous and Top ranking medical university in Philippines-Las Pinas. Studying MBBS in Philippines for Indian students, there is no doubt that you are in the right place. <a href="https://www.fenceabroad.com "> Visit us </a> | Low Tuition Fees | Highly Secured Hostels | North and South Indian Foods | Complete End to End Care for Students | Call: +91-88077 44400 https://www.fenceabroad.com/mbbs-admission/mbbs-in-philippines.htmlhttps://www.fenceabroad.com

Yahoo mail not syncing

2021-3-19 13:57

There’re various reasons why the issue of Yahoo mail not syncing occurs. It may be due to the weak internet connection or the server might not be responding properly. There could have been the instance when you may need to check whether the sync option is turned on. By chance, if the issue persists, let us know by getting in touch with our professional team members. Related Blogs – https://www.contactyahoo.us/blog/yahoo-mail-not-working-on-iphone/

分页： 210/436