[squid-users] Squid settings and Option Question from Michael D. Setzer II on 2006-04-07 (squid-users)

From: Michael D. Setzer II <mikes@dont-contact.us>
Date: Sat, 08 Apr 2006 01:26:41 +1000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

My College has a T-1 line that is maxed out most of the time. They also
have some wireless lines connected to 1MB DSL lines and a new Cable
Line that is setup at 4.2MB. I have a Fedora Core 4 machine setup with the
Advnced Linux routing to connect the Cable and Wireless to the machine as
default routes with equal weighting. My test lab is set to use this machine as
the proxy, and I can see the load accessing both the wlan0 and the eth, so
that is working.

The access for regular pages seems slower, but accessing files that get in
the cache seems excellent. Wondering if something in the options might be
causing the problem.

Non Comment lines from the squid.conf

hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
maximum_object_size 32768 KB
maximum_object_size_in_memory 128 KB
cache_dir ufs /var/spool/squid 10000 16 256
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
acl our_networks src 202.128.71.0/24 202.128.72.0/24 202.128.73.0/24
202.128.79.0/24 192.168.201.0/24 192.168.2.0/24 192.168.3.0/24
192.168.4.0/24 192.168.5.0/24 192.168.6.0/24 192.168.7.0/24
192.168.8.0/24 202.131.0.0/16
http_access allow our_networks
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all
coredump_dir /var/spool/squid

The squid -v is the default for the Fedora Core 4.

Squid Cache: Version 2.5.STABLE13
configure options: --build=i386-redhat-linux --host=i386-redhat-linux --
target=i386-redhat-linux-gnu --program-prefix= --prefix=/usr --exec-
prefix=/usr --bindir=/usr/bin --sbindir=/usr/sbin --sysconfdir=/etc --
datadir=/usr/share --includedir=/usr/include --libdir=/usr/lib --
libexecdir=/usr/libexec
--localstatedir=/var --sharedstatedir=/usr/com --mandir=/usr/share/man --
infodir=/usr/share/info --exec_prefix=/usr --bindir=/usr/sbin --
libexecdir=/usr/lib/squid --localstatedir=/var --sysconfdir=/etc/squid --enable-
poll --enable-snmp --enable-removal-policies=heap,lru --enable-
storeio=aufs,coss,
diskd,null,ufs --enable-ssl --with-openssl=/usr/kerberos --enable-delay-pools
- --enable-linux-netfilter --with-pthreads --enable-ntlm-auth-
helpers=SMB,winbind --enable-external-acl-
helpers=ip_user,ldap_group,unix_group,wbinfo_group,winbind_group --
enable-auth=basic,ntlm --with-winbind-auth-challenge
--enable-useragent-log --enable-referer-log --disable-dependency-tracking -
- -enable-cachemgr-hostname=localhost --disable-ident-lookups --enable-
truncate --enable-underscores --datadir=/usr/share --enable-basic-auth-
helpers=LDAP,MSNT,NCSA,PAM,SMB,YP,getpwnam,multi-domain-
NTLM,SASL,winbind

On another machine I downloaded the latest squid source, and built it with
the above options, but changing the poll and select to disable and epoll
enabled as was recommended in another message. The compile seemed to
work fine, but after doing the make install it had problems running. So,
something seemed different in the config. So, it appears other changes,
since it was trying to access squid.conf in chroot instead of
/etc/squid/squid.conf.

Thanks.

+----------------------------------------------------------+
  Michael D. Setzer II - Computer Science Instructor
  Guam Community College Computer Center
  mailto:mikes@kuentos.guam.net
  mailto:msetzerii@gmail.com
  http://www.guam.net/home/mikes
  Guam - Where America's Day Begins
+----------------------------------------------------------+

http://setiathome.berkeley.edu
Number of Seti Units Returned: 19,471
Processing time: 32 years, 290 days, 12 hours, 58 minutes
(Total Hours: 287,489)

BOINC Seti@Home Total Credits 672424.413298

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8 -- QDPGP 2.61c
Comment: http://community.wow.net/grt/qdpgp.html

iQA/AwUBRDX4EizGQcr/2AKZEQJqPwCgo8TytbaLg7lYEHc/h8Z4iHFJJmUAoL6S
VSWnk38kQpVFL9odegBmZ7yH
=qbkE
-----END PGP SIGNATURE-----
Received on Fri Apr 07 2006 - 09:31:09 MDT

This archive was generated by hypermail pre-2.1.9 : Mon May 01 2006 - 12:00:02 MDT