Varnish IntroductionVarnish is a high-performance and open-source reverse proxy server and HTTP Accelerator, with a new software architecture, and now the hardware system closely, compared with the traditional squid, Varnish with higher performance, faster, more convenient management and many other advantages, Many large websites are beginning to try to replace
By simply using the openvpn proxy, all traffic on the local machine will go through the Remote VPN Server. However, when we roll over the wall, it is generally the traffic webpage, that is, as long as the http traffic goes through the VPN. Openvpn combined with squid's http forward proxy can provide the wall-over function for
fact, there are simpler implementation methods. We only need to define one source and one target, and then allow the source to only access the target. All the others can be disabled.
# Define the terminal query machine (only some sites can be accessed)
ACL query_terminal SRC 192.168.200.96/28
# Define the external web service IP address of the organization
ACL school_ips DST 218.6.165.8 218.6.165.7
# Only allow querying the external IP address of the
*************#no_cache Deny QueryString#不对符合QueryString的ACL内容进行缓冲#*********** Performance Optimization Configuration *************Maximum_object_size 320010 KB#大于此容量的对象将不会被保存在磁盘上, the default size is 4M, if the squid server is used to buffer large files such as Flash, it is recommended to make this value larger. Otherwise too large files will need to be retrieved again after the next rebootmaximum_object_s
Configuring squid proxy for http and rsync is too bad. In what time, the CPU is 4, and the memory is only 1.5 gb ddr. Fortunately, there is USB. It's no fun to install gentoo on a virtual machine. The CPU does not support VT-x and is 32-bit. ubuntu running 32-bit virtualbox is almost slow. Scan the IDC network one day and find an available server, Zhiqiang E7520,
.edu.cnCache_peer_domain X !. Edu.cn
Since there are selection rules for the target domain, are there any selection rules for other situations?Still find the powerful access control rule cache_peer_access in Squid. conf. Default (in fact, everything in this big and messy squid. conf. Default is taught to us.Should be well read at the beginning)
For example, select an access control list:For requests from 1
Server Load Balancing Scheme with a large number of users
I. Preface
Ii. Compilation and Installation
Iii. Install MySQL and memcache
4. install Apache, PHP, eaccelerator, and PHP-memcache
5. Install squid
Vi. Postscript
I. Preface and preparations
Currently, the lamp development model is the first choice for web development. How to build an efficient, reliable
be smaller. The corresponding command is:
Tar xvfj squid-2.5.STABLE.tar.bz2
Then, enter the corresponding directory to configure and compile the source code. The command is as follows:
Cd squid-2.5.STABLE2
The configure command has many options. If you are not clear about the options, use "-help" to view the options. Generally, the following options are used:
-- Prefix =/
Http_port 8080
The Service port of the squid server is configured using the http_port configuration item. The default value is 3128. To facilitate user use, you can change it to 8080 or provide services on multiple ports. Http_port configuration items support providing proxy services on multiple ports
Find the following line:
Cache_mem 8 MB
Modify it:
Cache_mem
First, the basic principle
1, the public network in the client
Client
200.168.10.2
2. Squid Reverse proxy Server
Eth0
200.168.10.2
Eth1
192.168.10.1
3. Internal Web server
Web
192.168.10.2
Ii. Modification of squid.con
Set up this server, so that the client through the setting Proxy server squid to browse the Web page, through the proxy server SOCKS5 to use QQ, MSN, Securities and other services, the
compressed in bz2 may be smaller in size, and the corresponding commands are:
Tar xvfj squid-2.5.stable.tar.bz2
Then, enter the appropriate directory to configure and compile the source code as follows:
CD Squid-2.5.stable2
The configuration command configure has many options, and if it is not clear, you can first view it with "-help." In general, the following options are used:
--prefix=/
multiplexing I/O: In order to support a large number of connections, many Web servers use this structure, in the reuse fabric, while monitoring all connection activities, when the connection state changes (with data, or errors), the connection is assigned to the thread processing, after processing is completed, the connection is returned to the list of connections, Threads or processes are not bound on idle connections.Multiplexed multi-threaded
Set up this server, so that the client through the setting Proxy server squid to browse the Web page, through the proxy server SOCKS5 to use QQ, MSN, Securities and other services, the
ServerThe bigUserThe load of the quantitySchemeFirst, the prefaceTwoCompileInstallationThird, install mySql, MemcacheFour, install Apache, PHP, Eaccelerator,Php-memcacheV. Installation of SquidSix, PostScriptFirst, preface, preparation workCurrently, LAMPDevelopmentModeis the first choice for web development, how to build an efficient, reliable, stable webServicehas always been a hot topic, this article is an attempt at this topic.We use theArchitectu
, so that the speed of access slows down, but the second visitors and later visitors need the information, proxy do not want to remote server request, The data in the cache is sent directly to the subsequent requester, which reduces the traffic to the remote server, and the transmission is faster because the proxy is l
Set up this server so that the client can view the web page by setting the squid of the proxy server, and use QQ, MSN, securities, and other services through SOCKS5 of the proxy server.
first of all, what is transparent proxy to introduce? transparent proxy means that the client does not need to know the existence of a proxy server, it changes your request fields (messages), and transmits the real IP, more for the NAT forwarding of the router. The principle of transparent
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.