Squid lento quase parando...

**CEP** · 08-12-2006, 10:08

Pessoal é o seguinte;
Levantei um server FreeBSD 5.4 e qnd o trafego esta passando direto, sem proxy, a navegação fica blz. Mas qnd subo o squid ai a navegação fica lenta quase parando.... Não sei o q pode estar ocasionando esse tipo de problema, so sei q estou sem squid no server a varios dias. Segue abaixo meu squid.conf para os especialistas darem uma olhada e se for possivel me dar uma força para resolver esse problema, pq servidor sem proxy...affff aja link.....

##
## Configuracoes de rede
##
############################################

http_port 172.16.0.1:3128
http_port 127.0.0.1:3128

##
## Configuracoes de memoria e cache
##
############################################

cache_mem 128 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 32 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 512
cache_replacement_policy lru

##
## Definicao dos arquivos e log
##
##########################################

cache_dir ufs /usr/squid/cache 150000 16 256
cache_access_log /usr/squid/log/access.log
cache_log /usr/squid/log/cache.log
cache_store_log /usr/squid/log/store.log
cache_store_log none

emulate_httpd_log off
log_ip_on_direct on
mime_table /usr/local/etc/squid/mime.conf
log_mime_hdrs off
pid_filename /usr/squid/run/squid.pid
debug_options ALL,1
log_fqdn off
client_netmask 255.255.255.255

ftp_user [email protected]
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
ftp_telnet_protocol on

# diskd_program /usr/lib/squid/diskd
# unlinkd_program /usr/lib/squid/unlinkd

auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours

request_header_max_size 10 KB
request_body_max_size 0 KB

##
## Padrao de atualizacao do cache.
##
#########################################################################

refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320

##
## Listas de controle de acesso - ACLs
##
############################################

acl QUERY urlpath_regex cgi-bin \?
acl manager proto cache_objectacl cnt src 172.16.0.0/255.255.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl conecta src 172.16.0.0/255.255.0.0
acl GOVERNO dstdomain .gov.br
acl ALL src 0.0.0.0/0.0.0.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

no_cache deny QUERY

http_access allow cnt
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access allow ALL
http_access deny ALL
http_reply_access allow all

icp_access deny all
reply_body_max_size 0 allow all
cache_mgr admincache

visible_hostname servidor1.serv.com.br

cache_effective_user squid
cache_effective_group squid

logfile_rotate 0
tcp_recv_bufsize 0 bytes

httpd_accel_port 80
httpd_accel_host virtual
httpd_accel_uses_host_header on
httpd_accel_with_proxy on

Esse server é um P-4 2.4 ghz com 1 gb de ram e 80 gb de hd ide e é um servidor de http para aproximadamente 150 clientes. Nele so roda FreeBSD+Squid. Agradeço a ajuda de todos e aguardo respostas.

**xstefanox** · 08-12-2006, 12:07

Postado originalmente por CEP

Pessoal é o seguinte;
Levantei um server FreeBSD 5.4 e qnd o trafego esta passando direto, sem proxy, a navegação fica blz. Mas qnd subo o squid ai a navegação fica lenta quase parando.... Não sei o q pode estar ocasionando esse tipo de problema, so sei q estou sem squid no server a varios dias. Segue abaixo meu squid.conf para os especialistas darem uma olhada e se for possivel me dar uma força para resolver esse problema, pq servidor sem proxy...affff aja link.....

##
## Configuracoes de rede
##
############################################

http_port 172.16.0.1:3128
http_port 127.0.0.1:3128 Você não precisa disso, pode tirar

##
## Configuracoes de memoria e cache
##
############################################

cache_mem 128 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 32 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 512
cache_replacement_policy lru

##
## Definicao dos arquivos e log
##
##########################################

cache_dir ufs /usr/squid/cache 150000 16 256 Am... não acha que 150 GB não é um tamanho um POUCO exagerado?
cache_access_log /usr/squid/log/access.log
cache_log /usr/squid/log/cache.log
cache_store_log /usr/squid/log/store.log
cache_store_log none

emulate_httpd_log off
log_ip_on_direct on
mime_table /usr/local/etc/squid/mime.conf
log_mime_hdrs off
pid_filename /usr/squid/run/squid.pid
debug_options ALL,1
log_fqdn off
client_netmask 255.255.255.255

ftp_user [email protected]
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
ftp_telnet_protocol on

# diskd_program /usr/lib/squid/diskd
# unlinkd_program /usr/lib/squid/unlinkd

auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours

request_header_max_size 10 KB
request_body_max_size 0 KB

##
## Padrao de atualizacao do cache.
##
#########################################################################

refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320

##
## Listas de controle de acesso - ACLs
##
############################################

acl QUERY urlpath_regex cgi-bin \?
acl manager proto cache_objectacl cnt src 172.16.0.0/255.255.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl conecta src 172.16.0.0/255.255.0.0
acl GOVERNO dstdomain .gov.br
acl ALL src 0.0.0.0/0.0.0.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

no_cache deny QUERY

http_access allow cnt
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access allow ALL
http_access deny ALL
http_reply_access allow all

icp_access deny all
reply_body_max_size 0 allow all
cache_mgr admincache

visible_hostname servidor1.serv.com.br

cache_effective_user squid
cache_effective_group squid

logfile_rotate 0
tcp_recv_bufsize 0 bytes

httpd_accel_port 80
httpd_accel_host virtual
httpd_accel_uses_host_header on
httpd_accel_with_proxy on

Esse server é um P-4 2.4 ghz com 1 gb de ram e 80 gb de hd ide e é um servidor de http para aproximadamente 150 clientes. Nele so roda FreeBSD+Squid. Agradeço a ajuda de todos e aguardo respostas.

Marquei algumas coisas sem nexo no seu squid.conf.

**etherlinkii** · 16-02-2007, 20:15

Passe na sua configuracoes de firewall tambem que ajuda e muito o redireciomaneto de porta.

Squid lento quase parando...

Ferramentas de Tópicos

Squid lento quase parando...

squid