Re: [squid-users] Need your expert help on SquidNT - thank you very much in advance

From: Guido Serassio <[email protected]>
Date: Thu, 29 Aug 2002 16:43:27 +0200

Hi,

Il 11.59 29/08/2002 Marcus-Hong Yu ha scritto:
>hey you guys, I know that you are not obligated to help me solve my
>problems. I have gone through the internet and did not manage to find
>anything that can solve my problem, My Squidnt is running very slowly and
>it seems that only one thread is working instead of the default 4.

This is correct. Squid, and SquidNT too, is a single thread application. On
Windows You can see 4 threads because it runs as a service, and this is the
normal behaviour. Only one thread is the real Squid Application.

>I have a 2 tier proxy - one internal proxy that points to a parent cache.
>The parent is on the DMZ that gets connection to the internet. Both are
>Pentium 4 dual cpus machine with 512M ram running Win2K sp2. Below please
>find my config files for both the 2 proxies. Your expertise is very very
>much appreciated.
>My question is how can I improve performance ?

Usually slowness problems may be related to DNS resolution problems.
You can try to use ICP between Your proxies.

>How can I use more thread
>instead of only one now?

You can't.
You can use awin32 Async I/O fs type: it use multithreading for Squid disk
I/O.

Regards

Guido

>Internal proxy
>------------------
>set IP1=10.156.0.0
>set IP2=10.156.255.255
>set NETMASK=255.255.0.0
>set HTTPPORT=8080
>
>set LANGUAGE=english
>::----------------do not change!---------------------------------
>set ACCESSNAME=NAME
>call %WINDIR%\setparam.cmd
>set CONFFILE=%APPDIR%\etc\squid.conf
>::----------------do not change!!---------------------------------
>echo http_port %HTTPPORT% >> %CONFFILE%
>echo cache_peer 203.239.103.228 parent 8080 0 no-query
>proxy-only >> %CONFFILE%
>echo no_cache deny all >> %CONFFILE%
>echo no_cache deny QUERY >> %CONFFILE%
>echo cache_mem 196 MB >> %CONFFILE%
>echo cache_swap_low 90 >> %CONFFILE%
>echo cache_swap_high 95 >> %CONFFILE%
>echo maximum_object_size 128 KB >> %CONFFILE%
>echo cache_dir ufs d:/squid/cache 1000 16 256 >> %CONFFILE%
>echo cache_access_log d:/squid/log/access.log >> %CONFFILE%
>echo cache_log d:/squid/log/cache.log >> %CONFFILE%
>echo cache_store_log none >> %CONFFILE%
>echo log_fqdn off >> %CONFFILE%
>echo log_mime_hdrs off >> %CONFFILE%
>echo mime_table c:/squid/etc/mime.conf >> %CONFFILE%
>echo pid_filename c:/squid/log/squid.pid >> %CONFFILE%
>echo acl all src 0.0.0.0/0.0.0.0 >> %CONFFILE%
>echo acl manager proto cache_object >> %CONFFILE%
>echo acl localhost src 127.0.0.1/255.255.255.255 >> %CONFFILE%
>echo acl SSL_ports port 443 563 >> %CONFFILE%
>echo acl Safe_ports port 80 21 443 563 70 210 1025-65535 >> %CONFFILE%
>echo acl Safe_ports port 280 echo # http-mgmt >> %CONFFILE%
>echo acl Safe_ports port 488 echo # gss-http >> %CONFFILE%
>echo acl Safe_ports port 591 echo # filemaker >> %CONFFILE%
>echo acl Safe_ports port 777 echo # multiling http >> %CONFFILE%
>echo acl CONNECT method CONNECT >> %CONFFILE%
>echo acl %ACCESSNAME% src %IP1%-%IP2%/%NETMASK% >> %CONFFILE%
>echo http_access allow all >> %CONFFILE%
>echo http_access allow manager localhost >> %CONFFILE%
>echo http_access deny manager >> %CONFFILE%
>echo http_access deny !Safe_ports >> %CONFFILE%
>echo http_access deny CONNECT !SSL_ports >> %CONFFILE%
>echo http_access allow %ACCESSNAME% >> %CONFFILE%
>echo http_access deny all >> %CONFFILE%
>echo icp_access allow all >> %CONFFILE%
>echo miss_access allow all >> %CONFFILE%
>echo cache_mgr %WEBMASTER%
>echo visible_hostname Squid_by_BOFI >> %CONFFILE%
>echo unique_hostname Squid_by_BOFI >> %CONFFILE%
>echo acl local-servers dstdomain -i "c:\squid\intranet.txt" >>
>%CONFFILE%
>echo acl all src 0.0.0.0/0.0.0.0 >> %CONFFILE%
>echo never_direct deny local-servers >> %CONFFILE%
>echo never_direct allow all >> %CONFFILE%
>echo icon_directory %APPDIR%/etc/icons >> %CONFFILE%
>echo error_directory %APPDIR%/errors/%LANGUAGE% >> %CONFFILE%
>exit
>
>EXTERNAL PROXY
>:# external proxy
>set IP1=203.239.103.0
>set IP2=203.239.103.255::with Netmask
>set NETMASK=255.255.255.0
>set LANGUAGE=english
>set ACCESSNAME=NAME
>call %WINDIR%\setparam.cmd
>set CONFFILE=%APPDIR%\etc\squid.conf
>::----------------do not change!!---------------------------------
>echo http_port 8080 >> %CONFFILE%
>::%HTTPPORT% >> %CONFFILE%
>echo cache_peer 10.156.11.33 sibling 8080 0 no-query proxy-only
> >> %CONFFILE%
>echo no_cache deny all >> %CONFFILE%
>echo no_cache deny QUERY >> %CONFFILE%
>echo cache_mem 192 MB >> %CONFFILE%
>echo cache_swap_low 90 >> %CONFFILE%
>echo cache_swap_high 95 >> %CONFFILE%
>echo maximum_object_size 128 KB >> %CONFFILE%
>echo cache_dir ufs c:/squid/cache 1000 16 256 >> %CONFFILE%
>echo log_fqdn off >> %CONFFILE%
>echo mime_table c:/squid/etc/mime.conf >> %CONFFILE%
>echo request_body_max_size 6 MB >> %CONFFILE%
>echo acl all src 0.0.0.0/0.0.0.0 >> %CONFFILE%
>echo acl localhost src 127.0.0.1/255.255.255.255 >> %CONFFILE%
>echo acl SSL_ports port 443 563 >> %CONFFILE%
>echo acl Safe_ports port 80 21 443 563 70 210 1025-65535 >> %CONFFILE%
>echo acl Safe_ports port 280 echo # http-mgmt >> %CONFFILE%
>echo acl Safe_ports port 488 echo # gss-http >> %CONFFILE%
>echo acl Safe_ports port 591 echo # filemaker >> %CONFFILE%
>echo acl Safe_ports port 777 echo # multiling http >> %CONFFILE%
>echo acl CONNECT method CONNECT >> %CONFFILE%
>echo #acl %ACCESSNAME% src %IP1%-%IP2%/%NETMASK% >> %CONFFILE%
>echo http_access deny !Safe_ports >> %CONFFILE%
>echo http_access deny CONNECT !SSL_ports >> %CONFFILE%
>echo http_access allow all >> %CONFFILE%
>echo icp_access allow all >> %CONFFILE%
>echo miss_access allow all >> %CONFFILE%
>echo always_direct allow all >> %CONFFILE%
>echo error_directory %APPDIR%/errors/%LANGUAGE% >> %CONFFILE%
>exit
>Thank you very very much
>
>Marcus
>yuhm@basf-sea.com.sg
>
>
><Disclaimer> :
>This e-mail is confidential. If you are not the intended recipient you
>must not disclose, distribute or use the information in it as this could
>be a breach of confidentiality. If you have received this message in
>error, please advise us immediately by return e-mail and delete the
>document. The address from which this message has been sent is
>strictly for business mail only and the company reserves the right to
>monitor the contents of communications and take action where and
>when it is deemed necessary. Thank you for your co-operation.

-
=======================================================
Serassio Guido
Via Albenga, 11/4 10134 - Torino - ITALY
E-mail: guido.serassio@serassio.it
WWW: http://www.serassio.it
Received on Thu Aug 29 2002 - 08:43:31 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:09:53 MST