[squid-users] UDP_HIT/000 after TCP_MISS/504

From: Sylvio Cesar <sylviotamorim_at_gmail.com>
Date: Fri, 8 Feb 2013 08:51:46 -0200

Hi all,

I have a network with 3 siblings squid, being:

HOST 01 - SLES 11 (10.22.152.1)
squid version 2.7.STABLE5

squid.conf:

acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8
acl localnet src 172.16.0.0/12
acl localnet src 192.168.0.0/16
acl internal-servers dstdomain .xx.com.br .xyv.com.br
acl internal-servers-ip dst 172.16.0.0/12 192.168.0.0/16 10.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
cache_peer globalsrv.xx.com.br parent 80 0 default login=PASS
cache_peer_access globalsrv.xx.com.br deny internal-servers
cache_peer_access globalsrv.xx.com.br deny internal-servers-ip
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl static_content urlpath_regex -i \.(jpg|gif|png|css|js|axd)
cache allow static_content
acl googlevideo dstdomain .googlevideo.com
cache allow googlevideo
acl youtube dstdomain .youtube.com
cache allow youtube
acl xx dstdomain .xx.com.br
cache allow xx
access_log /var/log/squid/access.log squid
http_access allow manager localhost static_content
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access allow localhost
http_access deny all
icp_access allow localnet
icp_access deny all
http_port 3128
cache_mem 128 MB
maximum_object_size_in_memory 128 KB
cache_dir ufs /dados/squid 5120 16 256
minimum_object_size 0 KB
maximum_object_size 131072 KB
cache_swap_low 90
cache_swap_high 95
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log

refresh_pattern .jpg 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .gif 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .png 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .MOV 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .mov 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .flv 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .FLV 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .swf 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .JPG 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .css 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .js 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .axd 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern ^ftp: 1440 20 10080
refresh_pattern ^gopher: 1440 0 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 ignore-reload
refresh_pattern . 0 50% 525600 ignore-reload
never_direct allow all !internal-servers !internal-servers-ip
visible_hostname host01
icp_port 3130
dns_testnames xx.com.br
pipeline_prefetch on
forward_timeout 5 minutes
connect_timeout 3 minutes
peer_connect_timeout 50 seconds
read_timeout 20 minutes
request_timeout 10 minutes
persistent_request_timeout 3 minutes
client_lifetime 1 days
pconn_timeout 2 minute
icp_query_timeout 5000
maximum_icp_query_timeout 5000
error_directory /usr/share/squid/errors/Portuguese
coredump_dir /var/log/squid

HOST 02 - OpenSuSe 11.1 (10.22.152.180)
squid version 3.0.STABLE10

squid.conf:

acl all src
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8
acl localnet src 172.16.0.0/12
acl localnet src 192.168.0.0/16
acl internal-servers dstdomain .xx.com.br .xyv.com.br
acl internal-servers-ip dst 172.16.0.0/12 192.168.0.0/16 10.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
cache_peer 10.22.152.1 sibling 3128 3130
cache_peer 10.22.152.171 sibling 3128 3130
cache_peer globalsrv.xx.com.br parent 80 0 default login=PASS
cache_peer_access globalsrv.xx.com.br deny internal-servers
cache_peer_access globalsrv.xx.com.br deny internal-servers-ip
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl static_content urlpath_regex -i \.(jpg|gif|png|css|js|axd)
cache allow static_content
acl googlevideo dstdomain .googlevideo.com
cache allow googlevideo
acl youtube dstdomain .youtube.com
cache allow youtube
acl xx dstdomain .xx.com.br
cache allow xx
access_log /var/log/squid/access.log squid
http_access allow manager localhost static_content
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access allow localhost
http_access deny all
icp_access allow localnet
icp_access deny all
http_port 3128
cache_mem 128 MB
maximum_object_size_in_memory 128 KB
cache_dir ufs /var/cache/squid 5120 16 256
minimum_object_size 0 KB
maximum_object_size 131072 KB
cache_swap_low 90
cache_swap_high 95
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log

refresh_pattern .jpg 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .gif 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .png 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .MOV 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .mov 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .flv 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .FLV 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .swf 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .JPG 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .css 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .js 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .axd 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern ^ftp: 1440 20 10080
refresh_pattern ^gopher: 1440 0 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 ignore-reload
refresh_pattern . 0 50% 525600 ignore-reload
never_direct allow all !internal-servers !internal-servers-ip
visible_hostname host02
icp_port 3130
dns_testnames xx.com.br
pipeline_prefetch on
forward_timeout 5 minutes
connect_timeout 3 minutes
peer_connect_timeout 50 seconds
read_timeout 20 minutes
request_timeout 10 minutes
persistent_request_timeout 3 minutes
client_lifetime 1 days
pconn_timeout 2 minute
icp_query_timeout 5000
maximum_icp_query_timeout 5000
error_directory /usr/share/squid/errors/Portuguese
coredump_dir /var/log/squid

HOST 03 - OpenSuSe 11.1 (10.22.152.171)
squid version 3.0.STABLE10

squid.conf:

acl all src
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8
acl localnet src 172.16.0.0/12
acl localnet src 192.168.0.0/16
acl internal-servers dstdomain .xx.com.br .xyv.com.br
acl internal-servers-ip dst 172.16.0.0/12 192.168.0.0/16 10.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
cache_peer 10.22.152.1 sibling 3128 3130
cache_peer 10.22.152.180 sibling 3128 3130
cache_peer globalsrv.xx.com.br parent 80 0 default login=PASS
cache_peer_access globalsrv.xx.com.br deny internal-servers
cache_peer_access globalsrv.xx.com.br deny internal-servers-ip
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl static_content urlpath_regex -i \.(jpg|gif|png|css|js|axd)
cache allow static_content
acl googlevideo dstdomain .googlevideo.com
cache allow googlevideo
acl youtube dstdomain .youtube.com
cache allow youtube
acl xx dstdomain .xx.com.br
cache allow xx
access_log /var/log/squid/access.log squid
http_access allow manager localhost static_content
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access allow localhost
http_access deny all
icp_access allow localnet
icp_access deny all
http_port 3128
cache_mem 128 MB
maximum_object_size_in_memory 128 KB
cache_dir ufs /var/cache/squid 5120 16 256
minimum_object_size 0 KB
maximum_object_size 131072 KB
cache_swap_low 90
cache_swap_high 95
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log

refresh_pattern .jpg 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .gif 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .png 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .MOV 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .mov 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .flv 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .FLV 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .swf 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .JPG 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .css 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .js 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern .axd 14400 50% 18000 override-expire override-lastmod
reload-into-ims ignore-reload ignore-no-cache ignore-private
ignore-auth
refresh_pattern ^ftp: 1440 20 10080
refresh_pattern ^gopher: 1440 0 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 ignore-reload
refresh_pattern . 0 50% 525600 ignore-reload
never_direct allow all !internal-servers !internal-servers-ip
visible_hostname host03
icp_port 3130
dns_testnames xx.com.br
pipeline_prefetch on
forward_timeout 5 minutes
connect_timeout 3 minutes
peer_connect_timeout 50 seconds
read_timeout 20 minutes
request_timeout 10 minutes
persistent_request_timeout 3 minutes
client_lifetime 1 days
pconn_timeout 2 minute
icp_query_timeout 5000
maximum_icp_query_timeout 5000
error_directory /usr/share/squid/errors/Portuguese
coredump_dir /var/log/squid

Sometimes I see the log host01, messages like:

0 10.22.152.171 UDP_HIT/000 79 ICP_QUERY
http://intranet.xx.com.br/video/video01.flv - NONE/- -
1360240846.373 1 10.22.152.171 TCP_MISS/504 1605 GET
http://intranet.xx.com.br/video/video01.flv

these messages sometimes appear also in siblings (host02 and host03)

When this happens, the siblings is going to get a new copy of the object

--
Att,
Sylvio C�sar,
LPIC1, LPIC2, RHCT, RHCE, NCLA, FreeBSD Committer.
----
Se v�s estiverdes em mim, e as minhas palavras estiverem em v�s, pedireis
tudo o que quiserdes, e vos ser� feito. Jo�o 15:7
Received on Fri Feb 08 2013 - 10:52:21 MST

This archive was generated by hypermail 2.2.0 : Mon Feb 11 2013 - 12:00:26 MST