Reverse Proxys

Owned by Carsten Rehberg
Feb 06, 2016
1 min read

Fakten zu Reverse Proxys

Varnish

  • beliebter, leistungsfähiger Reverse Proxy
  • wird im Wesentlichen mit drei Dateien (sysctl.conf, default.vcl, varnish) konfiguriert

Standardkonfigurationsmöglichkeit

/etc/sysctl.conf
net.core.somaxconn=2048
net.core.netdev_max_backlog=300
net.netfilter.nf_conntrack_max=131072
/etc/varnish/default.vcl
backend squid1 {
.host="10.10.42.50";
.port="80";
}

backend squid2 {
.host=10.10.42.65";
.port="80";
}

director default round-robin {
   {.backend = squid1; }
   {.backend = squid2; }
}

sub vcl_recv {
   if (req.http.Cookie) {
      unset req.http.Cookie;
   }
   set req.backend = default;
}
/etc/default/varnish
NFILES=131072
MEMLOCK=82000
INSTANCE=$(uname -n)

VARNISH_VCL_CONF=/etc/varnish/default.vcl
VARNISH_LISTEN_ADDRESS=
VARNISH_LISTEN_PORT=80
VARNISH_ADMIN_LISTEN_ADDRESS=127.0.0.1
VARNISH_ADMIN_LISTEN_PORT=6082
VARNISH_MIN_THREADS=1
VARNISH_MAX_THREADS=1000
VARNISH_THREAD_TIMEOUT=120
VARNISH_STORAGE_FILE=/var/lib/varnish/$INSTANCE/varnish_storage.bin
VARNISH_STORAGE_SIZE=250G
VARNISH_STORAGE="file,${VARNISH_STORAGE_FILE},${VARNISH_STORAGE_SIZE}"
VARNISH_TTL=120

DAEMON_OPTS=" -a ${VARNISH_LISTEN_ADDRESS}:${VARNISH_LISTEN_PORT}\
-f ${VARNISH_VCL_CONF}\
-T ${VARNISH_ADMIN_LISTEN_ADDRESS}:${VARNISH_ADMIN_LISTEN_PORT}\
-t ${VARNISH_TTL} \
-w ${VARNISH_MIN_THREADS},${VARNISH_MAX_THREADS},${VARNISH_THREAD_TIMEOUT}\
-p lru_interval=1800 -h classic,500009 \
-s ${VARNISH_STORAGE}"

Weitere Informationen zu Reverse Proxys

Name

Link

Varnish

http://varnish.projects.linpro.no

Squid

 

Nginx

http://nginx.net

Perlbal

http://www.danga.com/perlbal

Memcached

http://memcached.org

Yahoo Traffic Server

http://tech.yahoo.com/news/infoworld/20091103/tc_infoworld/98627

Apache Inkubator für den YTS

http://wiki.apache.org/incubator/TrafficServerProposal

Danga

http://www.danga.com

Live Journal

http://www.livejournal.com

Rambler

http://www.rambler.ru

Spin

http://www.spin.de

Bryan Migliorsi, "Reverse Proxy Performance - Varnish vs. Squid", Parts 1 and 2

http://deserialized.com/reverse-proxy-performance-varnish-vs-squid-part-1

Thttpd

http://acme.com/software/thttpd