netbsd-users: Re: Squid vs. WWWOffle vs. ...?

Subject: Re: Squid vs. WWWOffle vs. ...?
To: Benjamin Walkenhorst <krylon@gmx.net>
From: David Brownlee <abs@NetBSD.org>
List: netbsd-users
Date: 10/12/2004 16:35:50
On Tue, 12 Oct 2004, Benjamin Walkenhorst wrote:

> Hello everyone,
>
> I think about setting up a caching proxy on my local network.
> I know of two free proxies available for BSD, Squid and WWWOffle.
>
> Are there any other solutions I should consider?
> What are the pros and cons of Squid and WWWOffle? Squid, I hear, is hard to 
> configure.
>
> Any remarks?
> Does anyone use one of these solutions and can tell about good or bad 
> experiences?
>
> It would also be nice - but not neccessary - to tell the proxy for individual 
> pages/servers how long to keep items in cache (so news pages are refreshed 
> more often). Or to tell the proxy to refresh certain sites in cache 
> automatically in given intervals and server them entirely from cache...
> OTOH I don't want to spend endless hours setting this thing up - I mainly 
> want a web cache.

 	For basic setup I found squid reasonably easy - just install
 	from pkgsrc, and run.

 	I've subsequently done some very basic tuning and set it as a
 	transparent proxy for all outgoing port 80 traffic: the
 	httpd_accel options below, plus a the following in ipnat.conf:
 	rdr fxp0 0.0.0.0/0 port 80   -> 127.0.0.1 port 3128 tcp

@@ -478,6 +478,7 @@
  #
  #Default:
  # cache_mem 8 MB
+cache_mem 128 MB

  #  TAG: cache_swap_low	(percent, 0-100)
  #  TAG: cache_swap_high	(percent, 0-100)
@@ -511,6 +512,7 @@
  #
  #Default:
  # maximum_object_size 4096 KB
+maximum_object_size 131076 KB

  #  TAG: minimum_object_size	(bytes)
  #	Objects smaller than this size will NOT be saved on disk.  The
@@ -528,6 +530,7 @@
  #
  #Default:
  # maximum_object_size_in_memory 8 KB
+maximum_object_size_in_memory 32 KB

  #  TAG: ipcache_size	(number of entries)
  #  TAG: ipcache_low	(percent)
@@ -693,6 +696,7 @@
  #
  #Default:
  # cache_dir ufs /var/squid/cache 100 16 256
+cache_dir ufs /var/squid/cache 6144 16 256

  #  TAG: cache_access_log
  #	Logs the client request activity.  Contains an entry for
@@ -700,6 +704,7 @@
  #
  #Default:
  # cache_access_log /var/squid/logs/access.log
+cache_access_log none

  #  TAG: cache_log
  #	Cache logging file. This is where general information about
@@ -718,6 +723,7 @@
  #
  #Default:
  # cache_store_log /var/squid/logs/store.log
+cache_store_log none

  #  TAG: cache_swap_log
  #	Location for the cache "swap.state" file. This log file holds
@@ -1872,6 +1878,8 @@
  # be allowed
  #acl our_networks src 192.168.1.0/24 192.168.2.0/24
  #http_access allow our_networks
+acl our_networks src 192.168.0.0/16
+http_access allow our_networks

  # And finally deny all other access to this proxy
  http_access deny all
@@ -2173,6 +2181,9 @@
  #
  #Default:
  # httpd_accel_port 80
+httpd_accel_host		virtual
+httpd_accel_with_proxy		on
+httpd_accel_uses_host_header	on

  #  TAG: httpd_accel_single_host	on|off
  #	If you are running Squid as an accelerator and have a single backend
-- 
 		David/absolute       -- www.NetBSD.org: No hype required --