Subject: Re: Squid vs. WWWOffle vs. ...?
To: Benjamin Walkenhorst <firstname.lastname@example.org>
From: David Brownlee <abs@NetBSD.org>
Date: 10/12/2004 16:35:50
On Tue, 12 Oct 2004, Benjamin Walkenhorst wrote:
> Hello everyone,
> I think about setting up a caching proxy on my local network.
> I know of two free proxies available for BSD, Squid and WWWOffle.
> Are there any other solutions I should consider?
> What are the pros and cons of Squid and WWWOffle? Squid, I hear, is hard to
> Any remarks?
> Does anyone use one of these solutions and can tell about good or bad
> It would also be nice - but not neccessary - to tell the proxy for individual
> pages/servers how long to keep items in cache (so news pages are refreshed
> more often). Or to tell the proxy to refresh certain sites in cache
> automatically in given intervals and server them entirely from cache...
> OTOH I don't want to spend endless hours setting this thing up - I mainly
> want a web cache.
For basic setup I found squid reasonably easy - just install
from pkgsrc, and run.
I've subsequently done some very basic tuning and set it as a
transparent proxy for all outgoing port 80 traffic: the
httpd_accel options below, plus a the following in ipnat.conf:
rdr fxp0 0.0.0.0/0 port 80 -> 127.0.0.1 port 3128 tcp
@@ -478,6 +478,7 @@
# cache_mem 8 MB
+cache_mem 128 MB
# TAG: cache_swap_low (percent, 0-100)
# TAG: cache_swap_high (percent, 0-100)
@@ -511,6 +512,7 @@
# maximum_object_size 4096 KB
+maximum_object_size 131076 KB
# TAG: minimum_object_size (bytes)
# Objects smaller than this size will NOT be saved on disk. The
@@ -528,6 +530,7 @@
# maximum_object_size_in_memory 8 KB
+maximum_object_size_in_memory 32 KB
# TAG: ipcache_size (number of entries)
# TAG: ipcache_low (percent)
@@ -693,6 +696,7 @@
# cache_dir ufs /var/squid/cache 100 16 256
+cache_dir ufs /var/squid/cache 6144 16 256
# TAG: cache_access_log
# Logs the client request activity. Contains an entry for
@@ -700,6 +704,7 @@
# cache_access_log /var/squid/logs/access.log
# TAG: cache_log
# Cache logging file. This is where general information about
@@ -718,6 +723,7 @@
# cache_store_log /var/squid/logs/store.log
# TAG: cache_swap_log
# Location for the cache "swap.state" file. This log file holds
@@ -1872,6 +1878,8 @@
# be allowed
#acl our_networks src 192.168.1.0/24 192.168.2.0/24
#http_access allow our_networks
+acl our_networks src 192.168.0.0/16
+http_access allow our_networks
# And finally deny all other access to this proxy
http_access deny all
@@ -2173,6 +2181,9 @@
# httpd_accel_port 80
# TAG: httpd_accel_single_host on|off
# If you are running Squid as an accelerator and have a single backend
David/absolute -- www.NetBSD.org: No hype required --