De: 	Thiago Caminha da Silva <thiago@tecpont.com.br>
Para: 	linux-br <linux-br@bazar2.conectiva.com.br>
Assunto: 	(linux-br)Squid quase resolvido
Data: 	Tue, 29 Jul 2003 17:28:27 -0300


Oi lista, como eu tinha mandado um e-mail sobre o meu squid que ficava 
caindo eu descobri o que era... era o usoário noboody que tava zicado. 

Bom o squid está funcionando com o sarg, mas está com um desempenho muito 
baixo. 

Eu tenho pra esse squid 1 p3 600 128Mg 80Gb ata100 que tb é usado para fazer 
um backup diário da rede, que da uns 12Gb, então de utilização mesmo só o 
squid... 

A minha rede tem 20 estações esse servidor de backup+squid e um servidor de 
arquivos. 

Tenho 1 vírtua de 256 que entra num symantec firewall/VPN 200R e dai pro 
resto da rede. 

Alguém pode me dar uma luz? Não uso o squid como proxy transparente nem 
nada... ai em baixo segue o meu squid.conf, por favor se alguém souber 
alguma maneira de eu melhorar o desempenho me da um toque... 

http_port 3128
#icp_port 3130
#htcp_port 4827
#mcast_groups 239.128.16.128
#tcp_outgoing_address 0.0.0.0
#udp_incoming_address 0.0.0.0
#udp_outgoing_address 0.0.0.0
#cache_peer hostname type 3128 3130
#icp_query_timeout 0
#maximum_icp_query_timeout 2000
#mcast_icp_query_timeout 2000
#dead_peer_timeout 10 seconds
#hierarchy_stoplist cgi-bin ?
#acl QUERY urlpath_regex cgi-bin \?
#no_cache deny QUERY
cache_mem  32 MB
cache_swap_low  90
cache_swap_high 95
maximum_object_size 4096 KB
#minimum_object_size 0 KB
#ipcache_size 1024
#ipcache_low  90
#ipcache_high 95
#fqdncache_size 1024
cache_dir ufs /usr/local/squid/cache 1500 16 256
cache_access_log /usr/local/squid/logs/access.log
#cache_log /usr/local/squid/logs/cache.log
#cache_store_log /usr/local/squid/logs/store.log
#cache_swap_log
#emulate_httpd_log off
#mime_table /usr/local/squid/etc/mime.conf
#log_mime_hdrs off
#useragent_log none
#pid_filename /usr/local/squid/logs/squid.pid
#debug_options ALL,1
#log_fqdn off
#client_netmask 255.255.255.255
#ftp_user Squid@
#ftp_list_width 32
##ftp_passive on
#cache_dns_program /usr/local/squid/bin/dnsserver
#dns_children 5
#dns_defnames off
#dns_nameservers none
#unlinkd_program /usr/local/squid/bin/unlinkd
#pinger_program /usr/local/squid/bin/pinger
#redirect_program none
#redirect_children 5
#redirect_rewrites_host_header on
#authenticate_program none
#authenticate_children 5
#authenticate_ttl 3600
#authenticate_ip_ttl 0
#wais_relay_host localhost
#wais_relay_port 8000
#request_header_max_size 10 KB
#request_body_max_size 1 MB
#reply_body_max_size 0
#Default:
refresh_pattern		^ftp:		1440	20%	10080
refresh_pattern		^gopher:	1440	0%	1440
refresh_pattern 	.		0	20%	4320
#replacement_policy LFUDA
#reference_age 1 year
#quick_abort_min 16 KB
#quick_abort_max 16 KB
#quick_abort_pct 95
#negative_ttl 5 minutes
#positive_dns_ttl 6 hours
#negative_dns_ttl 5 minutes
#range_offset_limit 0 KB
#connect_timeout 120 seconds
#peer_connect_timeout 30 seconds
#siteselect_timeout 4 seconds
#read_timeout 15 minutes
#request_timeout 30 seconds
#client_lifetime 1 day
#half_closed_clients on
#pconn_timeout 120 seconds
#ident_timeout 10 seconds
#shutdown_lifetime 30 seconds 

#Examples:
#acl myexample dst_as 1241
#acl password proxy_auth REQUIRED 

#Defaults:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280		# http-mgmt
acl Safe_ports port 488		# gss-http
acl Safe_ports port 591		# filemaker
acl Safe_ports port 777		# multiling http
acl CONNECT method CONNECT 

#Default configuration:
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow all
icp_access allow all
miss_access allow all
#proxy_auth_realm Squid proxy-caching web server
#ident_lookup_access deny all
#cache_mgr webmaster
#cache_effective_user nobody
#cache_effective_group nogroup
#visible_hostname www-cache.foo.org
#unique_hostname www-cache1.foo.org
#announce_period 1 day
#announce_host tracker.ircache.net
#announce_port 3131
#httpd_accel_host hostname
#httpd_accel_port port
#httpd_accel_with_proxy off
#httpd_accel_uses_host_header off
#dns_testnames netscape.com internic.net nlanr.net microsoft.com
#logfile_rotate 10
#append_domain .yourdomain.com
#tcp_recv_bufsize 0 bytes
#err_html_text
#memory_pools on
#forwarded_for on
#log_icp_queries on
#icp_hit_stale off
#minimum_direct_hops 4
#cachemgr_passwd secret shutdown
#cachemgr_passwd lesssssssecret info stats/objects
#cachemgr_passwd disable all
#store_avg_object_size 13 KB
#store_objects_per_bucket 50
#client_db on
#netdb_low 900
#netdb_high 1000
#netdb_ping_period 5 minutes
#query_icmp off
#test_reachability off
#buffered_logs off
#reload_into_ims off
#anonymize_headers
#fake_user_agent none
#minimum_retry_timeout 5 seconds
#maximum_single_addr_tries 3
#snmp_port 3401
#Example:
#snmp_access allow snmppublic localhost
#snmp_access deny all
#snmp_incoming_address 0.0.0.0
#snmp_outgoing_address 0.0.0.0
#wccp_router 0.0.0.0
#wccp_version 4
#wccp_incoming_address 0.0.0.0
#wccp_outgoing_address 0.0.0.0
#delay_pools 0
#delay_pools 2      # 2 delay pools
#delay_class 1 2    # pool 1 is a class 2 pool
#delay_class 2 3    # pool 2 is a class 3 pool
#delay_access 1 allow some_big_clients
#delay_access 1 deny all
#delay_access 2 allow lotsa_little_clients
#delay_access 2 deny all
#delay_parameters pool aggregate
#delay_parameters pool aggregate individual
#delay_parameters pool aggregate network individual
#delay_parameters 1 -1/-1 8000/8000
#delay_parameters 2 32000/32000 8000/8000 600/64000
#delay_initial_bucket_level 50
#incoming_icp_average 6
#incoming_http_average 4
#min_icp_poll_cnt 8
#min_http_poll_cnt 8
#uri_whitespace strip
#acl buggy_server url_regex ^http://....
#broken_posts allow buggy_server
#prefer_direct on
#strip_query_terms on
#ignore_unknown_nameservers on
#digest_generation on
#digest_bits_per_entry 5
#digest_rebuild_period 1 hour
#digest_rewrite_period 1 hour
#digest_swapout_chunk_size 4096 bytes
#digest_rebuild_chunk_percentage 10
#client_persistent_connections on
#server_persistent_connections on 

obrigado. 
---------------------------------------------------------------------------
Esta lista é patrocinada pela Conectiva S.A. Visite http://www.conectiva.com.br

Arquivo: http://bazar2.conectiva.com.br/mailman/listinfo/linux-br
Regras de utilização da lista: http://linux-br.conectiva.com.br
FAQ: http://www.zago.eti.br/menu.html