Squid3 slow internet

Koops-Furness · 02-13-2014, 04:57 AM

We have installed Squid 3.1.20 on a Debian 7 Virtual Machine with one CPU and 4GB of memory.

In first we had about 20 persons using the Squid Proxy and everything looked fine.
After a couple of weeks testing we decided to configure the Squid proxy for about 200 Users.
Almost immediate all webpages loaded slow of didn't load at all.
Sometimes everything worked fast.

I have looked for an answer, but could not find one myself.
Could somebody help me?

Quote:

http_port 8080
hostname_aliases KFPROXY01
dns_nameservers 10.20.1.11 10.20.1.12 10.20.1.13
visible_hostname KFPROXY01

cache_mem 2500 MB
maximum_object_size_in_memory 1 MB

cache_dir aufs /cache01 25600 16 256
cache_dir aufs /cache02 25600 16 256

store_dir_select_algorithm least-load

minimum_object_size 0 KB
maximum_object_size 96 MB

cache_swap_low 94
cache_swap_high 97

memory_replacement_policy lru
cache_replacement_policy heap LFUDA

client_persistent_connections off

# url_rewrite_program /usr/bin/squidGuard -c /etc/squidguard/squidGuard.conf

# acl local_machines dst 10.20.1.0/24
# cache deny local_machines

# append_domain .example.com

strip_query_terms on

acl SSL_ports port 443 21
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

acl FTP proto FTP
always_direct allow FTP

# acl Java browser Java/1.4 Java/1.5 Java/1.6 Java/1.7

refresh_pattern . 0 20% 4320 ignore-reload

acl Manager proto cache_object
acl Clients src 10.0.0.0/8
acl Servers src 10.20.1.0/24
acl ICT src 10.20.2.0/24
acl Development src 10.20.82.0/24
acl Company1 src 192.168.254.0/24
acl Company2 src 172.30.1.0/24
acl localhost src 127.0.0.1

# Blocking File Downloads
acl blockfiles urlpath_regex -i \.(exe|bat|com|msi|msu|cmd|vbs)(\?.*)?$
# deny_info ERR_BLOCKED_FILES blockfiles
http_access allow blockfiles Servers
http_access allow blockfiles ICT
http_access allow blockfiles Development
http_access deny blockfiles Clients

http_access allow Manager ICT
http_access allow Manager Servers
http_access allow Manager localhost
http_access deny Manager

http_access allow Clients
http_access allow Servers
http_access allow ICT
http_access allow Development
http_access allow Company1
http_access allow Company2
http_access allow localhost
http_access deny Clients
http_access deny all

cache_mgr mail@mail.nl
cachemgr_passwd xxxxxx all

markotitel · 02-14-2014, 03:28 AM

Hi, 200 people is not some extra large amount of users.

What is your internet bandwidth, both DOWN and UP.

Check logs on HOST machine and also on GUEST, I had trouble with XEN virtualized squid. CPU topped while using disk I/O.

You can try to debug like this:
- Reboot SQUID server
- When server start to work slow, DENY all users but ONE (you) reload config and use SQUID, check if it speeds up or not.
- Check after what time slowness starts
- Paste logs from both host (syslog/messages) and guest (squid log and syslog/messages)

Also try to disable cache and check how it works then.

Koops-Furness · 02-14-2014, 04:05 AM

We think to have found the problem.
In the router was a setting to reroute all traffic through our old ISA server which had a Connection limit per client set to 250.
After disabling the reroute everything works fine.