We have installed Squid 3.1.20 on a Debian 7 Virtual Machine with one CPU and 4GB of memory.
In first we had about 20 persons using the Squid Proxy and everything looked fine.
After a couple of weeks testing we decided to configure the Squid proxy for about 200 Users.
Almost immediate all webpages loaded slow of didn't load at all.
Sometimes everything worked fast.
I have looked for an answer, but could not find one myself.
Could somebody help me?
Quote:
http_port 8080
hostname_aliases KFPROXY01
dns_nameservers 10.20.1.11 10.20.1.12 10.20.1.13
visible_hostname KFPROXY01
cache_mem 2500 MB
maximum_object_size_in_memory 1 MB
cache_dir aufs /cache01 25600 16 256
cache_dir aufs /cache02 25600 16 256
store_dir_select_algorithm least-load
minimum_object_size 0 KB
maximum_object_size 96 MB
cache_swap_low 94
cache_swap_high 97
memory_replacement_policy lru
cache_replacement_policy heap LFUDA
client_persistent_connections off
# url_rewrite_program /usr/bin/squidGuard -c /etc/squidguard/squidGuard.conf
# acl local_machines dst 10.20.1.0/24
# cache deny local_machines
# append_domain .example.com
strip_query_terms on
acl SSL_ports port 443 21
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl FTP proto FTP
always_direct allow FTP
# acl Java browser Java/1.4 Java/1.5 Java/1.6 Java/1.7
refresh_pattern . 0 20% 4320 ignore-reload
acl Manager proto cache_object
acl Clients src 10.0.0.0/8
acl Servers src 10.20.1.0/24
acl ICT src 10.20.2.0/24
acl Development src 10.20.82.0/24
acl Company1 src 192.168.254.0/24
acl Company2 src 172.30.1.0/24
acl localhost src 127.0.0.1
# Blocking File Downloads
acl blockfiles urlpath_regex -i \.(exe|bat|com|msi|msu|cmd|vbs)(\?.*)?$
# deny_info ERR_BLOCKED_FILES blockfiles
http_access allow blockfiles Servers
http_access allow blockfiles ICT
http_access allow blockfiles Development
http_access deny blockfiles Clients
http_access allow Manager ICT
http_access allow Manager Servers
http_access allow Manager localhost
http_access deny Manager
http_access allow Clients
http_access allow Servers
http_access allow ICT
http_access allow Development
http_access allow Company1
http_access allow Company2
http_access allow localhost
http_access deny Clients
http_access deny all
cache_mgr mail@mail.nl
cachemgr_passwd xxxxxx all
|