[squid-users] Cache url's with "?" question marks
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello List,
I am having problems trying to cache images*/content that comes from a
URL containing a question mark on it ('?')
Background:
I am running squid Version 2.6.STABLE17 on FreeBSD 6.2 as a reverse
proxy to accelerate content hosted in America served in Europe.
The content comes from an application that uses TOMCAT so a URL
requesting dynamic content would look similar to this:
http://domain.com/storage/storage?fileName=/.domain.com-1/usr/14348/image/thumbnail/th_8837728e67eb9cce6fa074df7619cd0d193_1_.jpg
The result of such request always results on a MISS with a log similar
to this:
TCP_MISS/200 8728 GET http://domain.com/storage/storage? -
FIRST_UP_PARENT/server_1 image/jpg
I've added this to my config: acl QUERY urlpath_regex cgi-bin as you can
see bellow but it makes no difference and I tried adding this:
acl QUERY urlpath_regex cgi-bin \? and for some reason ALL requests
result in a MISS.
Any help is greatly appreciated.
My squid config looks like this: (obviously real ip's were changed)
# STANDARD ACL'S ###
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
# REVERSE CONFIG FOR SITE #
http_port 80 accel vhost
cache_peer 1.1.1.1 parent 80 0 no-query originserver name=server_1
acl sites_server_1 dstdomain domain.com
# REVERSE ACL'S FOR OUR DOMAINS ##
acl ourdomain0 dstdomain www.domain.com
acl ourdomain1 dstdomain domain.com
http_access allow ourdomain0
http_access allow ourdomain1
http_access deny all
icp_access allow all
HEADER CONTROL ###
visible_hostname cacheA.domain.com
cache_effective_user nobody
forwarded_for on
follow_x_forwarded_for allow all
header_access All allow all
### SNMP CONTROL ###
snmp_port 161
acl snmppublic snmp_community public1
snmp_access allow all
## CACHE CONTROL
access_log /usr/local/squid/var/logs/access.log squid
acl QUERY urlpath_regex cgi-bin
cache_mem 1280 MB
cache_swap_low 95
cache_swap_high 98
maximum_object_size 6144 KB
minimum_object_size 1 KB
maximum_object_size_in_memory 4096 KB
cache_dir ufs /storage/ram_dir1 128 16 256
cache_dir ufs /storage/cache_dir1 5120 16 256
cache_dir ufs /storage/cache_dir2 5120 16 256
cache_dir ufs /storage/cache_dir3 5120 16 256
Also here is the result of a custom script I made to parse the
access.log that will sort and display the top 22 responses so I can
compare them with cacti, I am trying to increase the Hit ratio but so
far is extremely low.
1 571121 69.3643% TCP_MISS/200
2 98432 11.9549% TCP_HIT/200
3 51590 6.26576% TCP_MEM_HIT/200
4 47009 5.70938% TCP_MISS/304
5 17757 2.15664% TCP_IMS_HIT/304
6 11982 1.45525% TCP_REFRESH_HIT/200
7 11801 1.43327% TCP_MISS/404
8 6810 0.827095% TCP_MISS/500
9 2508 0.304604% TCP_MISS/000
10 1323 0.160682% TCP_MISS/301
11 1151 0.139792% TCP_MISS/403
12 1051 0.127647% TCP_REFRESH_HIT/304
13 430 0.0522248% TCP_REFRESH_MISS/200
14 127 0.0154245% TCP_CLIENT_REFRESH_MISS/200
15 83 0.0100806% TCP_MISS/401
16 81 0.00983769% TCP_CLIENT_REFRESH_MISS/304
17 35 0.00425085% TCP_MISS/503
18 20 0.00242906% TCP_DENIED/400
19 19 0.00230761% TCP_HIT/000
20 19 0.00230761% TCP_DENIED/403
21 14 0.00170034% TCP_SWAPFAIL_MISS/200
22 1 0.000121453% TCP_SWAPFAIL_MISS/30
Thanks!
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFHyHfrAcr37anguZsRAtktAKCKlqDTxrtmLLpfEK+cq92OOS0JwQCeIuiG
59G9YtNTZXD5JIExywCYprI=
=1Uls
-END PGP SIGNATURE-
RE: [squid-users] Multi processors
Marcos, What OS are you running squid on? According to the Docs, squid cannot take advantage of an SMP kernel but there is a reference about having multiple instances of squid running, However some OS's are very specific on how they handle processes, a little more information about your setup would be helpful Saul -Original Message- From: Marcos Camões Bourgeaiseau [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 11, 2008 3:21 PM To: squid-users@squid-cache.org Subject: [squid-users] Multi processors I have compiled squid with those options below: squid -v Squid Cache: Version 2.5.STABLE12 configure options: --sysconfdir=/etc/squid --enable-storeio=aufs,coss,diskd,ufs --enable-poll --enable-delay-pools --enable-linux-netfilter --enable-htcp --enable-carp --with-pthreads --enable-underscores --enable-external --enable-arp-acl --with-maxfd=16384 --enable-async-io=50 --enable-snmp It runs in a machine with 4 Itel Xeon processors, but squid no matter how many instances i start, uses only one processor, and my other three processors stay idle. My Squid.conf is this: (I have cutted-out my acls and http_acces) http_port 8080 hierarchy_stoplist cgi-bin ? acl QUERY urlpath_regex cgi-bin aspx \? no_cache deny QUERY # OPTIONS WHICH AFFECT THE CACHE SIZE cache_mem 3072000 KB maximum_object_size 2 KB minimum_object_size 0 KB maximum_object_size_in_memory 4 MB cache_replacement_policy lru memory_replacement_policy lru # LOGFILE PATHNAMES AND CACHE DIRECTORIES cache_dir ufs /var/spool/squid 5000 16 256 cache_access_log /var/log/squid/access.log cache_log none cache_store_log none pid_filename /var/run/squid.pid # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS ftp_list_width 32 ftp_passive on auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours auth_param basic casesensitive off # OPTIONS FOR TUNING THE CACHE refresh_pattern ^ftp: 144020% 10080 refresh_pattern ^gopher:14400% 1440 refresh_pattern . 0 20% 4320 quick_abort_pct 98 # MISCELLANEOUS append_domain .rio.rj.gov.br memory_pools_limit 50 MB log_icp_queries off snmp_port 3401 Does anyone have an idea? I have looked up in this list old mails, and have not found anything. Thanks a lot, -- Marcos Camões Bourgeaiseau - KIKO e-mail pessoal: [EMAIL PROTECTED] e-mail institucional: [EMAIL PROTECTED] No virus found in this incoming message. Checked by AVG. Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008 1:41 PM No virus found in this outgoing message. Checked by AVG. Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008 1:41 PM
RE: [squid-users] ACL lists
Garry, Here are some examples I prepared for you: acl badguys src 6.0.0.0/8 acl badguys2 src 2.0.0.0/8 acl intruder src 10.10.10.16 acl workstation src 10.10.10.19 acl our_networks src 192.168.1.0/24 http_access deny badguys http_access deny badguys2 http_access deny intruder http_access allow workstation http_access allow our_networks http_access deny all Brief explanation on these ACL's: I use a general acl called badguys to prevent access from an entire network class, I.E. someone doing a DoS attack on your network from multiple IP's on the same class. Intruder: A kid with a script trying to use your squid coming from the same ip (Your question about deny a single host) The rest is self explanatory, you can call the acl's whatever you want. After an acl you must have a rule matching the ACL name, so here is where you either allow or deny access based on your ACL's, see the http_access "allow or deny" above. Last, but also the most important, at the end of all your ACL's put "http_access deny all" so you can secure your installation based on your newly created ACL's Hope it helps Saul Waizer -Original Message- From: Garry D. Chapple [mailto:[EMAIL PROTECTED] Sent: Monday, March 10, 2008 8:27 PM To: squid-users@squid-cache.org Subject: [squid-users] ACL lists Hi, I am a complete Squid newb with my first install done only yesterday, 2.6 stable(18). Can someone please help with basic ACL config for network IP's, I would like to allow my local network and restrict just one or two hosts by IP address. I have Googled a little but as there are so many ACL configurations it's difficult to know which one works! Squid is up and running well and I have an ACL to allow my local network (acl our_networks src 192.168.1.0/24) but how do I then deny access to just a single host IP? Any examples or good web sites with these kinds of examples would be much appreciated. Regards, Garry C No virus found in this incoming message. Checked by AVG. Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008 1:41 PM No virus found in this outgoing message. Checked by AVG. Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008 1:41 PM
RE: [squid-users] Multi processors
Marcos, Ubuntu should work fine with an SMP kernel for squid. Just to double check, with your setup have you followed these guidelines? http://wiki.squid-cache.org/MultipleInstances one of the most important things to check is that you have different PID's for every instance of squid, see "pid_filename" Also, how many cpu's does that box have? Do you see squid always using the same one (I.E. CPU2) Saul W -Original Message- From: Marcos Camões Bourgeaiseau [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 11, 2008 4:34 PM To: saul waizer; squid-users@squid-cache.org Subject: Re: [squid-users] Multi processors Sorry about that. It is a Ubuntu Feisty with a re-compiled Kernel version 2.6.15.7. We just took out some harware modules. We tried some newer Kernel but we couldn't make it work with the hadware that we have here. And just for clarity: It was OK to put four or more instances running at the same time, but all of those instances keep using the same processor and only that ONE processor. It is such a waste. And we have very limited material to work here. Thanks again, saul waizer escreveu: > Marcos, > > What OS are you running squid on? > > According to the Docs, squid cannot take advantage of an SMP kernel but > there is a reference about having multiple instances of squid running, > However some OS's are very specific on how they handle processes, a little > more information about your setup would be helpful > > Saul > -Original Message- > From: Marcos Camões Bourgeaiseau [mailto:[EMAIL PROTECTED] > Sent: Tuesday, March 11, 2008 3:21 PM > To: squid-users@squid-cache.org > Subject: [squid-users] Multi processors > > I have compiled squid with those options below: > > squid -v > Squid Cache: Version 2.5.STABLE12 > configure options: --sysconfdir=/etc/squid > --enable-storeio=aufs,coss,diskd,ufs --enable-poll --enable-delay-pools > --enable-linux-netfilter --enable-htcp --enable-carp --with-pthreads > --enable-underscores --enable-external --enable-arp-acl > --with-maxfd=16384 --enable-async-io=50 --enable-snmp > > It runs in a machine with 4 Itel Xeon processors, but squid no matter > how many instances i start, uses only one processor, and my other three > processors stay idle. > > My Squid.conf is this: (I have cutted-out my acls and http_acces) > > http_port 8080 > hierarchy_stoplist cgi-bin ? > acl QUERY urlpath_regex cgi-bin aspx \? > no_cache deny QUERY > > # OPTIONS WHICH AFFECT THE CACHE SIZE > cache_mem 3072000 KB > maximum_object_size 2 KB > minimum_object_size 0 KB > maximum_object_size_in_memory 4 MB > cache_replacement_policy lru > memory_replacement_policy lru > > # LOGFILE PATHNAMES AND CACHE DIRECTORIES > cache_dir ufs /var/spool/squid 5000 16 256 > cache_access_log /var/log/squid/access.log > cache_log none > cache_store_log none > pid_filename /var/run/squid.pid > > # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS > ftp_list_width 32 > ftp_passive on > > auth_param basic children 5 > auth_param basic realm Squid proxy-caching web server > auth_param basic credentialsttl 2 hours > auth_param basic casesensitive off > > # OPTIONS FOR TUNING THE CACHE > refresh_pattern ^ftp: 144020% 10080 > refresh_pattern ^gopher:14400% 1440 > refresh_pattern . 0 20% 4320 > quick_abort_pct 98 > > # MISCELLANEOUS > append_domain .rio.rj.gov.br > memory_pools_limit 50 MB > log_icp_queries off > snmp_port 3401 > > > Does anyone have an idea? > I have looked up in this list old mails, and have not found anything. > > Thanks a lot, > -- Marcos Camões Bourgeaiseau - KIKO e-mail pessoal: [EMAIL PROTECTED] e-mail institucional: [EMAIL PROTECTED] No virus found in this incoming message. Checked by AVG. Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008 1:41 PM No virus found in this outgoing message. Checked by AVG. Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008 1:41 PM
Re: [squid-users] Need Help
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Adnan, please reply to the mailing list too. Look into X-Forwarded-For, you need to recompile squid with that option and add the x-forwarded... lines to squid.conf Hope it helps Saul W Adnan Shahzad wrote: > i am using 2.6 Stable version of Squid > > M.Adnan Shahzad > System Administrator > Information Technology Services Centre > Lahore University of Management Sciences(LUMS) > Opposite Sector U, DHA > Lahore 54792, PAKISTAN > Website: http://www.lums.edu.pk > Ph: +92-42-5722670-79 Ext 4138 > ____ > From: saul waizer [EMAIL PROTECTED] > Sent: Thursday, March 13, 2008 11:10 PM > To: 'Adnan Shahzad' > Subject: RE: [squid-users] Need Help > > Which version of squid do you have? > > -Original Message- > From: Adnan Shahzad [mailto:[EMAIL PROTECTED] > Sent: Thursday, March 13, 2008 12:45 AM > To: squid-users@squid-cache.org > Subject: [squid-users] Need Help > > Dear Sir, > > i am working in a company, Pakistan. My Network setting is > > Squid Machine ---> Packeeter (Hardware for Bandwidth Management (With > out NATing)) -> F5 (aggreated internet connection (With out NATing) > ) > Router (NATing) > > i want to configure Squid with dansguardian for content filter. but problem > which i am facing is that squid do NAT and don't forward Client IP. Which i > want to forward client IP to Packeeter and squid do cache, log and content > filtering job. But i am facing this problem and i study lots of Document and > no success so Please guide me and Help me to resolve this problem. > > looking forward to your positive response. > > Regards > > M.Adnan Shahzad > System Administrator > > No virus found in this incoming message. > Checked by AVG. > Version: 7.5.519 / Virus Database: 269.21.7/1328 - Release Date: 3/13/2008 > 11:31 AM > > > No virus found in this outgoing message. > Checked by AVG. > Version: 7.5.519 / Virus Database: 269.21.7/1328 - Release Date: 3/13/2008 > 11:31 AM > > > -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFH2rKNAcr37anguZsRApsHAJsGK2xxpOUte00H4rHl6rZVe+DQPQCeJzYh 8udDJj1X23soLTulQuDoswE= =ALfi -END PGP SIGNATURE-
RE: [squid-users] Reverse proxy IP not passing through
Micah,
I've had to deal with that situation a few times, the solution is quite
simple.
Recompile squid with this option if you haven't done it so far "
--enable-follow-x-forwarded-for"
Add these lines to your squid.conf:
forwarded_for on
follow_x_forwarded_for allow all
Basically what this does is forwards the client IP to the origin server on a
reverse proxy setup
Now, the client IP will be passed through the headers to the origin server
but you need to do some work on apache to be able to fetch those.
Unfortunately apache discussions are beyond the scope of this list, I
suggest you look into rewrite rules, I have the same setup working like a
charm with rewrites.
Hope it helps
Saul W.
-Original Message-
From: news [mailto:[EMAIL PROTECTED] On Behalf Of Micah Anderson
Sent: Wednesday, March 12, 2008 5:49 PM
To: squid-users@squid-cache.org
Subject: [squid-users] Reverse proxy IP not passing through
I upgraded my squid to 2.6 and re-did the configs, everything is working
with the exception of one problem, the old version used to pass the
visitor's IP back to the webserver, but now it just passes the squid
host's IP. I need the requesting IP for some CGI's to work, at the
moment they think that my host is the only one hitting them :O
I used to accomplish this with httpd_accel_uses_host_header and I
understand that this has been replaced in the newer 2.6 versions, but as
you can see from my configuration below, I've made that change.
I've got apache running on port 81 of the same server and if I hit the
webserver itself, it sees the IPs correctly, its just when squid passes
them on. I'm using 2.6.18 backport on debian etch.
Here is my squid.conf, with some ips/domains munged to protect the
innocent, thanks for any ideas!
Micah
http_port 214.132.104.148:80 defaultsite=mydomain.com:80 vhost vport
cache_peer 214.132.104.148 parent 81 0 no-query originserver default
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
acl QUERY urlpath_regex download \?
acl QUERY urlpath_regex trackback \?
acl QUERY urlpath_regex email \?
acl QUERY urlpath_regex review \?
acl QUERY urlpath_regex proposals \?
acl QUERY urlpath_regex submit \?
acl QUERY urlpath_regex admin \?
acl QUERY urlpath_regex prerelease \?
acl POSTS method POST
no_cache deny POSTS
no_cache deny QUERY
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
cache_swap_low 92
cache_swap_high 96
cache_dir aufs /var/spool/squid 100 16 256
logformat combined %>a %ui %un [%tl] "%rm %ru HTTP/%rv" %Hs %h" "%{User-Agent}>h" %Ss:%Sh %{Host}>h
access_log /var/log/squid/access.log combined
hosts_file /etc/hosts
refresh_pattern ^ftp: 144020% 10080
refresh_pattern ^gopher:14400% 1440
refresh_pattern . 0 20% 4320
read_timeout 10 minutes
request_timeout 20 seconds
pconn_timeout 10 seconds
redirect_children 20
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl green src 214.132.104.148/255.255.255.255
acl SSL_ports port 443
acl SSL_ports port 563
acl SSL_ports port 873
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
http
acl Safe_ports port 631
acl Safe_ports port 873
acl Safe_ports port 901
acl purge method PURGE
acl CONNECT method CONNECT
acl IMAGES urlpath_regex .jpg$
acl IMAGES urlpath_regex .gif$
acl IMAGES urlpath_regex .swf$
acl IMAGES urlpath_regex .ico$
acl IMAGES urlpath_regex .png$
http_access allow purge green
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow all
http_access deny all
icp_access deny ALL
ident_lookup_access deny all
http_access allow green
http_access deny all
http_reply_access allow all
icp_access allow all
cache_effective_group proxy
delay_pools 1
delay_class 1 1
delay_access 1 allow all
delay_parameters 1 128000/128000 # 512 kbits == 64 kbytes per
second, 1Mbit/sec=128kbytes
strip_query_terms off
coredump_dir /var/spool/squid
No virus found in this incoming message.
Checked by AVG.
Version: 7.5.518 / Virus Database: 269.21.7/1325 - Release Date: 3/11/2008
1:41 PM
No virus found in this outgoing message.
Checked by AVG.
Version: 7.5.519 / Virus Database: 269.21.7/1328 - Release Date: 3/13/2008
11:31 AM
No virus found in this outgoing message.
Checked by AVG.
Version: 7.5.519 / Virus Database: 269.21.7/1329 - Release Date: 3/14/2008
12:33
Re: [squid-users] Cache url's with "?" question marks
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Amos,
I've implemented the example you sent on Dynamic Content but so far i
regret to say that no improvement has been made on the hit ratio
I added the following to my squid.conf
refresh_pattern (/cgi-bin/|\?) 0 0% 0
refresh_pattern .0 20% 4320
acl mydomain dstdomain .mydomain.com
cache allow mydomain
my stats look something like this:
67.5103% TCP_MISS/200
6.07349% TCP_HIT/200
4.55681% TCP_MEM_HIT/200
1.59761% TCP_IMS_HIT/304
Any help is appreciated.
Thanks
Amos Jeffries wrote:
> Adrian Chadd wrote:
>> G'day,
>>
>> Just remove the QUERY ACL and the cache ACL line using "QUERY" in it.
>> Then turn on header logging (log_mime_hdrs on) and see if the replies
>> to the dynamically generated content is actually giving caching info.
>>
>>
>>
>> Adrian
>
> http://wiki.squid-cache.org/ConfigExamples/DynamicContent
>
> Amos
>
>>
>> On Fri, Feb 29, 2008, Saul Waizer wrote:
> Hello List,
>
> I am having problems trying to cache images*/content that comes from a
> URL containing a question mark on it ('?')
>
> Background:
> I am running squid Version 2.6.STABLE17 on FreeBSD 6.2 as a reverse
> proxy to accelerate content hosted in America served in Europe.
>
> The content comes from an application that uses TOMCAT so a URL
> requesting dynamic content would look similar to this:
>
> http://domain.com/storage/storage?fileName=/.domain.com-1/usr/14348/image/thumbnail/th_8837728e67eb9cce6fa074df7619cd0d193_1_.jpg
>
>
> The result of such request always results on a MISS with a log similar
> to this:
>
> TCP_MISS/200 8728 GET http://domain.com/storage/storage? -
> FIRST_UP_PARENT/server_1 image/jpg
>
> I've added this to my config: acl QUERY urlpath_regex cgi-bin as you can
> see bellow but it makes no difference and I tried adding this:
> acl QUERY urlpath_regex cgi-bin \? and for some reason ALL requests
> result in a MISS.
>
> Any help is greatly appreciated.
>
> My squid config looks like this: (obviously real ip's were changed)
>
> # STANDARD ACL'S ###
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> # REVERSE CONFIG FOR SITE #
> http_port 80 accel vhost
> cache_peer 1.1.1.1 parent 80 0 no-query originserver name=server_1
> acl sites_server_1 dstdomain domain.com
> # REVERSE ACL'S FOR OUR DOMAINS ##
> acl ourdomain0 dstdomain www.domain.com
> acl ourdomain1 dstdomain domain.com
> http_access allow ourdomain0
> http_access allow ourdomain1
> http_access deny all
> icp_access allow all
> HEADER CONTROL ###
> visible_hostname cacheA.domain.com
> cache_effective_user nobody
> forwarded_for on
> follow_x_forwarded_for allow all
> header_access All allow all
> ### SNMP CONTROL ###
> snmp_port 161
> acl snmppublic snmp_community public1
> snmp_access allow all
> ## CACHE CONTROL
> access_log /usr/local/squid/var/logs/access.log squid
> acl QUERY urlpath_regex cgi-bin
> cache_mem 1280 MB
> cache_swap_low 95
> cache_swap_high 98
> maximum_object_size 6144 KB
> minimum_object_size 1 KB
> maximum_object_size_in_memory 4096 KB
> cache_dir ufs /storage/ram_dir1 128 16 256
> cache_dir ufs /storage/cache_dir1 5120 16 256
> cache_dir ufs /storage/cache_dir2 5120 16 256
> cache_dir ufs /storage/cache_dir3 5120 16 256
>
> Also here is the result of a custom script I made to parse the
> access.log that will sort and display the top 22 responses so I can
> compare them with cacti, I am trying to increase the Hit ratio but so
> far is extremely low.
>
> 1 571121 69.3643% TCP_MISS/200
> 2 98432 11.9549% TCP_HIT/200
> 3 51590 6.26576% TCP_MEM_HIT/200
> 4 47009 5.70938% TCP_MISS/304
> 5 17757 2.15664% TCP_IMS_HIT/304
> 6 11982 1.45525% TCP_REFRESH_HIT/200
> 7 11801 1.43327% TCP_MISS/404
> 8 6810 0.827095% TCP_MISS/500
> 9 2508 0.304604% TCP_MISS/000
>10 1323 0.160682% TCP_MISS/301
>11 1151 0.139792% TCP_MISS/403
>12 1051 0.127647% TCP_REFRESH_HIT/304
>13 430 0.0522248% TCP_REFRESH_MISS/200
>14 127 0.0154245% TCP_CLIENT_REFRESH_MISS/200
>15 83 0.0100806% TCP_MISS/401
>16 81 0.00983769% TCP_CLIENT_REFRESH_MISS/304
>17 35 0.00425085% TCP_MISS/503
>18 20 0.00242906% TCP_DENIED/400
>19 19 0.00230761% TCP_HIT/000
>20 19 0.00230761% TCP_DENIED/403
>21 14 0.00170034% TCP_SWAPFAIL_MISS/200
>22 1 0.000121453% TCP_SWAPFAIL_MISS/30
>
> Thanks!
>
>
>
>
>>
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFH2ugEAcr37anguZsRAixSAJ9GioRmL42D1bOSVveMKYcpi21fygCfd4VP
UMqi1CB3vQ5IeaTblK/vYQM=
=6XUg
-END PGP SIGNATURE-
