varnish详解

最新推荐文章于 2019-12-23 22:26:52 发布
最新推荐文章于 2019-12-23 22:26:52 发布
阅读量665 收藏 1
点赞数
分类专栏: 服务器
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_22193519/article/details/84325597
版权

一、关于Varnish

Varnish 是一款高性能且开源的反向代理服务器和 HTTP 加速器,其采用全新的软件体系机构,和现在的硬件体系紧密配合,与传统的 squid 相比,varnish 具有性能更高、速度更快、管理更加方便等诸多优点,很多大型的网站都开始尝试使用 varnish 来替换 squid,这些都促进 varnish 迅速发展起来。挪威的最大的在线报纸 Verdens Gang(vg.no) 使用 3 台 Varnish 代替了原来的 12 台 Squid,性能比以前更好,这是 Varnish 最成功的应用案例。

1、varnish系统架构

varnish主要运行两个进程:Management进程和Child进程(也叫Cache进程)。

Management进程主要实现:

应用新的配置、编译VCL、监控varnish、初始化varnish以及提供一个命令行接口等。Management进程会每隔几秒钟探测一下Child进程以判断其是否正常运行,如果在指定的时长内未得到Child进程的回应,Management将会重启此Child进程。

Child进程包含多种类型的线程,常见的如:

Command line:命令行接口;
Storage hashing:管理存储及缓存中的键
log stats:记录日志及统计数据
Backend communication:与后端服务器通信使用
Acceptor线程:接收新的连接请求并响应;
Worker线程:child进程会为每个会话启动一个worker线程,因此,在高并发的场景中可能会出现数百个worker线程甚至更多;
Object Expiry线程:管理缓存项过期时间,一旦过期,从缓存中清理过期内容;

Varnish依赖“工作区(workspace)”以降低线程在申请或修改内存时出现竞争的可能性。在varnish内部有多种不同的工作区,其中最关键的当属用于管理会话数据的session工作区。

2、varnish日志

为了与系统的其它部分进行交互,Child进程使用了可以通过文件系统接口进行访问的共享内存日志(shared memory log),因此,如果某线程需要记录信息,其仅需要持有一个锁,而后向共享内存中的某内存区域写入数据,再释放持有的锁即可。而为了减少竞争,每个worker线程都使用了日志数据缓存。

共享内存日志大小一般为90M,其分为两部分,前一部分为计数器,后半部分为客户端请求的数据。varnish提供了多个不同的工具如varnishlog、varnishncsa或varnishstat等来分析共享内存日志中的信息并能够以指定的方式进行显示。

3、VCL

Varnish Configuration Language (VCL)是varnish配置缓存策略的工具,它是一种基于“域”(domain specific)的简单编程语言,它支持有限的算术运算和逻辑运算操作、允许使用正则表达式进行字符串匹配、允许用户使用set自定义变量、支持if判断语句,也有内置的函数和变量等。使用VCL编写的缓存策略通常保存至.vcl文件中,其需要编译成二进制的格式后才能由varnish调用。事实上,整个缓存策略就是由几个特定的子例程如vcl_recv、vcl_fetch等组成,它们分别在不同的位置(或时间)执行,如果没有事先为某个位置自定义子例程,varnish将会执行默认的定义。

VCL策略在启用前,会由management进程将其转换为C代码,而后再由gcc编译器将C代码编译成(share object)二进制程序。编译完成后,management负责将其连接至varnish实例,即child进程。正是由于编译工作在child进程之外完成,它避免了装载错误格式VCL的风险。因此,varnish修改配置的开销非常小,其可以同时保有几份尚在引用的旧版本配置,也能够让新的配置即刻生效。编译后的旧版本配置通常在varnish重启时才会被丢弃,如果需要手动清理,则可以使用varnishadm的vcl.discard命令完成。

4、varnish的后端存储

varnish支持多种不同类型的后端存储,这可以在varnishd启动时使用-s选项指定。后端存储的类型包括:
(1)file:使用特定的文件存储全部的缓存数据,并通过操作系统的mmap()系统调用将整个缓存文件映射至内存区域(如果条件允许);
(2)malloc:使用malloc()库调用在varnish启动时向操作系统申请指定大小的内存空间以存储缓存对象;
(3)persistent(experimental):与file的功能相同,但可以持久存储数据(即重启varnish数据时不会被清除);仍处于测试期;

varnish无法追踪某缓存对象是否存入了缓存文件,从而也就无从得知磁盘上的缓存文件是否可用,因此,file存储方法在varnish停止或重启时会清除数据。而persistent方法的出现对此有了一个弥补,但persistent仍处于测试阶段,例如目前尚无法有效处理要缓存对象总体大小超出缓存空间的情况,所以,其仅适用于有着巨大缓存空间的场景。

选择使用合适的存储方式有助于提升系统性,从经验的角度来看,建议在内存空间足以存储所有的缓存对象时使用malloc的方法,反之,file存储将有着更好的性能的表现。然而,需要注意的是,varnishd实际上使用的空间比使用-s选项指定的缓存空间更大,一般说来,其需要为每个缓存对象多使用差不多1K左右的存储空间,这意味着,对于100万个缓存对象的场景来说,其使用的缓存空间将超出指定大小1G左右。另外,为了保存数据结构等,varnish自身也会占去不小的内存空间。

为varnishd指定使用的缓存类型时,-s选项可接受的参数格式如下:
    malloc[,size] 或
    file[,path[,size[,granularity]]] 或
    persistent,path,size {experimental}
    
file中的granularity用于设定缓存空间分配单位,默认单位是字节,所有其它的大小都会被圆整。

实验环境:
node3  varnish服务器: ens192 192.168.170.10  
                                         ens224 192.168.170.254
node2  backend server:  192.168.10.11          
node1  backend server1:192.168.10.12

 

基础实验配置:

varnish server:192.168.170.10 

安装varnish服务并启动服务,编辑配置文件
[root@node3 ~]# yum info varnish
[root@node3 ~]# yum -y install varnish
[root@node3 ~]# rpm -ql varnish
[root@node3 ~]# vi /etc/varnish.params
VARNISH_LISTEN_PORT=80
VARNISH_STORAGE="file,/data/varnish/cache,1g"
[root@node3 ~]# cd /etc/varnish/
[root@node3 ~]# mkdir /data/varnish/cache
[root@node3 ~]# chown -R varnish.varnish /data/varnish/cache
[root@node3 ~]# systemctl restart varnish
[root@node3 ~]# vi /etc/varnish/default.vcl
backend default {
    .host = "192.168.10.11";
    .port ="80";
}
重启varnish服务
[root@node3 ~]# varnish_reload_vcl

Backend Server:192.168.10.11
安装http服务启动服务,查看端口状态
[root@node2 ~]# yum -y install httpd
[root@node2 ~]# vi /var/www/html/index.html
<h1>Backend Server</h1>
[root@node2 ~]# systemctl start httpd
[root@node2 ~]# ss -tunlp
Netid  State      Recv-Q Send-Q Local Address:Port               Peer Address:Port              
tcp    LISTEN     0      128              :::80                           :::*                   users:(("httpd",pid=4192,fd=4),("httpd",pid=4171,fd=4),("httpd",pid=4170,fd=4),("httpd",pid=4169,fd=4),("httpd",pid=4168,fd=4),("httpd",pid=4167,fd=4),("httpd",pid=4166,fd=4))

varnishadm命令行工具连接到varnish
[root@node3 ~]# varnishadm -T 127.0.0.1:6082 -S /etc/varnish/secret 
 200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.

varnish> 
varnish> help #通过help获取命名使用
200        
help [<command>]
ping [<timestamp>]
auth <response>
quit
banner
status
start
stop
vcl.load <configname> <filename>
vcl.inline <configname> <quoted_VCLstring>
vcl.use <configname>
vcl.discard <configname>
vcl.list
param.show [-l] [<param>]
param.set <param> <value>
panic.show
panic.clear
storage.list
vcl.show [-v] <configname>
backend.list [<backend_expression>]
backend.set_health <backend_expression> <state>
ban <field> <operator> <arg> [&& <field> <oper> <arg>]...
ban.list


客户端测试访问正常
[root@node1 ~]# curl http://192.168.170.10
<h1>Backend Server</h1>

示例1:

编辑varnish配置文件
[root@node3 ~]# vi default.vcl
sub vcl_deliver {
        if (obj.hits > 0) {
        	set resp.http.X-Cache = "HIT via " + server.ip;
        }
        else {
        	set resp.http.X-Cache = "MISS via " + server.ip;
        }
        return (deliver);
}
"/etc/varnish/default.vcl" 47L, 1371C written
[root@node3 ~]# 
[root@node3 ~]# 
通过varnishadm连接到varnish 重新加载配置文件
[root@node3 ~]# varnishadm -T 127.0.0.1:6082 -S /etc/varnish/secret 
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.

varnish> vcl.list
200        
active          0 boot

varnish> vcl.load test1 default.vcl
200        
VCL compiled.

varnish> vcl.list
200        
active          0 boot
available       0 test1

varnish> vcl.use test1
200        
VCL 'test1' now active

varnish>

浏览器输入http://192.168.170.10

客户端第一次请求未命中缓存。

 客户端第二次请求命中缓存。

示例2:

[root@node2 ~]# mkdir -pv /var/www/html/{admin,login}
[root@node2 ~]# vi /var/www/html/admin
<h1>Admin</h1>
[root@node2 ~]# vi /var/www/html/login
<h1>login</h1>
[root@node3 ~]# vi /etc/varnish/default.vcl
vcl_recv {
	if (req.url ~ "(?i)^/(login|admin)") {
		return(pass);
	}
}

[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.

varnish> vcl.load test2 default.vcl
200        
VCL compiled.

varnish> vcl.use test2
200        
VCL 'test2' now active

varnish> vcl.list
200        
available       0 boot
available       0 test1
active          0 test2

浏览器测试:192.168.170.10

[root@node1 ~]# curl http://192.168.170.10/admin/
<h1>Admin</h1>

浏览器输入http://192.168.170.10/admin测试,访问的数据都是从backend server响应的,而不是从缓存服务得到的。

示例3


[root@node3 ~]# vi /etc/varnish/default.vcl
vcl_recv {

	if (req.http.User-Agent ~ "(?i)curl") {
		return(synth(405));
    }
	if (req.url ~ "(?i)^/(login|admin)") {
		return(pass);
	}
}

[root@node3 ~]# varnishadm -T 127.0.0.1:6082 -S /etc/varnish/secret 
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.
varnish> 
varnish> vcl.load test3 default.vcl
200        
VCL compiled.

varnish> vcl.use test3
200        
VCL 'test3' now active

varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
active          0 test3


curl命令请求无法访问
[root@node1 ~]# curl http://192.168.170.10/admin/
<!DOCTYPE html>
<html>
  <head>
    <title>405 Method Not Allowed</title>
  </head>
  <body>
    <h1>Error 405 Method Not Allowed</h1>
    <p>Method Not Allowed</p>
    <h3>Guru Meditation:</h3>
    <p>XID: 65581</p>
    <hr>
    <p>Varnish cache server</p>
  </body>
</html>
[root@node1 ~]#

浏览器访问正常。

示例4:


[root@node3 ~]# vi /etc/varnish/default.vcl
vcl_backend_response {
			if (beresp.http.cache-control !~ "(?i)s-maxage") {
				if (bereq.url ~ "(?i)\.(jpg|jpeg|png|gif|css|js)") {
					unset beresp.http.Set-Cookie;
					set beresp.ttl = 3600s;
				}
			}
}
[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.


varnish> vcl.load test4 default.vcl
200        
VCL compiled.

varnish> vcl.use test4
200        
VCL 'test4' now active

varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
available       0 test3
active          0 test4


backend server:192.168.10.11
在服务器上上传flower.jpg图片
[root@node2 html]# ls
admin  flower.jpg  index.html  index.php  login


客户端输入http://172.16.0.6/flower.jpg 测试只要是jpg结尾的文件都会,命中缓存响应给客户端。

示例5:

示例5
[root@node3 ~]# vi /etc/varnish/default.vcl
sub vcl_recv {
	if (req.restarts == 0) {
	if (req.http.X-Fowarded-For) {
		set req.http.X-Forwarded-For = req.http.X-Forwarded-For + "," + client.ip;
	} else {
		set req.http.X-Forwarded-For = client.ip;
	}
	}
}
[root@node3 ~]# varnishadm -T 127.0.0.1:6082 -S /etc/varnish/secret 
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.
varnish> vcl.load test5 default.vcl	
200        
VCL compiled.
varnish> vcl.use test5
200        
VCL 'test5' now active
varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
available       0 test3
available       0 test4
available       0 test5

backend server:192.168.10.11

[root@node2 ~]# vi /etc/httpd/conf/httpd.conf
LogFormat "%{X-Forwarded-For}i
[root@node2 ~]# systemctl restart httpd

backend server收到的客户端请求的地址确实是客户端自己的ip地址
[root@node2 ~]# tail /var/log/httpd/access_log
192.168.10.254 - - [22/Nov/2018:13:20:38 +0800] "GET /favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
192.168.10.254 - - [22/Nov/2018:13:21:08 +0800] "GET /admin/index.html HTTP/1.1" 304 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
192.168.10.254 - - [22/Nov/2018:13:22:14 +0800] "GET /admin/index.html HTTP/1.1" 304 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
192.168.10.254 - - [22/Nov/2018:13:22:46 +0800] "GET /favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
192.168.10.254 - - [22/Nov/2018:13:22:51 +0800] "GET /admin/index.html HTTP/1.1" 304 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
172.17.1.129 - - [22/Nov/2018:13:24:48 +0800] "GET /admin/index.html HTTP/1.1" 304 - "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
172.17.1.129 - - [22/Nov/2018:13:24:48 +0800] "GET /favicon.ico HTTP/1.1" 404 209 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"
172.17.1.130 - - [22/Nov/2018:13:35:45 +0800] "GET /admin HTTP/1.1" 301 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36"
172.17.1.130 - - [22/Nov/2018:13:35:45 +0800] "GET /admin/ HTTP/1.1" 200 15 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36"
172.17.1.130 - - [22/Nov/2018:13:35:59 +0800] "GET /admin/ HTTP/1.1" 200 15 "-" "Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Mobile Safari/537.36"
[root@node2 ~]#

示例6:


[root@node3 ~]# vi /etc/varnish/default.vcl
sub vcl_recv {
	if (req.method == "PURGE") {
		return(purge);
	}
#	if (req.http.User-Agent ~ "(?i)curl") {
#		return(synth(405));
#   }
}

vcl.load test6 default.vcl
vcl.use test6
[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.


varnish> vcl.load  test6 default.vcl
200        
VCL compiled.

varnish> vcl.use test6
200        
VCL 'test6' now active

varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
available       0 test3
available       0 test4
available       0 test5
active          0 test6

客户端第一次请求未命中缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 11:41:48 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 131164
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive

客户端第二次请求命中缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 11:41:48 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 131167 131165
Age: 34
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-alive

客户端purge命中缓存完成
[root@node1 ~]# curl -X PURGE http://192.168.170.10/index.html 
<!DOCTYPE html>
<html>
  <head>
    <title>200 Purged</title>
  </head>
  <body>
    <h1>Error 200 Purged</h1>
    <p>Purged</p>
    <h3>Guru Meditation:</h3>
    <p>XID: 98364</p>
    <hr>
    <p>Varnish cache server</p>
  </body>
</html>

客户端再次请求未命中缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 11:42:53 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 98366
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive

客户端再次请求又未命中缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 11:42:53 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 98369 98367
Age: 4
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-alive

通过curl -X PURGE http://192.168.170.10/index.html 说明如果缓存命中将从缓存中删除。

示例7:


做访问控制修剪

[root@node3 ~]# vi /etc/varnish/default.vcl
acl_purgers {
	"127.0.0.0"/8
	"192.168.0.0"/16;
}

sub vcl_recv {
	if (req.method == "PURGE") {
		if(!client.ip ~ purgers) {
			return (synth(405,"Purging not allowed for " + client.ip));
			}
			return(purge);
	}
#	if (req.http.User-Agent ~ "(?i)curl") {
#		return(synth(405));
#   }
}
[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
vcl.load test7 default.vcl
200        
VCL compiled.

varnish> vcl.use test7
200        
VCL 'test7' now active

varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
available       0 test3
available       0 test4
available       0 test5
available       0 test6
active          0 test7

node1内网主机:192.168.170.8 

客户端第一次请求未命中缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 11:53:44 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 98371
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive
客户端第二次请求命中缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 11:53:44 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 131174 98372
Age: 2
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-alive
客户端用purge命令修剪命中缓存
[root@node1 ~]# curl -X PURGE http://192.168.170.10/index.html 
<!DOCTYPE html>
<html>
  <head>
    <title>200 Purged</title>
  </head>
  <body>
    <h1>Error 200 Purged</h1>
    <p>Purged</p>
    <h3>Guru Meditation:</h3>
    <p>XID: 131176</p>
    <hr>
    <p>Varnish cache server</p>
  </body>
</html>

curl -X PURGE http://172.16.0.6/index.html内网主机允许purge,外网主机不允许purge

示例8: 


banning类型的操作

[root@node2 ~]# mkdir /var/www/html/javascripts
[root@node2 ~]# vi /var/www/html/javascripts/test.js
hello

 客户端测试命中varnish缓存
[root@node1 ~]# curl -I http://192.168.170.10/javascripts/test.js
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 12:23:23 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Thu, 22 Nov 2018 12:19:19 GMT
ETag: "6-57b3fe04ddfa2"
Content-Length: 6
Content-Type: application/javascript
X-Varnish: 98380
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive

[root@node1 ~]# curl -I http://192.168.170.10/javascripts/test.js
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 12:23:23 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Thu, 22 Nov 2018 12:19:19 GMT
ETag: "6-57b3fe04ddfa2"
Content-Length: 6
Content-Type: application/javascript
X-Varnish: 98383 98381
Age: 6
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-aliv

[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
varnish> ban req.url ~ ^/javascripts  清理varnish缓存项
客户端再次请求未命中varnish,说明清除缓存成功
[root@node1 ~]# curl -I http://192.168.170.10/javascripts/test.js
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 12:24:08 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Thu, 22 Nov 2018 12:19:19 GMT
ETag: "6-57b3fe04ddfa2"
Content-Length: 6
Content-Type: application/javascript
X-Varnish: 131183
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive


示例9:

缓存项修剪2

[root@node3 ~]# vi /etc/varnish/default.vcl
	if (req.method == "BAN") {
		ban("req.http.host == " + req.http.host + " && req.url == " + req.url);
		# Throw a synthetic page so the request won't go to the backend.
		return(synth(200, "Ban added"));
	}	

等同于以下;
varnish> ban req.http.host == 172.16.0.6 && req.url == /javascripts/test.js
[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.

varnish> vcl.load test9 default.vcl
200        
VCL compiled.

varnish> vcl.use test9
200        
VCL 'test9' now active
varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
available       0 test3
available       0 test4
available       0 test5
available       0 test6
available       0 test7
active          0 test9

客户端测试请求realserver发现命中varnish缓存
[root@node1 ~]# curl -I http://192.168.170.10/javascripts/test.js
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 12:24:08 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Thu, 22 Nov 2018 12:19:19 GMT
ETag: "6-57b3fe04ddfa2"
Content-Length: 6
Content-Type: application/javascript
X-Varnish: 131186 131184
Age: 1388
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-alive
客户端通过BAN命令操作清除varnish缓存成功
[root@node1 ~]# curl -X BAN http://192.168.170.10/javascripts/test.js
<!DOCTYPE html>
<html>
  <head>
    <title>200 Ban added</title>
  </head>
  <body>
    <h1>Error 200 Ban added</h1>
    <p>Ban added</p>
    <h3>Guru Meditation:</h3>
    <p>XID: 98385</p>
    <hr>
    <p>Varnish cache server</p>
  </body>
</html>
客户端再次请求realserver未命中varnish缓存
[root@node1 ~]# curl -I http://192.168.170.10/javascripts/test.js
HTTP/1.1 200 OK
Date: Thu, 22 Nov 2018 12:47:52 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Thu, 22 Nov 2018 12:19:19 GMT
ETag: "6-57b3fe04ddfa2"
Content-Length: 6
Content-Type: application/javascript
X-Varnish: 98387
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive

[root@node1 ~]#

 示例11:

varnish做代理主机
varnish 作为代理,需要使用directors功能
[root@node3 ~]# vi /etc/varnish/default.vcl
	import directors;    # load the directors

	backend server1 {
		.host = "192.168.10.11";
		.port = "80";
	}
	backend server2 {
		.host = "192.168.10.12";
		.port = "80";
	}

	sub vcl_init {
		new GROUP_NAME = directors.round_robin();
		GROUP_NAME.add_backend(server1);
		GROUP_NAME.add_backend(server2);
	}

	sub vcl_recv {
		# send all traffic to the bar director:
		set req.backend_hint = GROUP_NAME.backend();
	}
重新加载配置文件
varnish> vcl.load test10 default.vcl
200        
VCL compiled.

varnish> vcl.use test10
200        
VCL 'test10' now active
varnish>
客户端请求realserver命中varnish缓存
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Fri, 23 Nov 2018 03:56:23 GMT
Server: Apache/2.4.6 (CentOS)
Last-Modified: Wed, 21 Nov 2018 11:52:30 GMT
ETag: "18-57b2b628e8597"
Content-Length: 24
Content-Type: text/html; charset=UTF-8
X-Varnish: 98400 98398
Age: 14
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-alive
客户端通过BAN命令操作清除varnish缓存成功,再次请求数据从backend server取数据是在backend server2上取数据
[root@node1 ~]# curl -X BAN http://192.168.170.10/index.html
<!DOCTYPE html>
<html>
  <head>
    <title>200 Ban added</title>
  </head>
  <body>
    <h1>Error 200 Ban added</h1>
    <p>Ban added</p>
    <h3>Guru Meditation:</h3>
    <p>XID: 98402</p>
    <hr>
    <p>Varnish cache server</p>
  </body>
</html>
[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Fri, 23 Nov 2018 03:52:18 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Fri, 23 Nov 2018 02:34:57 GMT
ETag: "414bb-19-57b4bd44121da"
Content-Length: 25
Content-Type: text/html; charset=UTF-8
X-Varnish: 131208
Age: 0
Via: 1.1 varnish-v4
X-Cache: MISS via 192.168.170.10
Connection: keep-alive

[root@node1 ~]# curl -I http://192.168.170.10/index.html
HTTP/1.1 200 OK
Date: Fri, 23 Nov 2018 03:52:18 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Fri, 23 Nov 2018 02:34:57 GMT
ETag: "414bb-19-57b4bd44121da"
Content-Length: 25
Content-Type: text/html; charset=UTF-8
X-Varnish: 98404 131209
Age: 7
Via: 1.1 varnish-v4
X-Cache: HIT via 192.168.170.10
Connection: keep-alive

[root@node1 ~]# curl http://192.168.170.10/index.html
<h1>Backend Server2</h1>
[root@node1 ~]#

 

示例11:

[root@node3 ~]#vi /etc/varnish/default.vcl
probe check {
	.url = "/index.html";
	.window = 5;
	.threshold = 4;
	.interval = 2s;
	.timeout = 1s;
}
	backend server1 {
		.host = "192.168.10.11";
		.port = "80";
		.probe = check;
	}
	backend server2 {
		.host = "192.168.10.12";
		.port = "80";
		.probe = check;
	}


[root@node3 ~]# varnishadm -S /etc/varnish/secret -T 127.0.0.1:6082
200        
-----------------------------
Varnish Cache CLI 1.0
-----------------------------
Linux,3.10.0-862.el7.x86_64,x86_64,-sfile,-smalloc,-hcritbit
varnish-4.0.5 revision 07eff4c29

Type 'help' for command list.
Type 'quit' to close CLI session.


varnish> vcl.load test11 default.vcl
200        
VCL compiled.

varnish> vcl.use test11
200        
VCL 'test11' now active

varnish> vcl.list
200        
available       0 boot
available       0 test1
available       0 test2
available       0 reload_2018-11-22T02:16:42
available       0 test3
available       0 test4
available       0 test5
available       0 test6
available       0 test7
available       0 test9
available       0 test10
active          0 test11


[root@node2 ~]# systemctl stop httpd
[root@node2 ~]# systemctl start httpd

varnish> backend.
backend.list       backend.set_health
varnish> backend.list 
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Healthy 5/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5

varnish> 
varnish> backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Sick 0/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5

varnish> backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Sick 1/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5
backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Sick 2/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5
backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Sick 3/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5
backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Healthy 4/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5
backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Healthy 5/5
server2(192.168.10.12,,80)     2      probe      Healthy 5/5





手动做健康状态检测
varnish> backend.set_health server2 Sick
200        

varnish> backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Healthy 5/5
server2(192.168.10.12,,80)     2      sick       Healthy 5/5

varnish> backend.set_health server2 Healthy
200        
backend.list
200        
Backend name                   Refs   Admin      Probe
default(192.168.10.11,,80)     10     probe      Healthy (no probe)
server1(192.168.10.11,,80)     2      probe      Healthy 5/5
server2(192.168.10.12,,80)     2      healthy    Healthy 5/5


示例:12
设置后端主机的属性

 

trouble is trouble
关注
专栏目录
Varnish用法详解
小新没有蜡笔
11-05 1251
简介:This is Varnish Cache, a high-performance HTTP accelerator varnish相关varnish 相关文件路径/etc/varnish/varnish.params: 配置varnish服务进程的工作特性,例如监听的地址和端口,缓存机制; /etc/varnish/default.vcl:配置各Child/Cache线程的缓存策略;var
varnish详解与功能搭建
wnccmyr的博客
08-28 766
varnish介绍 Varnish cache,或称Varnish,是一套高性能的反向网站缓存服务器(reverse proxy server) varnish拥有俩套配置文件;一套配置文件用于varnish自身进程的参数配置,另一套用于定义缓存规则;定义缓存规则需要使用灵活的语言来定义,这就是VCL(varnish语言);应用时需要将VCL编写的规则送给VCC编译后才能运行,所以安装varnish需要依赖gcc编译器。 安装 下载相应的软件包 jemalloc-3.6.0-1.el7.x86_6
varnish基础概念详解
weixin_33978016的博客
07-21 156
varnish基础概念详解比起squid更加轻量级,大致有以下几个特点:·可以基于内存缓存,也可以在磁盘上缓存,但是就算存放在磁盘上,也不能实现持久缓存    只要进程崩溃,此前缓存统统失效,无论是在内存还是在磁盘,但是现在已经具备持久缓存功能,但是仍然在实验阶段,经常容易崩溃,而且最大大小不能超过1G    如果期望内存大小超过几十个G,比如图片服务器,纯粹使用内存,性能未必好,这时候可以使用磁...
varnish 详解
weixin_44983653的博客
10-10 765
varnish 详解相关概念1、Web Page Cache2、Cache-related Headers Fields3、请求报文和响应报文关于缓存的内容varnish1、概念2、程序架构3、程序环境4、缓存存储机制5、varnish 程序的选项6、重载 vcl 配置文件(两种方法)7、varnishadm 介绍8、vcl 介绍8.1 state engine8.2 vcl 的默认配置查看8.3...
Linux中使用Varnish详解
因为觉得还太菜所以暂时不更新
12-23 577
一.Varnish概念 以下部分资料来源于百度百科 1、什么是Varnish Varnish是一款高性能的开源HTTP加速器,Varnish Cache是一个所谓的反向缓存代理服务器。它通过缓存服务端的输出来减少你的网站/应用/API的加载时间,从而提高性能。 2、Varnish的线程 总体流程:主进程fork子进程,主进程等待子进程的信号,子进程退出后,主进程重新启动子进程,子进程生成若干线程。...
秒杀核心设计——防止超卖、高并发与varnish详解
路漫漫,水迢迢
11-16 3107
1、商品详情页面静态化 2、varnish加速 Varnish可以有效降低web服务器的负载,提升访问速度。根据官方的说法,Varnish是一个cache型的HTTP反向代理。 按照HTTP协议的处理过程,web服务器接受请求并且返回处理结果,理想情况下服务器要在不做额外处理的情况下,立即返回结果,但实际情况并非如此。本文将分析在web服务器处理请求的过程中,Varnish能起到什么作用 w
Varnish配置文件详解(架构师之路)
01-11
既然Varnish需要在多台服务器上缓存数据,就需要Varnish映射所有的URL到一台单独的主机。 代码如下: backend webserver {  .host = “127.0.0.1”;  .port = “80”;  .connect_timeout = 4s;  .first_byte_...
Varnish详解
weixin_34351321的博客
09-25 111
Varnish cache,或称Varnish,是一套高效能的反向代理,缓存器(reverseproxy server)。varnish主要运行两个进程:Management进程和Child进程(也叫Cache进程)。安装varnish,管网下载rpm包,varnish-3.0.5-1.el6.x86_64.rpm varnish-docs-3.0.5-1.el6.x86_...
varnish安装及配置(二)
莫激动
01-10 219
  Varish Configuration Language 简称VCL,通过它我们可以完成一些复杂的逻辑处理。下面将详细介绍:   Backend declarations:   backend www { .host = "www.example.com"; .port = "80"; .connect_timeout = 1s; .first_byte_t...
varnish 示例详解
weixin_44983653的博客
10-11 349
1、缓存命中次数示例 obj.hits 是内建变量,用于保存某缓存项的从缓存中命中的次数。 基本语法如下: sub vcl_deliver { if (obj.hits>0) { set resp.http.X-Cache = "HIT via " + server.ip; } else { set resp.h...
Varnish
weixin_44846409的博客
06-20 509
1)Varnish是一款高性能的开源HTTP加速器,具有反向代理,缓存的功能 2)VCL (Varnish Configuration Language)处理流程图: 处理过程大致分为如下几个步骤: Receive 状态,也就是请求处理的入口状态,根据 VCL 规则判断该请求应该是 Pass 或 Pipe,或者进入 Lookup(本地查询)。 Lookup 状态,进入此状态后,会在 hash 表...
名词解释
小白编程
06-02 173
今天接触了许多新东西,大都关于php超大规模架构的,下面对接触的新名词进行解释备忘。 HipHop:HipHop for PHP 在技术上并不是一个 PHP 的编译器,它用来将 PHP 源码转成高度优化的 C++ 代码并使用 g++ 进行编译,这是 Facebook 公司推出的。 Page Speed:开源的Firefox/Firebug 插件。网站管理员和网络开发人员可以使用 Pag...
varnish入门理解
ThinkerWalker
08-26 2776
简介 Varnish 是一款高性能且开源的反向代理服务器和 HTTP 加速器,开源的软件。但是也有企业版,有更多的功能。 我们知道,在计算机界,缓存为王。我们访问百度时候,有没有觉得在访问时候相当的快,这就是CDN缓存的结果。以前,常用squid来进行缓存,但是squid已经是过去时了。varnish和squid的关系,相当于现在的nginx和Apache的关系,squid已经是负重前
varnish日志和统计工具 Reporting and statistics
weixin_33858249的博客
10-30 186
【环境】varnish4.x参考:https://www.varnish-cache.org/docs/4.1/users-guide/operation-logging.html 参考:http://book.varnish-software.com/4.0/chapters/Appendix_B__Varnish_Programs.html参考:http://www.36...
varnish日志相关
remotesupport的专栏
07-23 1423
varnish提供了varnishlog和varnishncsa两个工具用于日志处理。varnishlog 用于记录varnish 自身定义的日志格式,varnishncsa 用于记录作类似apache/ncsa定义的日志格式 。两个工具可以说是互相补充,前者便于详细的查看varnish 缓存、接收、发送、是否命中等详细的处理过程,便于对varnish进行性能分析和故障查询;后者便于日常的日志分析
Varnish 2.1.2安装配置详解
"这份文档详细介绍了Varnish 2.1.2的安装、配置和使用方法,包括安装过程、配置示例、日志管理、缓存清除以及各种高级配置技巧,旨在帮助用户提升Web服务器的性能和效率。" Varnish是一个高性能的HTTP缓存加速器,...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值