[squid-users] Squid.Conf for Multi-Tier Hierarchies

We are trying to implement a 2 tier hierarchy. I just bought Duane Wessels
book in the hope that there were lots of examples of configuration files,
but alas, no luck.

Where can I find examples of Squid Configuration files for 2 or 3 tier
hierarchies? We couldn't get the correct behaviour until we started
to use 'never_direct'.

Assuming I can use the words child-parent for a 2 tier hierarchy rather
than sibling-parent, then ...

Our current configuration on the child proxy ( i.e. not the parent ) has
the following changes over default

        cache_peer proxy.MYDOMAIN parent 3128 3130

        acl staff src MY-CLASS-C-ADDRESS/24
        http_access allow staff
        http_access allow localhost

        acl local-servers dstdomain MYDOMAIN
        acl all src 0.0.0.0/0.0.0.0
        never_direct deny local-servers
        never_direct allow all

After the double negatives of the last 4 configuration lines, I got lost.
So much for being a native English speaker. Am I correct that the sense is
really

        acl local-servers dstdomain ANY-COMPUTER-IN-MYDOMAIN
        acl all src ANY-COMPUTER-YOU-LIKE

        never deny direct (if going to) local-servers
        ... i.e. PERMIT direct connections
        never allow direct (if going to) all
        ... i.e. -> REFUSE direct connections

We had to use never-direct to ensure that ALL requests from the child
proxy went to the parent as suggested in the 'cache_peer' section and
documented in 'never_direct'. I still don't fully understand the meaning
of the 'default' keyword on 'cache_peer'. It appears to be meaningless
or is that just my (bad) command of English?

Also, how should I define 'dns_servers' for maximum speed? Squid does not
appear to use the resolver on the current machine unless you have only
that machine in 'dns_servers' but rather makes DNS requests directly to
machines it finds in /etc/resolv.conf. Does that slow things down?

Thanks - Damian

Pacific Engineering Systems International, 22/8 Campbell St, Artarmon NSW 2064
Ph:+61-2-99063377 .. Fx:+61-2-99063468 | unsolicited email not wanted here !
Views and opinions here are mine and not those of any past or present employer
Received on Fri Sep 20 2002 - 04:08:25 MDT