external ACL queue overload

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

external ACL queue overload

Vieri
Hi,

I sometimes get messages such as this one:

WARNING: external ACL 'bllookup' queue overload. Using stale result.

My squid.conf has this defined:

external_acl_type bllookup ttl=60 %URI /opt/custom/scripts/run/scripts/firewall/squid_url_lookup.pl -tbl_name=shallalist_bl adv,aggressive,...

Does it make sense to increase the following values:

ttl=86400 children-max=50 children-startup=2 children-idle=5

I'd like to know what "children-startup" means exactly.

Thanks,

Vieri
_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
Reply | Threaded
Open this post in threaded view
|

Re: external ACL queue overload

Amos Jeffries
Administrator
On 04/09/17 19:13, Vieri wrote:

> Hi,
>
> I sometimes get messages such as this one:
>
> WARNING: external ACL 'bllookup' queue overload. Using stale result.
>
> My squid.conf has this defined:
>
> external_acl_type bllookup ttl=60 %URI /opt/custom/scripts/run/scripts/firewall/squid_url_lookup.pl -tbl_name=shallalist_bl adv,aggressive,...
>
> Does it make sense to increase the following values:
>
> ttl=86400 children-max=50 children-startup=2 children-idle=5
>

Maybe. The ttl= value is entirely up to you, it should be long enough
not to send too many queries to the helper, and short enough that
changes to the lists which result in OK responses do not lag overly
long. Use negative_ttl= to tune the equivalent TTL for ERR results.



> I'd like to know what "children-startup" means exactly.

startup is the number of helpers Squid will start immediately on
starting or reconfiguring. If used it should be set to about the number
necessary for handling your baseline traffic load.

idle is the number of new helpers Squid will start in a batch together
if it cannot send a lookup to the already running ones. This may take
some seconds so the value needs to be large enough to pick up the minor
peak of traffic accumulated during that delay - but otherwise is arbitrary.

max is the limit beyond which Squid will not start more helpers, even if
idle says more are needed.


Amos
_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
Reply | Threaded
Open this post in threaded view
|

Re: external ACL queue overload

Vieri
Thanks for clearing that up.
I haven't seen queue overloads since. Hope this keeps up.

Vieri
_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users