?
Solved

How to setup a Squid Reverse Proxy

Posted on 2006-11-29
6
Medium Priority
?
7,033 Views
Last Modified: 2012-05-05
Hello,

I have a website (windows IIS) that is very busy and I wanted to setup an SQUID Reverse proxy to offload some of the traffic. I wanted to know what are the best practices, and how to setup it up on a Linux (CentOS)?

Thanks in advance,

Patrick B.
 
0
Comment
Question by:blueglacier
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 48

Expert Comment

by:Tintin
ID: 18042799
Firstly, my recommendation would be to *NOT* use squid as a reverse proxy.  I had a very large client using Squid as a reverse proxy for around 10 websites and the limitations around SSL and redirections/rewriting became apparent very early on.

Using Apache in reverse proxy mode is much more efficient and SSL management is so much easier than you can do in squid.
0
 
LVL 43

Assisted Solution

by:ravenpl
ravenpl earned 500 total points
ID: 18043441
Tintin: I'm suprised with Your experience. On the other side of the world, I know popular portals that are accelerated(and protected) by squid farms - works fine.
http://sial.org/howto/squid/#s3.2 # for one host
http://www.option-c.com/xwiki/Squid_Reverse_Proxy # for host based
0
 
LVL 48

Expert Comment

by:Tintin
ID: 18048550
If you have a very basic and straight forward reverse proxy environment, then squid will be just fine.  However, once you start getting into more complex requirements such as rewrite/redirections, SSL bridging, URL/HTML URL mapping etc, then Apache is far superior.

The current stable release of squid is 2.6, and its SSL support is limited compared to Apache.
0
Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

 
LVL 1

Author Comment

by:blueglacier
ID: 18048659
Tintin that sounds interesting.  So instead of setting up  squid, I would replace it with Apache.  Is this what you are suggesting?

 [internet]--[Firewall]--[Apache(as reverse proxy)]--[IIS(wtih ASP.NET Application]

Also, the only problems you found is with SSL right. So only the part that handles payment procesing will be affected?

Do you have any examples/docs on this setup.

Thanks,

Patrick
PS: Thanks for the feedback Ravenpl I am checking those links today.
0
 
LVL 48

Accepted Solution

by:
Tintin earned 500 total points
ID: 18048776
My preference is for Apache, but Squid is still OK if you don't have complex rules as described in my previous posts.  Additionally, squid will probably be a bit better if the main thing you want to use it for is a reverse proxy cache, although the mod_cache Apache module was vastly improved in Apache 2.2

For info on Reverse Proxy Apache tutorial, see:

http://www.serverwatch.com/tutorials/article.php/3290851

Note that this is for Apache 2.0.  There are some improvements/enhancements in Apache 2.2, but it all depends on your exact requirements.  If you have just a very straight forward environment, then the details in this tutorial will be just fine.

0
 
LVL 1

Author Comment

by:blueglacier
ID: 18052027
Thanks for the help.

Patrick
0

Featured Post

WordPress Tutorial 1: Installation & Setup

WordPress is a very popular option for running your web site and can be used to get your content online quickly for the world to see. This guide will walk you through installing the WordPress server software and the initial setup process.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Suggested Courses
Course of the Month8 days, 13 hours left to enroll

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question