Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users
Course Of The Month
9 days, 23 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Pros and Cons of proxy servers?
Posted on 2009-07-05
I don't have a problem to solve but I'm interested in what the Experts have to say about the pro's and con's of proxy servers. Specifically putting a proxy server that does caching in front of a web server. On the pro side, as I understand it the proxy caches the web server responses, thus relieving some of the load on the web server. It can also have a security benefit because all requests are filtered through the proxy, and only the proxy is actually talking to the web server.
On the con side, you have the added expense of hardware and software, I work in a Windows shop. Plus the proxy can become a bottleneck, or need repair of replaced.
I have a friend who works in a mixed enviroment, Linux and Windows, and who works on the Linux side of the fence. He always sets up a Squid proxy in front of his Apache web servers.
The gains in performance are impressive, along with the decrease in the load on the web server.
I've talked with others who say that proxies are a pain and not worth the aggravation. What are the views of some of you Experts out there who have experience with setting up proxie caching servers in front of web servers. I work with IIS, but I'm no expert. Windows 2003 Server and IIS v6.
Thanks for taking the time to reply and helping out those of us who are not experts.
On the con side, you have the added expense of hardware and software, I work in a Windows shop. Plus the proxy can become a bottleneck, or need repair of replaced.
I have a friend who works in a mixed enviroment, Linux and Windows, and who works on the Linux side of the fence. He always sets up a Squid proxy in front of his Apache web servers.
The gains in performance are impressive, along with the decrease in the load on the web server.
I've talked with others who say that proxies are a pain and not worth the aggravation. What are the views of some of you Experts out there who have experience with setting up proxie caching servers in front of web servers. I work with IIS, but I'm no expert. Windows 2003 Server and IIS v6.
Thanks for taking the time to reply and helping out those of us who are not experts.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
4-
4
3- +2
16 Comments
Hi,
any decent modern web server will be able to do caching on web content - including dynamic. Why would you want another server to cache the cached content, I have no idea.
improvement in performance will only be 'impressive' when the web server is not well resourced to begin with.
personally, I would say that 9 times out of 10, a proxy server will provide no benefit at all - in fact quite the opposite.
Cheers.
any decent modern web server will be able to do caching on web content - including dynamic. Why would you want another server to cache the cached content, I have no idea.
improvement in performance will only be 'impressive' when the web server is not well resourced to begin with.
personally, I would say that 9 times out of 10, a proxy server will provide no benefit at all - in fact quite the opposite.
Cheers.
Active 1 day ago
It depends on your setup. If you have a single web server serving up static content that has the proper capacity no a proxy server (actually it is called a reverse proxy server) will not help.
However, say your web server is really an application server and say you have 2, 3, or 20 of them. Then a proxy server (actually at least two clustered for fail over) will help.
Proxy servers can help offload work from the web server in a couple of ways. Caching static content, SSL offload, dynamic compression, and load balancing. This can offload enough work from the back-end servers that you can either handle more work with the same number of servers or have fewer servers.
They do add hardware and software, but generally their cost is much less than a application server and depending on your enviroment can reduce the number of back-end servers you need.
However, say your web server is really an application server and say you have 2, 3, or 20 of them. Then a proxy server (actually at least two clustered for fail over) will help.
Proxy servers can help offload work from the web server in a couple of ways. Caching static content, SSL offload, dynamic compression, and load balancing. This can offload enough work from the back-end servers that you can either handle more work with the same number of servers or have fewer servers.
They do add hardware and software, but generally their cost is much less than a application server and depending on your enviroment can reduce the number of back-end servers you need.
fairly good summary above by qiltir. I would also add that they provide great performance boosts if you have a global orgainization that you have people all over the world hitting a server in a single space. Especially if that web server or application server is serving up fairly large files. You can from a single source push out all of the content to the edge proxy servers therefore increasing load time for your remote users (pulling content from a edge device in their local office rather than from across the globe) this loads pages quicker makes downloads faster and greatly reduces the bandwidth used/load on your network.
good point from spguru! :-) - multiple proxy servers ahead of a single application server may be a low cost way to boost performance of a single application without the complexity of a load balanced web app.
I maintain that one proxy <-> one web server is a waste of resources.
Cheers!
I maintain that one proxy <-> one web server is a waste of resources.
Cheers!
Good stuff guys. Let me ask you this, you have a single web server that's due to have it's hardware upgraded. Would you buy a pair of beefy servers and set them up for load balancing? Or buy one beefy one, and two lesser ones and set them up as proxies? They serve up dynamic content that include a ton of images to a global audience from a single location.
Active 1 day ago
How much of the content is truly dynamic? I would assume that the images are really static images.
Some time ago, I was struggling with dos attack on web server. Various IPs were connecting to the server, and not finishing the request.
Putting squid proxy before the server bumped the dos limit greatly, from hundreds to thousands requests before actual dos.
Putting squid proxy before the server bumped the dos limit greatly, from hundreds to thousands requests before actual dos.
Westez, Where will the users be coming from on the majority basis? 3 different sites or more? and where would you put the two proxies?
meverest - thanks man, I'm just trying to learn something here. The longest journey begins with a single step. And it sure helps to follow those who have already been down the path.
giltjr - Let me get back to you on how much of the content is dynamic. I'll see if I can come up with a percentage. I know there's a lot of ASP pages, and some .NET and C# that's tied to some SQL db's.
ravenpl - Are you saying that by putting Squid before the web server helped by limiting the number of requests from thousands to hundreds? I thought a reverse proxy in front of the web server would stop a dos from happening at all.
spguru14 - We're an academic institution so the sites are educational and used by folks from around the globe. And we only have one location, so the proxies would be located here in front of the web server. I'm guessing that your asking if we have multiple locations, similar to a branch office in another city or country that ties back to the home office.
giltjr - Let me get back to you on how much of the content is dynamic. I'll see if I can come up with a percentage. I know there's a lot of ASP pages, and some .NET and C# that's tied to some SQL db's.
ravenpl - Are you saying that by putting Squid before the web server helped by limiting the number of requests from thousands to hundreds? I thought a reverse proxy in front of the web server would stop a dos from happening at all.
spguru14 - We're an academic institution so the sites are educational and used by folks from around the globe. And we only have one location, so the proxies would be located here in front of the web server. I'm guessing that your asking if we have multiple locations, similar to a branch office in another city or country that ties back to the home office.
Active 1 day ago
The reason for my question is that if the majority of the content served up is static, then proxy servers would be a benefit. If the majority is dynamic, then spend the money on the servers.
Since you have users around the globe, the locating proxies in various places around the world and doing load balancing around the world. I don't know what your budget is, but there are companies (like Akamai) that will do the proxy function for you. Of course it does cost money and I have no clue how much.
A reverse proxy will lessen the possibility of a DOS, it does not remove it.
Since you have users around the globe, the locating proxies in various places around the world and doing load balancing around the world. I don't know what your budget is, but there are companies (like Akamai) that will do the proxy function for you. Of course it does cost money and I have no clue how much.
A reverse proxy will lessen the possibility of a DOS, it does not remove it.
> I thought a reverse proxy in front of the web server would stop a dos from happening at all.
Eventually the proxy can be dos-ed as well. Isn't it?
Eventually the proxy can be dos-ed as well. Isn't it?
Dynamic content, single hosted location, and the visitors to the site are from all over the map.....spend the money beefing up the servers
ravenpl - >>Eventually the proxy can be dos-ed as well. Isn't it?
I wasn't sure, so hence the question. Thanks to all for schooling me.
While we're on the subject of dos. Is it possible to protect your sites from such attacks? I've just read about North Korea being a suspect in taking down several of our governments sites. I figure the folks protecting those sites know far more than I, and they got taken down.
Regarding the servers, thanks for the advice, we'll get a couple of beefy ones and set them up with load balancing. I've been searching through EE on the topic of load balancing, and have read that NLB is built in to Windows 2003, so I'm guessing that it's also included in Windows 2008 64 bit which is what we'll be installing on the new servers.
I wasn't sure, so hence the question. Thanks to all for schooling me.
While we're on the subject of dos. Is it possible to protect your sites from such attacks? I've just read about North Korea being a suspect in taking down several of our governments sites. I figure the folks protecting those sites know far more than I, and they got taken down.
Regarding the servers, thanks for the advice, we'll get a couple of beefy ones and set them up with load balancing. I've been searching through EE on the topic of load balancing, and have read that NLB is built in to Windows 2003, so I'm guessing that it's also included in Windows 2008 64 bit which is what we'll be installing on the new servers.
Featured Post
Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Learn about cloud computing and its benefits for small business owners.
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special.
It's completely agentless, but does let you create an agent, if you desire.
It offers powerful scalability …
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Suggested Courses
Earn Certification
HTML5 Specialist - Certification
Free withPremium
Course of the Month9 days, 23 hours left to enroll
624 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.