[squid-users] WARNING: there are more than 100 regular expressions
Amos Jeffries
squid3 at treenet.co.nz
Mon Dec 1 08:57:39 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 28/11/2014 10:23 p.m., navari.lorenzo at gmail.com wrote:
> I saw that the error does not preclude the use of the lines over
> the 100. I have no problem with the CPU ( 7 % ) . Only I do not
> like to see " Warning"
>
The RE engine can scan for individual patterns easily enough but
copying patterns into libregex memory and scanning the entire URI 100+
times per transaction is quite an excessive amount of work for the
simple task being attempted.
Like Marcus said lists of domains are best matched using dstdomain ACL
type which does an optimized single scan of just the domain name
portion no matter how many entries there are.
If you do have no choice but to use RE, then manually combining
patterns is best. This warning is just an indication that you need to
pay some attention to reducing the count.
For example the list containing:
facebook\.com
fbcdn\.com
Can be reduced to:
f(acebook|bcdn)\.com
If you are importing a public list of domains to block please
investigate whether your list source supports squid dstdomain ACL
formats. The best lists provide files with Squid dstdomain format
(which is also almost identical to the rbldnsd 'RHSBL' data format).
Amos
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (MingW32)
iQEcBAEBAgAGBQJUfC2DAAoJELJo5wb/XPRjQuoH/31JMC52DYzvZqp1xycEIlwU
BTmdZCXZNsnYNklKW0MmN+Li3C3K87d5O07og7EsovG0syFxXlJc5HSvEBgqwQ9v
iAqTLkrg23EMKmqU7cM+A6MhMcuCGK7r//JAQiCqG6JD0iDXS5V8GFTOv2FYLr5e
yHhJ3p5vbmh/K8Qx6JrThTwNq8h41g9ek1PRG+BQj9iem80ujK8m616dXqhJGB4g
3BvgSHbuhkSD9MfOcz1lkftR1+baBK8XtIn/Ue/MkEmveTzbOre+mXEOryZX9ny+
a9nL6ioOzzAIBVqzaLz00xhZkp7Lm2iifycn8p3p6tPi+zIxcp70TemruOON1uE=
=JLTR
-----END PGP SIGNATURE-----
More information about the squid-users
mailing list