[squid-users] external ACL queue overload
Amos Jeffries
squid3 at treenet.co.nz
Mon Sep 4 14:55:42 UTC 2017
On 04/09/17 19:13, Vieri wrote:
> Hi,
>
> I sometimes get messages such as this one:
>
> WARNING: external ACL 'bllookup' queue overload. Using stale result.
>
> My squid.conf has this defined:
>
> external_acl_type bllookup ttl=60 %URI /opt/custom/scripts/run/scripts/firewall/squid_url_lookup.pl -tbl_name=shallalist_bl adv,aggressive,...
>
> Does it make sense to increase the following values:
>
> ttl=86400 children-max=50 children-startup=2 children-idle=5
>
Maybe. The ttl= value is entirely up to you, it should be long enough
not to send too many queries to the helper, and short enough that
changes to the lists which result in OK responses do not lag overly
long. Use negative_ttl= to tune the equivalent TTL for ERR results.
> I'd like to know what "children-startup" means exactly.
startup is the number of helpers Squid will start immediately on
starting or reconfiguring. If used it should be set to about the number
necessary for handling your baseline traffic load.
idle is the number of new helpers Squid will start in a batch together
if it cannot send a lookup to the already running ones. This may take
some seconds so the value needs to be large enough to pick up the minor
peak of traffic accumulated during that delay - but otherwise is arbitrary.
max is the limit beyond which Squid will not start more helpers, even if
idle says more are needed.
Amos
More information about the squid-users
mailing list