book

Web Caching

by Duane Wessels

June 2001

Intermediate to advanced

320 pages

9h 18m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Audience
Web SitesMailing Lists
Web ArchitectureClients and ServersProxiesWeb ObjectsResource Identifiers
HTTPFTPSSL/TLSGopher
LatencyBandwidthServer Load

Browser CachesCaching ProxiesSurrogates
HTTP RequestsOrigin Server RequestsProxy RequestsNon-HTTP Proxy Requests
Status CodesRequest MethodsExpiration and ValidationCache-controlAuthenticationCookiesDynamic Content
Last-modified TimestampsEntity TagsWeak and Strong Validators
The no-cache DirectiveThe max-age DirectiveThe min-fresh Directive
Least Recently Used (LRU)First In, First Out (FIFO)Least Frequently Used (LFU)SizeGreedyDual-Size (GDS)Other Algorithms
PrivacyAccess LogsMaking Requests Anonymous
Does Caching Infringe?Cases and PrecedentsThe DMCAHTTP’s Role
Java Applets
Proxy Addresses
Configuring Microsoft Internet ExplorerConfiguring Netscape NavigatorNCSA Mosaic, Lynx, and Wget
Writing a Proxy Auto-Configuration FunctionSample PAC ScriptsSetting the Proxy Auto-Configuration Script
Overview
Inline CachesLayer Four SwitchesWCCPCisco Policy Routing
LinuxipchainsiptablesFreeBSDOther Operating Systems
It’s Difficult for Users to BypassPacket Transport ServiceRouting ChangesIt Affects More Than Browsers and UsersNo-Intercept ListsAre Port 80 Packets Always HTTP?HTTP Interoperation ProblemsIP Interoperation Problems
Important HTTP HeadersDateLast-modifiedExpiresCache-controlContent-length
Why?LatencyHiding network failuresServer load reductionTen Ways to be Cache-FriendlyApacheThe Expires headerGeneral header manipulationSetting headers from CGI scriptsHow to Choose Expiration Times
What About Dynamic Responses?What About Advertisements?Getting Accurate Access Counts
How Hierarchies Work
PerformanceNondefault Routing
TrustLow Hit RatiosEffects on RoutingFreshnessLarge FamiliesAbuses, Real and ImaginedError MessagesFalse HitsForwarding LoopsFailures and Service Denial
ICPHistoryFeaturesHit predictionProbing the networkObject data with hitsSource RTT measurementsIssuesDelaysBandwidthFalse hitsUDPNo request methodQueries for uncachable responsesInteroperationUnwanted queriesMulticast ICP
Issues
Bloom FiltersComparing Digests and ICP
The Hot Spare
Appliance or Software SolutionAppliancesSoftware
What to Monitor?
UCD-SNMPRRDToolOther Tools
MetricsThroughputResponse TimeHit RatioConnection CapacityCost
Disk ThroughputCPU PowerNIC BandwidthMemoryNetwork State
Web PolygraphBlastWisconsin Proxy BenchmarkWebJammaOther Benchmarks
TCP Delayed ACKsPort Number ExhaustionNIC Duplex ModeBad Ethernet CablesFull CachesTest DurationLong-Lived ConnectionsSmall Working SetsClock SyncMSL (TIME_WAIT) Values
Configure SystemsTest the NetworkNo-Proxy TestFill the CacheRun the Benchmark
ThroughputResponse TimeHit RatioOther Results
Reply and Object Sizes
Client Request HeadersClient Reply Headers
Size and Popularity
ICPv2 Message FormatOpcodeVersionMessage LengthReqnumOptionsOption DataSender Host AddressPayload
PointersObject AdvertisementRequest NotificationObject Removal and InvalidationMD5 Object KeysEliminating URLs from RepliesWiretappingPrefetching
Membership Table
Message Format and Magic ConstantsHEADERDATAAUTH
COUNTSTRSPECIFIERDETAILIDENTITY
NOPTSTTST requestTST responseMONMON requestMON responseSETSET requestSET responseCLRCLR requestCLR response
The Cache Digest ImplementationKeysHash FunctionsSizing the FilterSelecting Objects for the DigestFalse Hits and Digest FreshnessExchanging Digests
1xx Intermediate Status
Books and Articles

Content preview from Web Caching

The TCP Layer: Ports and Delivery

Now that we have fiddled with the routing, the diverted HTTP packets are arriving at the cache’s network interface. Usually, an Internet host rejects received packets if the destination address does not match the host’s own IP address. For interception caching to work, the cache must accept the diverted packet and give it to the TCP layer for processing.

In this section, we’ll discuss how to configure a Unix host for interception caching. If you use a caching appliance, where the vendor supplies both hardware and software, this section may not be of interest to you.

The features necessary to support interception caching on Unix rely heavily on software originally developed for Internet firewalls. In particular, interception caching makes use of the software for packet filtering and, in some cases, network address translation. This software does two important things. First, it tells the kernel to accept a diverted packet and give it to the TCP layer. Second, it gives us the option to change the destination port number. The diverted packets are destined for port 80, but our cache might be listening on a different port. If so, the filtering software changes the port number to that of the cache before giving the packet to the TCP layer.

I’m going to show you three ways to configure interception caching: first with Linux, then with FreeBSD, and finally with the IP Filter package, which runs on numerous Unix flavors. In all the examples, 10.1.2.3 is ...