ãƒãƒ¼ãƒ‰ãƒãƒ©ãƒ³ã‚µã¨ã—ã¦ã® pound 㨠nginx
自宅ã§é‹å–¶ã—ã¦ã‚‹ã‚µã‚¤ãƒˆã®è² è·ãŒã€çµæ§‹é«˜ã„。
ã§ã€è©¦ã—ã« pound ã‚’å°Žå…¥ã—ãŸã‚“ã ã‘ã©ã€ã‚¢ã‚¯ã‚»ã‚¹æ•°ãŒä¸ŠãŒã‚‹ã¨ã€ã©ã†ã«ã‚‚安定ã—ãªã„。
çµå±€ nginx ã§ã®ãƒãƒ¼ãƒ‰ãƒãƒ©ãƒ³ã‚¹ã«è½ã¡ç€ã„ãŸã‚“ã ã‘ã‚Œã©ã€ãã“ã¾ã§ã®çµŒç·¯ã‚’書ãã¨ã‚る。
ã„ã‚ã„ã‚ãƒãƒ¥ãƒ¼ãƒ‹ãƒ³ã‚°ã—ã¦è¡Œã上ã§ã€pixiv ã®ä¸ã®äººã®è³‡æ–™ãŒéžå¸¸ã«ã€éžå¸¸ã«ã€å‚考ã«ãªã£ãŸã€‚ã‚ã‚ŠãŒã¨ã†ã‚ã‚ŠãŒã¨ã†ã€‚
pixivã®ã‚¤ãƒ³ãƒ•ãƒ©ã‚’支ãˆã‚‹æŠ€è¡“ techsemi20090925_03_pixiv_kamipo.pdf
Pound ã§ã‚¢ã‚¯ã‚»ã‚¹ãŒå¢—ãˆã‚‹ã¨ Too many open files エラー
ã“ã„ã¤ãŒã‚ã£ã¡ã‚ƒé »ç™ºã—ã¾ã™ã€‚解決ç–ã¨ã—ã¦ã¯ã€èµ·å‹•ã‚¹ã‚¯ãƒªãƒ—トãªã‚“ã‹ã«
ulimit -n 50000
ã£ã¦æ›¸ã„ã¦ã‚„ã‚Œã°ã„ã„。ã¨ã„ã†æ¤œç´¢çµæžœãŒå±±ã»ã©å‡ºã‚‹ã‚“ã§ã™ãŒã€ãã‚Œã§ã‚‚エラーãŒæ¢ã¾ã‚‰ãªã„。
試ã—ã«ã€File Discriptors ã®ã‚°ãƒ©ãƒ•ã‚’å–ã£ã¦ã¿ã¾ã—ãŸã€‚
予想ã§ã¯ã€å¾ã€…ã«æ•°å€¤ãŒä¸ŠãŒã£ã¦ã„ã£ã¦ã€åˆ¶é™å€¤ã«åˆ°é”ã—ãŸã¨ã“ã‚ã§ã‚¨ãƒ©ãƒ¼ãŒå‡ºå§‹ã‚ã‚‹ã¨æ€ã£ã¦ãŸã‚“ã§ã™ã€‚
ã§ã‚‚ã€å…¨ç„¶ãã‚“ãªæ„Ÿã˜ã˜ã‚ƒãªã„。
ã‚るタイミングã‹ã‚‰ã€ã°ã„ーんã¨è·³ãる。もã¡ã‚ã‚“ã€ulimit -n 50000 ã—ã¦ã‚‹ã®ã§ã€è¨±å®¹é‡å†…ã§ã™ã€‚
- 実サーãƒãŒã‚¢ã‚¯ã‚»ã‚¹éŽå¤šã§æ»ã¬ï¼Ÿ
- pound å´ã§ä½•ã‚‰ã‹ã®å•é¡ŒãŒç™ºç”Ÿ
- ã‚ューãŒè©°ã¾ã‚Šå§‹ã‚る?
- File Discriptors ã°ã„ーんç¾è±¡
ãã®çµæžœã€Too many open files エラーãŒç™ºç”Ÿã—ã¦ã„ã‚‹ã£ã½ã„æ„Ÿã˜ã€‚
ãªã®ã§ã€File Discriptors ã®åˆ¶é™å€¤ãŒåŽŸå› ã§ã¯ãªã„よã†ã§ã€‚。
エラーã¨ã—ã¦ã¯ã€ã“ã‚“ãªã®ãŒå¤§é‡ã«å‡ºã¦ã¾ã™ã€‚
error copy chunk cont: Connection timed out copy_chunks flush error: Connection timed out
ソースを見ã¦ã¿ã¦ã‚‚ã€åŽŸå› ã¯åˆ†ã‹ã‚‰ãšã€‚
一度ã“ã†ãªã£ã¡ã‚ƒã†ã¨ã€restart ã—ãªã„ã¨å¾©å¸°ã—ã¦ãã‚Œãªã„ã®ã§ã€å¤§å¤‰é¢å€’ã§ã—ãŸã€‚
Pound ã§ã¯ reset by peer エラーãŒãŸãã•ã‚“記録ã•ã‚Œã‚‹
reset by peer ç³»ã®ã‚¨ãƒ©ãƒ¼ã¯ã€ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆãŒãƒšãƒ¼ã‚¸ã®ãƒãƒ¼ãƒ‰ãŒå®Œäº†ã™ã‚‹å‰ã«
別ã®ãƒšãƒ¼ã‚¸ã¸ç§»å‹•ã—よã†ã¨ã—ãŸå ´åˆãªã©ã«èµ·ã“ã‚‹ã¿ãŸã„ã§ã™ã€‚
ãªã®ã§ã€è¨˜éŒ²ã—ãªã„よã†ã«ã—ãŸã‹ã£ãŸã®ã§ã™ã€‚
ã—ã‹ã—ã€LogLevel 0 ã¨ã‹ã«ã—ã¦ã‚‚ã€ã“ã„ã¤ã¯è¨˜éŒ²ã•ã‚Œã‚‹ã‚ˆã†ã§ã€‚。
ãƒã‚°ãƒ•ã‚¡ã‚¤ãƒ«ã®å®¹é‡ã‚‚大変ãªã“ã¨ã«ãªã‚‹ã—。
仕方ãªã„ã®ã§ã€ã‚½ãƒ¼ã‚¹ã‚’å°‘ã—書ãæ›ãˆã¦å¯¾å¿œã—ã¾ã—ãŸãŒã€
微妙ã«å¿œç”速度ãŒé…ããªã£ã¦ã—ã¾ã„ã¾ã—ãŸ('A`)
svc.c ã® logmsg 関数ã«è¿½è¨˜ã—ãŸå†…容。
va_end(ap);
/* ã“ã“ã‹ã‚‰è¿½åŠ */
if ( strstr( buf, "reset by peer" ) != NULL ) {
return;
}
/* ã“ã“ã¾ã§è¿½åŠ */
if(log_facility == -1) {
機能é¢ã®ä¸è¶³
pound ã«ã¯ãªã„ã‘ã© nginx ã«ã¯ã‚る機能ã¨ã—ã¦ã€æ¬¡ã®ã‚‚ã®ãŒã‚ã‚Šã¾ã™ã€‚
gzip ã§åœ§ç¸®ã—ã¦é€ä¿¡
ã‚„ã‚Šã¨ã‚Šã™ã‚‹æƒ…å ±ã‚’ã€gzip ã§åœ§ç¸®ã—ã¦ã‹ã‚‰ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã«è¿”ã™æ©Ÿèƒ½ãŒã¤ã„ã¦ã„る。
ã¾ãŸã€gzip ã«å¯¾å¿œã—ã¦ã„ãªã„クライアントã«ã¯ãã®ã¾ã¾è¿”ã™ã€ã¨ã„ã£ãŸæ©Ÿèƒ½ã‚‚å‚™ã‚ã£ã¦ã„る。
gzip ã§ã®é€ä¿¡ã‚’ ON ã«ã—ãŸçµæžœã€é€šä¿¡é‡ãŒã‹ãªã‚Šæ¸›ã£ãŸã€‚
LB鯖ãªã®ã§ã€inbound ã«å¯¾ã—㦠outbound ãŒã‹ãªã‚Šæ¸›ã‚‹ã“ã¨ã«ãªã‚‹ã€‚
ファイルã®ã‚ャッシュ
nginx ã§ã¯ã€æ‹¡å¼µåãªã©ã‚’指定ã—ã¦ã€ãƒ•ã‚¡ã‚¤ãƒ«ã‚’ã‚ャッシュã™ã‚‹æ©Ÿèƒ½ãŒã‚る。
ã“ã®æ©Ÿèƒ½ã‚’用ã„ã‚‹ã¨ã€ãƒãƒƒã‚¯ã‚¨ãƒ³ãƒ‰ã®ã‚µãƒ¼ãƒã¨ã®é€šä¿¡é‡ã‚’減らã™ã“ã¨ãŒã§ãる。
ã“れも実施ã—ãŸçµæžœã€é€šä¿¡é‡ãŒã‚¬ãƒƒãƒ„リ減ã£ãŸã€‚
LB鯖ã¯ã€ã‚ャッシュã•ã‚Œã¦ã„る分ã€inbound ãŒæ¸›ã£ã¦ã„る。
ãƒãƒƒã‚¯ã‚¨ãƒ³ãƒ‰é¯–ã¯ã€é€šä¿¡é‡ãŒæ¸›ã‚‹ã“ã¨ã«ãªã‚‹ã€‚イイãƒï¼
çµè«–
çµè«–ã¨ã—ã¦ã¯ã€ã‚„ã¯ã‚Šã€nginx よã„ãーã¨ã„ã†æ„Ÿã˜ã€‚
pound も悪ãã¯ãªã„ã‚“ã ã‘ã©ã€ä½¿ã„ã©ã“ã‚ãŒã¡ã‚‡ã£ã¨é•ã£ãŸã®ã‹ãªã。
開発も盛ん㪠nginx ã‚’é¸ã‚“ã æ–¹ãŒã€ç„¡é›£ãªã®ã‹ã‚‚ã—ã‚Œãªã„。
ãŠã¾ã‘1 poundã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«æ‰‹é †
pound ã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«
yum -y install openssl-devel cd /usr/local/src wget http://www.apsis.ch/pound/Pound-2.6.tgz tar zxvf Pound-2.6.tgz cd Pound-2.6 ./configure make make install vi /usr/local/etc/pound.cfg
LogLevel 3 # å¿…è¦ã«å¿œã˜ã¦å¤‰æ›´ã€0ã ã¨ãƒã‚°ã‚’記録ã—ãªã„。
LogFacility local1
ListenHTTP
Address *.*.*.* # ãƒãƒ¼ãƒ‰ãƒãƒ©ãƒ³ã‚µã®å¾…ã¡å—ã‘IP
Port 80 # ãƒãƒ¼ãƒ‰ãƒãƒ©ãƒ³ã‚µã®å¾…ã¡å—ã‘ãƒãƒ¼ãƒˆ
Service
# server1
BackEnd # BackEnd 〜 End é–“ã«ã€å®Ÿã‚µãƒ¼ãƒã‚’記述。
#HeadRequire "Host: .*www.server1.com.*" # ドメインåã§æŒ¯ã‚Šåˆ†ã‘ã‚‹ã¨ãã¯ã€ã“ã®ã‚ˆã†ã«è¨˜è¿°ã™ã‚‹ã€‚
#HeadDeny "Host: .*www.server0.com.*"
Address *.*.*.*
Port 80
Priority 1 # 優先度を1〜9ã§æŒ‡å®šã€‚
End
# server2
BackEnd
Address *.*.*.*
Port 80
Priority 1
End
End
Endvi /etc/rc.d/init.d/pound # 起動スクリプトã®ä½œæˆ
é©å½“ã«æ‹¾ã£ã¦ããŸã‚‚ã®ã€‚
#!/bin/sh
#
# pound
#
# chkconfig: 345 85 15
# description: reverse-proxy and load-balancer
#
# Source function library
. /etc/rc.d/init.d/functions
# Get network config
. /etc/sysconfig/network
# Pound Directory
POUND="/usr/local/sbin/pound"
CFG="/usr/local/etc/pound.cfg"
# See how we were called.
case "$1" in
start) # Check if the normal service is already running?
if [ ! -f /var/lock/subsys/pound ]; then
echo "Starting pound:"
$POUND -f $CFG
RETVAL=$?
[ $RETVAL -eq 0 ] && touch /var/lock/subsys/pound
echo ${base}
else
#msg_Already_Running pound
echo "pound already started."
# exit 1
fi
;;
stop)
# Stop daemons.
if [ -f /var/lock/subsys/pound ]; then
#msg_stopping pound
echo "Stopping pound:"
killall $POUND
rm -f /var/lock/subsys/pound > /dev/null 2>&1
echo
else
echo "pound is not running."
exit 1
fi
;;
restart|reload)
$0 stop
$0 start
;;
configtest)
$POUND -c -v -f $CFG
;;
*)
echo "usage: pound {start|stop|configtest|restart}"
exit 1
;;
esac
exit $RETVAchmod +x /etc/rc.d/init.d/pound
ãƒã‚°å‡ºåŠ›è¨å®š
rsyslog ã§ã¯ãªã syslog を使ã£ã¦ã„ã‚‹å ´åˆã¯ã€rsyslog ã‚’ syslog ã«èªã¿æ›¿ãˆã¦è¨å®šã™ã‚‹ã€‚
vi /etc/rsyslog.conf
# *.info;mail.none;authpriv.none;cron.none; /var/log/messages *.info;mail.none;authpriv.none;cron.none;local1.none /var/log/messages # 変更 # 以下ã®è¡Œã‚‚è¿½åŠ local1.* /var/log/pound
service rsyslog restart
pound ã®èµ·å‹•
service httpd stop # Apache ãŒèµ·å‹•ã—ã¦ã„ã‚‹ãªã‚‰ã€åœæ¢ã—ã¦ãŠã。 service pound start # Pound ã®èµ·å‹• chkconfig pound on # Pound ã®è‡ªå‹•èµ·å‹•è¨å®š
Web サーム(分散先サーãƒ) ã®ã‚¢ã‚¯ã‚»ã‚¹ãƒã‚°è¨å®š
vi /etc/httpd/conf/httpd.conf
LogFormat "%{X-Forwarded-For}i %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined # 変更service httpd restart
ãŠã¾ã‘2 nginx ã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«æ‰‹é †
nginx インストール
yum -y install pcre-devel cd /usr/local/src wget http://nginx.org/download/nginx-1.2.4.tar.gz tar zxvf nginx-1.2.4.tar.gz cd nginx-1.2.4 ./configure make make install
nginx è¨å®š
mkdir /var/log/nginx vi /usr/local/nginx/conf/nginx.conf
worker_processes 4;
pid /var/run/nginx.pid;
events {
worker_connections 1024;
}
http {
proxy_cache_path /var/cache/nginx/static_file_cache levels=1:2 keys_zone=cache_static_file:128m inactive=1d(â†1日アクセスãŒãªã‹ã£ãŸã‚‰å‰Šé™¤) max_size=512m;
proxy_temp_path /var/cache/nginx/temp;
sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
include /usr/local/nginx/conf/mime.types;
default_type application/octet-stream;
access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;
gzip on;
gzip_disable "msie6";
include /etc/nginx/conf.d/*.conf;
server {
listen *.*.*.*<å—付IP>:80;
server_name www.hoge.com;
location / {
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
set $do_not_cache 0;
if ($request_method != GET) {
set $do_not_cache 1;
}
if ($uri !~* ".(jpg|png|gif|jpeg|css|js|swf|pdf|html|htm)$") {
set $do_not_cache 1;
}
proxy_no_cache $do_not_cache;
proxy_cache_bypass $do_not_cache;
proxy_cache cache_static_file;
proxy_cache_key $scheme$host$uri$is_args$args;
proxy_cache_valid 200 1h;
proxy_cache_valid any 1m;
proxy_pass http://backend;
}
}
upstream backend {
# server1
server *.*.*.* weight=1;
# server2
server *.*.*.* weight=2;
}
}
起動スクリプトã®ä½œæˆ
vi /etc/init.d/nginx
é©å½“ã«æ‹¾ã£ã¦ããŸã‚‚ã®ã€‚
#!/bin/sh
#
# nginx - this script starts and stops the nginx daemon
#
# chkconfig: - 85 15
# description: Nginx is an HTTP(S) server, HTTP(S) reverse \
# proxy and IMAP/POP3 proxy server
# processname: nginx
# config: /usr/local/nginx/conf/nginx.conf
# config: /etc/sysconfig/nginx
# pidfile: /var/run/nginx.pid
# Source function library.
. /etc/rc.d/init.d/functions
# Source networking configuration.
. /etc/sysconfig/network
# Check that networking is up.
[ "$NETWORKING" = "no" ] && exit 0
nginx="/usr/local/nginx/sbin/nginx"
prog=$(basename $nginx)
NGINX_CONF_FILE="/usr/local/nginx/conf/nginx.conf"
[ -f /etc/sysconfig/nginx ] && . /etc/sysconfig/nginx
lockfile=/var/lock/subsys/nginx
make_dirs() {
# make required directories
user=`$nginx -V 2>&1 | grep "configure arguments:" | sed 's/[^*]*--user=\([^ ]*\).*/\1/g' -`
if [ -z "`grep $user /etc/passwd`" ]; then
useradd -M -s /bin/nologin $user
fi
options=`$nginx -V 2>&1 | grep 'configure arguments:'`
for opt in $options; do
if [ `echo $opt | grep '.*-temp-path'` ]; then
value=`echo $opt | cut -d "=" -f 2`
if [ ! -d "$value" ]; then
# echo "creating" $value
mkdir -p $value && chown -R $user $value
fi
fi
done
}
start() {
[ -x $nginx ] || exit 5
[ -f $NGINX_CONF_FILE ] || exit 6
make_dirs
echo -n $"Starting $prog: "
ulimit -n 50000 # ↠念ã®ãŸã‚。
daemon $nginx -c $NGINX_CONF_FILE
retval=$?
echo
[ $retval -eq 0 ] && touch $lockfile
return $retval
}
stop() {
echo -n $"Stopping $prog: "
killproc $prog -QUIT
retval=$?
echo
[ $retval -eq 0 ] && rm -f $lockfile
return $retval
}
restart() {
configtest || return $?
stop
sleep 1
start
}
reload() {
configtest || return $?
echo -n $"Reloading $prog: "
killproc $nginx -HUP
RETVAL=$?
echo
}
force_reload() {
restart
}
configtest() {
$nginx -t -c $NGINX_CONF_FILE
}
rh_status() {
status $prog
}
rh_status_q() {
rh_status >/dev/null 2>&1
}
case "$1" in
start)
rh_status_q && exit 0
$1
;;
stop)
rh_status_q || exit 0
$1
;;
restart|configtest)
$1
;;
reload)
rh_status_q || exit 7
$1
;;
force-reload)
force_reload
;;
status)
rh_status
;;
condrestart|try-restart)
rh_status_q || exit 0
;;
*)
echo $"Usage: $0 {start|stop|status|restart|condrestart|try-restart|reload|force-reload|configtest}"
exit 2
esac
nginx ã®èµ·å‹•
service httpd stop # Apache ãŒèµ·å‹•ã—ã¦ã„ã‚‹ãªã‚‰ã€åœæ¢ã—ã¦ãŠã。 service nginx start # nginx ã®èµ·å‹• chkconfig nginx on # nginx ã®è‡ªå‹•èµ·å‹•è¨å®š
余談
分散ã™ã‚‹ç¨‹åº¦ã«ã‚µãƒ¼ãƒã®å°æ•°ãŒå¢—ãˆã¦ãã‚‹ã¨ã€å…¨ã¦ã®ã‚µãƒ¼ãƒã«å¯¾ã—ã¦ä½œæ¥ã™ã‚‹ã®ã¯ä½•ã‹ã¨é¢å€’。
capistrano を入れãŸã‚‰ã€ä¸–ç•ŒãŒå¤‰ã‚ã‚Šã¾ã—ãŸã€‚便利ã™ãŽã‚‹ã€‚ã“ã®è¾ºã®è¨˜äº‹ã¯ã€ã¾ãŸç¸ãŒã‚ã‚Œã°ã€‚
ã‚ã¨ã€å…¨æ–‡æ¤œç´¢ã«ã¤ã„ã¦ã‚‚見直ã—。
mysql 㧠hoge LIKE "%keyword%" ã¿ãŸã„ãªã‚¯ã‚¨ãƒªã‚’ãšã£ã¨ä½¿ã£ã¦ããŸã‚“ã ã‘ã©ã€ã€ã€
tritonn 㧠match(hoge) against(keyword) ã«å¤‰ãˆãŸã‚‰ã€DBサーãƒãŒè³¢è€…モードã«ãªã‚Šã¾ã—ãŸã€‚
最åˆã‹ã‚‰ tritonn ã„ã£ãŸãã§ã„ã„よã†ãªæ°—ãŒã™ã‚‹ãƒ¬ãƒ™ãƒ«ã ãªã。
ã“れもã¾ãŸæ©Ÿä¼šãŒã‚ã‚Œã°ã€è¨˜äº‹ã«ã™ã‚‹ã‹ã‚‚。
