[plug] Forward http proxy cache
Benjamin
zorlin at gmail.com
Sat Apr 10 00:31:30 AWST 2021
I was about to say, if you're thinking of doing TLS/SSL inspection to
enable caching of HTTPS, don't... it goes against absolutely every single
thing a modern sysadmin should stand for...
Then again, if it's that or unusable internet, hmm...
On Fri, 9 Apr 2021, 20:10 Dean Bergin, <dean.bergin at gmail.com> wrote:
> Hello Paul,
>
> Sorry that my reply isn't actually directly related to you question or
> request for a solution, but are the regional nbn links business grade?
>
> The reason I ask is that some providers may offer symmetrical (TC2)
> bandwidth along with the residential asymetrical grade and contended (TC4)
> bandwidth, which if QoS is done right, you can prioritise and mark traffic
> according to business need and put them on the appropriate traffic class
> which can give pretty good performance and potentially better user
> experience if turned correctly.
>
> As for proxies, I think that squid is probably the way to go, but I've not
> done anything proxy-related for a long while now and not on anything other
> than squid.
>
> Also, given that most traffic these days is typically https, I don't see
> much benefit in a proxy as they cannot see inside an encrypted tunnel
> without SSL inspection... Not something I recommend at all unless there is
> a extremely compelling business case...
>
>
>
>
>
>
>
> On Fri, 9 Apr 2021, 14:37 Paul Del, <p at delfante.it> wrote:
>
>> Hello Everyone,
>>
>> I am looking for some advice with regards to a fast simple http forward
>> proxy cache in open source.
>> Some background. Yes I have google'd to try and find benchmarks and
>> installed a number of http and https forward proxies for testing on debian
>> and ubuntu servers.
>>
>> The requirement is to make the internet faster when clients use http and
>> https on small networks 20 people or less using NBN FTTN 50Mb or less in
>> regional areas.
>> Note I will install Pihole in conjunction with to cache DNS requests and
>> block unwanted ads etc.
>> Note The requirements to cache and improve response times for web
>> browsing http https. The most they download is a small amount of email.
>> I will be using a dedicated server so hardware and resources will not be
>> an issue 4-8 cores 8-16GB ram 2-4 gige nics with SSD's
>>
>> I would like something fast. I am a fan of Tinyproxy and Squid but have
>> also used Privoxy and Polipo.
>>
>> I leaning towards a solution with Tinyproxy and Privoxy with Pihole FTLDNS
>>
>> I would appreciate any comments, suggestions, advice of any kind.
>>
>> Thanking you Paul
>>
>>
>>
>> _______________________________________________
>> PLUG discussion list: plug at plug.org.au
>> http://lists.plug.org.au/mailman/listinfo/plug
>> Committee e-mail: committee at plug.org.au
>> PLUG Membership: http://www.plug.org.au/membership
>
> _______________________________________________
> PLUG discussion list: plug at plug.org.au
> http://lists.plug.org.au/mailman/listinfo/plug
> Committee e-mail: committee at plug.org.au
> PLUG Membership: http://www.plug.org.au/membership
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.plug.org.au/pipermail/plug/attachments/20210410/78c6c008/attachment.html>
More information about the plug
mailing list