Nottrobin Squid Reverseproxy Legacy

  • By Robin Winslow
Channel Revision Published Runs on
latest/stable 1 19 Mar 2021
Ubuntu 16.04
juju deploy nottrobin-squid-reverseproxy-legacy
Show information

Learn to deploy on juju >

Platform:

Ubuntu
16.04

Learn about configurations >

  • avg_obj_size_kb | int

    Default: 16

    Estimated average size of a cached object.

  • cache_dir | string

    Default: /var/spool/squid3

    The top-level directory where cache swap files will be stored.

  • cache_mem_mb | int

    Default: 256

    Maximum size of in-memory object cache (MB). Should be smaller than cache_size_mb. Set to zero to disable caching completely.

  • cache_size_mb | int

    Default: 512

    Maximum size of the on-disk object cache (MB). Set to zero to disable disk caching.

  • enable_forward_proxy | boolean

    Enables forward proxying

  • enable_https | boolean

    Enable https access for squid, requires a squid compiled with --enable-ssl, certificate and private key

  • force_https | boolean

    A domain for which to force HTTPS connections only with a 301 redirect. Requires "enable_https".

  • https_options | string

    Default: accel vhost

    Options for https port

  • https_port | int

    Default: 443

    Squid https listening port

  • log_format | string

    Default: %>a %ui %un [%tl] "%rm %ru HTTP/%rv" %>Hs %<st "%{Referer}>h" "%{User-Agent}>h" %Ss:%Sh

    Format of the squid log.

  • logrotate_count | int

    Default: 365

    The number of days we want to retain logs for

  • logrotate_dateext | boolean

    Default: True

    Use daily extension like YYYMMDD instead of simply adding a number

  • logrotate_rotate | string

    Default: daily

    daily, weekly, monthly, or yearly?

  • max_obj_size_in_mem_kb | int

    Default: 512

    Maximum size of an object to be cached in memory (KB).

  • max_obj_size_kb | int

    Default: 8192

    Maximum size of an object to be cached (KB).

  • metrics | string

    Default: cacheCpuUsage cacheCurrentSwapSize cacheDnsSvcTime.5 cacheHttpErrors cacheHttpAllSvcTime.5 cacheHttpHitSvcTime.5 cacheHttpMissSvcTime.5 cacheHttpNhSvcTime.5 cacheHttpNmSvcTime.5 cacheHttpInKb cacheHttpOutKb cacheMaxResSize cacheMemMaxSize cacheMemUsage cacheNumObjCount cachePeerRtt cacheRequestByteRatio.5 cacheRequestHitRatio.5 cacheSwapHighWM cacheSwapLowWM cacheSwapMaxSize cacheSysNumReads cacheSysPageFaults cacheSysStorage cacheSysVMsize

    List of SNMP metrics to be exported. Names should match Squid's SNMP names at http://wiki.squid-cache.org/Features/Snmp#Squid_OIDs. By default, this charm uses the 5min sampling when averages are used and specifies the .5 measurements explicitly. If you want to use 1m or 60m timings, you should be explicit (.1/.60, and probably change the cron job frequency. Warning: any metric starting with 'cachePeer...' will produce 1 metric per configured peer, so can increase the number of metrics rapidly if you have lots of peers.

  • metrics_sample_interval | int

    Default: 5

    Period for metrics cron job to run in minutes

  • metrics_scheme | string

    Default: dev.$UNIT.squid.$METRIC

    Naming scheme for metrics. Special values $UNIT and $METRIC can be used for more complex schemes, e.g. for suffixes for graphite processing .

  • metrics_target | string

    Destination for metrics, format "host:port". If not present and valid, metrics disabled.

  • nagios_check_http_params | string

    The parameters to pass to the nrpe plugin check_http. String will be formatted with config data

  • nagios_check_https_params | string

    The parameters to pass to the nrpe plugin check_http. String will be formatted with config data

  • nagios_context | string

    Default: juju

    Used by the nrpe-external-master subordinate charm. A string that will be prepended to instance name to set the host name in nagios. So for instance the hostname would be something like: juju-squid-0 If you're running multiple environments with the same services in them this allows you to differentiate between them.

  • nagios_service_type | string

    Default: generic

    What service this component forms part of, e.g. supermassive-squid-cluster. Used by nrpe.

  • package_status | string

    Default: install

    The status of service-affecting packages will be set to this value in the dpkg database. Useful valid values are "install" and "hold".

  • port | int

    Default: 3128

    Squid listening port.

  • port_options | string

    Default: accel vhost

    Squid listening port options

  • refresh_patterns | string

    JSON- or YAML-formatted list of refresh patterns. For example: '{"http://www.ubuntu.com";: {"min": 0, "percent": 20, "max": 60}, "http://www.canonical.com";: {"min": 0, "percent": 20, "max": 120}}'

  • request_header_access | string

    A space separated list of request headers to allow or deny. For example: "X-Auth-Token:deny User-Agent:allow"

  • request_header_add | string

    A space separated list of request headers to add. For example: 'X-Forwarded-Proto:"https"'

  • services | string

    Services definition(s). Although the variable type is a string, this is interpreted by the charm as yaml. To use multiple services within the same instance, specify all of the variables (service_name, service_host, service_port) with a "-" before the first variable, service_name, as below. - service_name: example_proxy service_domain: example.com servers: - [foo.internal, 80] - [bar.internal, 80]

  • snmp_allowed_ips | string

    Single, or json-formatted list of, IP (with optional subnet mask) allowed to query SNMP.

  • snmp_community | string

    SNMP community string for monitoring the service. Required for metrics to be enabled.

  • snmp_port | int

    Default: 3401

    Port for snmp service

  • ssl_cert | string

    Base64 encoded ssl cert file

  • ssl_certfile | string

    Default: /etc/squid3/ssl/cert.crt

    File path to ssl cert file inside deployed units

  • ssl_cipher_suite | string

    Default: EECDH+AESGCM+AES128:EDH+AESGCM+AES128:EECDH+AES128:EDH+AES128:ECDH+AESGCM+AES128:aRSA+AESGCM+AES128:ECDH+AES128:DH+AES128:aRSA+AES128:EECDH+AESGCM:EDH+AESGCM:EECDH:EDH:ECDH+AESGCM:aRSA+AESGCM:ECDH:DH:aRSA:HIGH:!MEDIUM:!aNULL:!NULL:!LOW:!3DES:!DSS:!EXP:!PSK:!SRP

  • ssl_key | string

    Base64 encoded ssl key file

  • ssl_keyfile | string

    Default: /etc/squid3/ssl/cert.key

    File path to ssl key file inside deployed units

  • ssl_options | string

    Default: NO_SSLv2,NO_SSLv3,CIPHER_SERVER_PREFERENCE,SINGLE_DH_USE

  • target_objs_per_dir | int

    Default: 400

    Target number of objects to store in L2 directories.

  • via | string

    Default: on

    Add 'Via' header to outgoing requests.

  • x_balancer_name_allowed | boolean

    Route based on X-Balancer-Name header set by Apache charm.