Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id B8FFE200D45 for ; Thu, 23 Nov 2017 16:52:28 +0100 (CET) Received: by cust-asf.ponee.io (Postfix) id B7381160BFE; Thu, 23 Nov 2017 15:52:28 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id D5D5A160BEF for ; Thu, 23 Nov 2017 16:52:27 +0100 (CET) Received: (qmail 63237 invoked by uid 500); 23 Nov 2017 15:52:26 -0000 Mailing-List: contact users-help@trafficserver.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@trafficserver.apache.org Delivered-To: mailing list users@trafficserver.apache.org Received: (qmail 63227 invoked by uid 99); 23 Nov 2017 15:52:26 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd3-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 23 Nov 2017 15:52:26 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd3-us-west.apache.org (ASF Mail Server at spamd3-us-west.apache.org) with ESMTP id C9CF318077C for ; Thu, 23 Nov 2017 15:52:25 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd3-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 1.879 X-Spam-Level: * X-Spam-Status: No, score=1.879 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=2, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd3-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=oath.com Received: from mx1-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd3-us-west.apache.org [10.40.0.10]) (amavisd-new, port 10024) with ESMTP id BFtL2I3vmhwg for ; Thu, 23 Nov 2017 15:52:22 +0000 (UTC) Received: from mail-wm0-f48.google.com (mail-wm0-f48.google.com [74.125.82.48]) by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTPS id A3BB05FCC7 for ; Thu, 23 Nov 2017 15:52:22 +0000 (UTC) Received: by mail-wm0-f48.google.com with SMTP id y80so17442620wmd.0 for ; Thu, 23 Nov 2017 07:52:22 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=oath.com; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=05bp21EwSj1qD8GsTfDhegLl/FEqrx4q+7mgiyhYSvg=; b=X1ZWpvOBFnNlJnqDQ1ii+UuX2HSepDDKB434yq1NhZEQVUgtFJE9jVDdLmwdRia1cj SS8/apiBXjv1FsHFRcKsc60fvCaP0i05C0J7M+tVvV1QnQ6ncB44tk9TOkKpEmIa2JyD eAYStsu5P6AxyTGnB1w8Vcb0jWkwyN7T7pCo0VIBGmqapksTUTyEa2HA8b37AgpeHrTH OG8ezAS+WTvqIrM9Vuyex/qdEyrV5De+DpwLLa9b6fG/Y5Z0RSUSCJcP8pix+SwMn3it +wj/0JFI7TnC0aHg8k1vtsoJEjJjVXOJYA8rK+34ut4PtX+NtvbJuiMgVMLyEhoZ76jO ipOA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=05bp21EwSj1qD8GsTfDhegLl/FEqrx4q+7mgiyhYSvg=; b=k0b6p518pH9+q0LGWnTrgv57UbpDPTbEWTgOpBACeqNo7RLqSwf/z075b110fB59Zx o9xvvInHosBHOViyWrLaTsCJU3Kb7YBm4l3aEhtG5fbtRpsJLA5kzGKkLhBPOn9IVyOM FTgwmjXzwPtmIQmgnlUkaWsYrerQmREVijnt4YsK0n8K5l5dD+YSfD9mVKCCOjr9eBjW nCrOOep4rIZkWMAHt//mAJYFyKCk5xT/hWgth9B83I3DfuiG1DMGtsR5v2E5BMJt3kwq RqjKsTBqTOLlx2v/r41MC5MrHiGbwC9Bm8wK/LJ3T9eFoARL8ipTCiPhE9dxPGC30eJN Am+g== X-Gm-Message-State: AJaThX49NdDDkAG10+Dlr+PFclK8vOEof3eu6x0S4IZ0KZsidmR5FgkI /5c1eL7SfUHJbvuKmxHm85IZxRjsTgfDJc54aNWHyw6N X-Google-Smtp-Source: AGs4zMaagAbWImuMAcAW7IIHAp3GpAFTiW3iE+QmB3wAQhIZA+/AfOJ8p641h/jcNzVZnS2TzE9D51Vc0X+RzDDuERA= X-Received: by 10.80.181.33 with SMTP id y30mr35373633edd.150.1511452341552; Thu, 23 Nov 2017 07:52:21 -0800 (PST) MIME-Version: 1.0 Received: by 10.80.244.165 with HTTP; Thu, 23 Nov 2017 07:52:20 -0800 (PST) In-Reply-To: References: From: David Carlin Date: Thu, 23 Nov 2017 10:52:20 -0500 Message-ID: Subject: Re: Avoiding TCP_REFRESH_HIT To: users@trafficserver.apache.org Content-Type: multipart/alternative; boundary="f403045c117cea0bbc055ea86b71" archived-at: Thu, 23 Nov 2017 15:52:28 -0000 --f403045c117cea0bbc055ea86b71 Content-Type: text/plain; charset="UTF-8" Have you considered adding "Cache-Control: Immutable" to these objects which will never require re-validation? This will prevent the browser from attempting an If-Modified-Since request. https://hacks.mozilla.org/2017/01/using-immutable-caching-to-speed-up-the-web/ David On Thu, Nov 23, 2017 at 10:07 AM, Veiko Kukk wrote: > In addition to my previous e-mail, headers that are provided by source to > ATS: > > < HTTP/1.1 200 OK > < Content-Length: 1185954 > < Accept-Ranges: bytes > < Last-Modified: Mon, 02 Nov 2015 17:56:12 GMT > < Etag: 92ef40097ba87bdf09efcf7e1cefd32a > < X-Timestamp: 1446486971.39466 > < Content-Type: application/octet-stream > < Content-Disposition: attachment; filename="ABIYohNyPrJNjvFsAdgN5wc8D-8Yo4ZO.m4s"; > filename*=UTF-8''ABIYohNyPrJNjvFsAdgN5wc8D-8Yo4ZO.m4s > < Expires: Thu, 23 Nov 2017 15:27:30 GMT > < X-Trans-Id: tx3a0af5473d5c41d38195c-005a16e30d > < X-Openstack-Request-Id: tx3a0af5473d5c41d38195c-005a16e30d > < Date: Thu, 23 Nov 2017 15:02:37 GMT > < X-IPLB-Instance: 12631 > > I assume, Expires header is here to blame and must be overriden in ATS > config, but how? I don't have control over source, its Openstack Swift > object storage. > > Veiko > > > 2017-11-23 16:35 GMT+02:00 Veiko Kukk : > >> Hi, >> >> Could ATS in reverse proxy mode be configured such way that it would >> never try to revalidate from source? It is known that in our case, object >> never changes (and is never refetched from source) and it is desirable to >> avoid any source validation. Validation verification adds significant >> overhead and we need to avoid it. Response to client with TCP_REFRESH_HIT >> would take 100-200ms instead of 0-10 in case of direct local TCP_HIT. >> >> I've configured following: >> dest_domain=.*.source.tld action=ignore-no-cache >> dest_domain=.*.source.tld revalidate=9999d >> dest_domain=.*.source.tld ttl-in-cache=9999d >> >> CONFIG proxy.config.http.cache.when_to_revalidate INT 3 >> CONFIG proxy.config.http.cache.required_headers INT 0 >> >> But i still get TCP_REFRESH_HIT even when 9999 days have not passed >> (obviously). >> >> NB! ATS is used as internal cache and our 'client' never explicitly >> requests revalidation. >> >> Thanks, >> Veiko >> >> > --f403045c117cea0bbc055ea86b71 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Have you considered adding "Cache-Control: Immut= able" to these objects which will never require re-validation?=C2=A0 T= his will prevent the browser from attempting an If-Modified-Since request. =


<= div>David

On Thu, Nov 23, 2017 at 10:07 AM, Veiko Kukk <= veiko.kukk@gmail.= com> wrote:
In addition to my previous e-mail, headers that are provided by source to= ATS:

< HTTP/1.1 200 OK
< Content-Length:= 1185954
< Accept-Ranges: bytes
< Last-Modified: = Mon, 02 Nov 2015 17:56:12 GMT
< Etag: 92ef40097ba87bdf09efcf7e= 1cefd32a
< X-Timestamp: 1446486971.39466
< C= ontent-Type: application/octet-stream
< Content-Disposition: a= ttachment; filename=3D"ABIYohNyPrJNjvFsAdgN5wc8D-8Yo4ZO.m4s&= quot;; filename*=3DUTF-8''ABIYohNyPrJNjvFsAdgN5wc8D-8Yo4Z= O.m4s
< Expires: Thu, 23 Nov 2017 15:27:30 GMT
< = X-Trans-Id: tx3a0af5473d5c41d38195c-005a16e30d
< X-Openst= ack-Request-Id: tx3a0af5473d5c41d38195c-005a16e30d
< Date= : Thu, 23 Nov 2017 15:02:37 GMT
< X-IPLB-Instance: 12631
=

I assume, Expires header is here to blame a= nd must be overriden in ATS config, but how? I don't have control over = source, its Openstack Swift object storage.

Veiko<= /div>


2017-11-23 16:35 GMT+02:00 Veiko Kukk <veiko.kukk@gmail.com>:
Hi,
Could ATS in reverse proxy mode be configured such way that it= would never try to revalidate from source? It is known that in our case, o= bject never changes (and is never refetched from source) and it is desirabl= e to avoid any source validation. Validation verification adds significant = overhead and we need to avoid it. Response to client with TCP_REFRESH_HIT w= ould take 100-200ms instead of 0-10 in case of direct local TCP_HIT.
<= div>
I've configured following:
dest_domai= n=3D.*.source.tld action=3Dignore-no-cache
dest_domain=3D.*.sourc= e.tld revalidate=3D9999d
dest_domain=3D.*.source.tld ttl-in-cache= =3D9999d

CONFIG proxy.config.http.cache.when= _to_revalidate INT 3
CONFIG proxy.config.http.cache.requ= ired_headers INT 0

But i still get TCP_RE= FRESH_HIT even when 9999 days have not passed (obviously).

NB! ATS is used as internal cache and our 'client' never e= xplicitly requests revalidation.

Thanks,
Veiko



--f403045c117cea0bbc055ea86b71--