Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Cacheability of CRLs David Groep, Jan 26 th, 2009.

Published byKelley O’Neal’ Modified over 8 years ago

Similar presentations

Presentation on theme: "Web Cacheability of CRLs David Groep, Jan 26 th, 2009."— Presentation transcript:

1 Web Cacheability of CRLs David Groep, Jan 26 th, 2009

2 TAGPMA ‘La Plata’ meeting – Nov 2008 - 2 David Groep – davidg@eugridpma.org Web Cachability, why? Downloads clustered in first seconds of the minute Statistics: 88452 downloads per day per CA 14084 distinct IP addresses average 4 downloads per day per host Data: DutchGrid CA

3 TAGPMA ‘La Plata’ meeting – Nov 2008 - 3 David Groep – davidg@eugridpma.org Network traffic Site cache misconfigurations or new sites

4 TAGPMA ‘La Plata’ meeting – Nov 2008 - 4 David Groep – davidg@eugridpma.org There Are Caches  Majority of IPs download individually every 6hours  But there are at least 300 sites that cache!

5 TAGPMA ‘La Plata’ meeting – Nov 2008 - 5 David Groep – davidg@eugridpma.org Web Cacheability  Good $ HEAD -S http://ca.dutchgrid.nl/medium/cacrl.pem 200 OK Cache-Control: max-age=3600 Connection: close Date: Wed, 05 Nov 2008 21:31:48 GMT Accept-Ranges: bytes Server: Apache Content-Length: 4728 Content-Type: text/plain Expires: Wed, 05 Nov 2008 22:31:48 GMT Last-Modified: Tue, 04 Nov 2008 10:07:05 GMT Client-Date: Wed, 05 Nov 2008 21:31:48 GMT Client-Response-Num: 1

6 TAGPMA ‘La Plata’ meeting – Nov 2008 - 6 David Groep – davidg@eugridpma.org Web Cacheability  Reasonable, but relies on remote site cache setup $ HEAD http://ca.grid-support.ac.uk/cgi-bin/importCRLpem 200 OK Connection: close Date: Wed, 05 Nov 2008 21:15:02 GMT Accept-Ranges: bytes ETag: "164011-6b3a-1c7652c0" Server: Apache/2.0.46 (Red Hat) Content-Length: 27450 Content-Type: text/plain; charset=UTF-8 Last-Modified: Wed, 09 Jan 2008 13:31:31 GMT Client-Date: Wed, 05 Nov 2008 21:15:02 GMT Client-Peer: 130.246.143.144:80 Client-Response-Num: 1

7 TAGPMA ‘La Plata’ meeting – Nov 2008 - 7 David Groep – davidg@eugridpma.org Web Cacheability  Update your CRL URL, but answer is reasonable  Update your CRL URL, answer wastes the cache $ HEAD http://www.dutchgrid.nl/ca/medium/cacrl.pem HTTP/1.1 301 Moved Permanently Date: Mon, 03 Nov 2008 08:59:13 GMT Server: Apache Location: http://ca.dutchgrid.nl/medium/cacrl.pem Content-Length: 247 Content-Type: text/html; charset=iso-8859-1 $ HEAD http://www.lip.pt/ca/lip-crl.pem HTTP/1.1 302 Found Date: Mon, 03 Nov 2008 09:04:08 GMT Server: Apache/2.2.6 (Fedora) Location: http://ca.lip.pt/lip-crl.pem Content-Length: 287 Connection: close Content-Type: text/html; charset=iso-8859-1

8 TAGPMA ‘La Plata’ meeting – Nov 2008 - 8 David Groep – davidg@eugridpma.org Web Cacheability  Uncacheable (no Last-Modified nor Expires header) And Last-Modified header should be there to allow HEAD requests $ HEAD 'http://crls.services.cnrs.fr/get.fcgi?ca=CNRS-Projets&cmd=getpem.crl' 200 OK Connection: close Date: Wed, 05 Nov 2008 21:17:05 GMT Server: Apache/2.2.8 (Fedora) DAV/2 mod_ssl/2.2.8 OpenSSL/0.9.8b Content-Length: 593 Content-Type: octet/stream Client-Date: Wed, 05 Nov 2008 21:35:44 GMT Client-Peer: 195.220.197.22:80 Client-Response-Num: 1 Content-Disposition: attachement; filename="CNRS-Projets.crl"

9 TAGPMA ‘La Plata’ meeting – Nov 2008 - 9 David Groep – davidg@eugridpma.org Web Cacheability  Rather ‘interesting’ $ HEAD http://www.cs.tcd.ie/Grid-Ireland/gi-ca/1e43b9cc.r0 200 OK Cache-Control: max-age=259200 Connection: close Date: Mon, 03 Nov 2008 09:05:40 GMT Accept-Ranges: bytes Server: Apache Content-Length: 4505 Content-Type: text/plain Expires: Thu, 06 Nov 2008 09:05:40 GMT Last-Modified: Tue, 28 Oct 2008 15:42:44 GMT Client-Date: Mon, 03 Nov 2008 09:05:40 GMT Client-Peer: 134.226.32.57:80 Client-Response-Num: 1

10 TAGPMA ‘La Plata’ meeting – Nov 2008 - 10 David Groep – davidg@eugridpma.org Web Caching configuration (apache)  Apache 2.x configuration - within your (virtual) host section ExpiresActive On ExpiresDefault "access plus 1 hours" Options -Includes ExpiresActive On ExpiresDefault "access plus 1 days" Options -Includes

11 TAGPMA ‘La Plata’ meeting – Nov 2008 - 11 David Groep – davidg@eugridpma.org Changes to Fetch-CRL?  Fabio Hernandez’ fetch-crl utility is getting ‘old’  Some fixes but a shell script is too limited to be really ‘smart’  But then not all possibilities are yet used! (like the failover capability for downloads, should we do that?)  New features in 2.7 https://dist.eugridpma.info/distribution/tests/fetch-crl-2.7.0/  retain original download with ‘Last-modified’ time as obtained from the web server, so as to do HEAD instead of GET requests. … if you define a cache directory for the tool to use  Make cRLAgingThreshold of 24 hours the default  Wish list for a successor tool  Make the tool ‘stateful’ so it can give adapt to network trouble and do parallel downloads  Support for multiple root certs with the same DN (.0,.1 system)  Read directly from the.info file (multiple URLs per CRL)

12

Download ppt "Web Cacheability of CRLs David Groep, Jan 26 th, 2009."

Similar presentations

Fetching a Web Page www.si.umich.edu Home computer The Internet.

Fetching a Web Page Home computer The Internet.
HTTP HyperText Transfer Protocol. HTTP Uses TCP as its underlying transport protocol Uses port 80 Stateless protocol (i.e. HTTP Server maintains no information.

HTTP HyperText Transfer Protocol. HTTP Uses TCP as its underlying transport protocol Uses port 80 Stateless protocol (i.e. HTTP Server maintains no information.
IST 535 Week 1 Class Orientation / Review of Web Basics.

IST 535 Week 1 Class Orientation / Review of Web Basics.
16-Jun-15 HTTP Hypertext Transfer Protocol. 2 HTTP messages HTTP is the language that web clients and web servers use to talk to each other HTTP is largely.

16-Jun-15 HTTP Hypertext Transfer Protocol. 2 HTTP messages HTTP is the language that web clients and web servers use to talk to each other HTTP is largely.
How the web works: HTTP and CGI explained

How the web works: HTTP and CGI explained
What’s a Web Cache? Why do people use them? Web cache location Web cache purpose There are two main reasons that Web cache are used:  to reduce latency.

What’s a Web Cache? Why do people use them? Web cache location Web cache purpose There are two main reasons that Web cache are used:  to reduce latency.
HTTP Exercise 01. Three Internet Protocols IP TCP HTTP Routes messages thru “Inter-network “ 2-way Connection between programs on 2 computers So they.

HTTP Exercise 01. Three Internet Protocols IP TCP HTTP Routes messages thru “Inter-network “ 2-way Connection between programs on 2 computers So they.
Configuring a Web Server. Overview  Understand how a Web server works  Install IIS (Internet Information Services) and Apache Web servers  Examine.

Configuring a Web Server. Overview  Understand how a Web server works  Install IIS (Internet Information Services) and Apache Web servers  Examine.
CSC 2720 Building Web Applications Servlet – Getting and Setting HTTP Headers.

CSC 2720 Building Web Applications Servlet – Getting and Setting HTTP Headers.
Web Server Design Week 5 Old Dominion University Department of Computer Science CS 495/595 Spring 2010 Martin Klein 2/10/10.

Web Server Design Week 5 Old Dominion University Department of Computer Science CS 495/595 Spring 2010 Martin Klein 2/10/10.
Krerk Piromsopa. Web Caching Krerk Piromsopa. Department of Computer Engineering. Chulalongkorn University.

Krerk Piromsopa. Web Caching Krerk Piromsopa. Department of Computer Engineering. Chulalongkorn University.
HTTP Protocol Specification

HTTP Protocol Specification
Chapter 9. HTTP Protocol: Text-based protocol vs TCP and many others Basically a couple of requests (GET and POST) and a much larger variety of replies.

Chapter 9. HTTP Protocol: Text-based protocol vs TCP and many others Basically a couple of requests (GET and POST) and a much larger variety of replies.
Web Caching: Replication on the World Wide Web Jonathan Bulava CSC8530 – Distributed Systems Dr. Paul Schragger.

Web Caching: Replication on the World Wide Web Jonathan Bulava CSC8530 – Distributed Systems Dr. Paul Schragger.
FTP (File Transfer Protocol) & Telnet

FTP (File Transfer Protocol) & Telnet
HTTP Reading: Section 9.1.2 and 9.4.3 COS 461: Computer Networks Spring 2013 1.

HTTP Reading: Section and COS 461: Computer Networks Spring
CSC 2720 Building Web Applications Getting and Setting HTTP Headers (With PHP Examples)

CSC 2720 Building Web Applications Getting and Setting HTTP Headers (With PHP Examples)
CP476 Internet Computing Lecture 5 : HTTP, WWW and URL 1 Lecture 5. WWW, HTTP and URL Objective: to review the concepts of WWW to understand how HTTP works.

CP476 Internet Computing Lecture 5 : HTTP, WWW and URL 1 Lecture 5. WWW, HTTP and URL Objective: to review the concepts of WWW to understand how HTTP works.
Maryam Elahi University of Calgary – CPSC 441.  HTTP stands for Hypertext Transfer Protocol.  Used to deliver virtually all files and other data (collectively.

Maryam Elahi University of Calgary – CPSC 441.  HTTP stands for Hypertext Transfer Protocol.  Used to deliver virtually all files and other data (collectively.
Traffic Control in Apache Jed Reynolds Blog.Bitratchet.com Where in your web site do you need traffic control?

Traffic Control in Apache Jed Reynolds Blog.Bitratchet.com Where in your web site do you need traffic control?

Similar presentations

Ads by Google