. elastic search安装7.0
非root用户不能启动
adduser es
chown -R es:es "path"
[1]: max virtual memory areas vm.max_map_count [65530] is too low, increase to at least [262144]
su root
vi /etc/sysctl.conf
vm.max_map_count=655360
sysctl -p
[2]: system call filters failed to install; check the logs and fix your configuration or disable system call filters at your own risk
elasticsearch.yml中配置bootstrap.system_call_filter为false,注意要在Memory下面:
#bootstrap.memory_lock: false
bootstrap.system_call_filter: false
[3]: the default discovery settings are unsuitable for production use; at least one of [discovery.seed_hosts, discovery.seed_providers, cluster.initial_master_nodes]
编辑elasticsearch.yml文件,将 #cluster.initial_master_nodes: ["node-1", "node-2"] 修改为 cluster.initial_master_nodes: ["node-1"]
/bin/elasticsearch -d
2. kibana启动报错
Elasticsearch cluster did not respond with license information.
http://localhost:9200/ 发现uuid为_na_ "cluster_uuid" : "na",
http://localhost:9200/_xpack 发现license为null "license": null,
默认的seed hosts配置放开 应该是跟单机不是集群有关系
discovery.seed_hosts: ["127.0.0.1", "[::1]"]
#
# Bootstrap the cluster using an initial set of master-eligible nodes:
#
cluster.initial_master_nodes: ["node-1"]
#
# For more information, consult the discovery and cluster formation module documentation.
3. filebeat logstash
sudo ./filebeat -e -c filebeat.yml bin/logstash -f logstash.conf
