Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [elasticsearch]

Elasticsearch is a flexible and powerful open source, distributed, real-time search and analytics engine.

Elasticsearch is a flexible and powerful open source, distributed, real-time search and analytics engine. Architected from the ground up for use in distributed environments where reliability and scalability are must haves, Elasticsearch gives you the ability to move easily beyond simple full-text search. Through its robust set of APIs and query DSLs, plus clients for the most popular programming languages, Elasticsearch delivers on the near limitless promises of search technology.

http://www.elasticsearch.org

378 questions
0
votes
1 answer

Graylog - data from newest indice not returned on search

I have a Graylog server (newest version) collecting data from nginx. It´s been running for a while. I retrieve the collected data by querying my Elasticsearch cluster (v7 newest version) which consists of 4 nodes ATM. This all work(s/ed) fine. Now I…
OpenHaus
  • 71
  • 2
  • 6
0
votes
0 answers

How to fetch Individual output of different match_phrase inside one request

I am able to run below query which is giving response as total of two match_phrase. Inserting dummy data as below. POST /mod1/_bulk { "index" : { } } { "msg": "BA1" } { "index" : { } } { "msg": "BA2" } { "index" : { } } { "msg": "BA2" } { "index" :…
abc
  • 11
  • 4
0
votes
1 answer

How to pass values to query externally

I have below similar logs. I have created dummy index and created mapping like below in dev-tools PUT new { "mappings": { "properties": { "@timestamp": { "type": "date", "format": "yyyy-MM-dd HH:mm:ss.SSS" } …
abc
  • 11
  • 4
0
votes
1 answer

Can logstash "pull" data?

I have two servers. Server A is running Elasticsearch and Logstash. Server B is running filebeat and is also the server which contains all the logs I'm trying to analyse. Server A is behind a firewall, it can reach out to the internet, but there's…
Aditya K
  • 923
  • 3
  • 13
  • 24
0
votes
0 answers

Finding source of high IOWait

I have a 5 node elasticsearch cluster. One host has had consistently high IOWait% (40+) for several weeks. The others seem fine (<10%). Notable: Host in question is not the cluster master New indexes are randomly distributed among all 5 hosts IOTop…
ethrbunny
  • 2,369
  • 4
  • 41
  • 75
0
votes
1 answer

Filebeat on ECK with AWS Module Fails Due To Metadata Error

We are running an Elastic Stack with ECK in EKS (7.8). We noticed that our filebeat daemonset and the AWS module were not processing logs from S3 and our SQS queues backing up. Looking at the logs on our FileBeat containers, we noticed the following…
JGG Xm8
  • 1
0
votes
1 answer

Elasticsearch - Can I delete a data-stream backing index?

I have a few data-streams configured in my Elasticsearch cluster (with ILM policy). Suppose I run into storage problems and etc. and I want to prematurely delete a few backing indices of the data-streams- Is it possible? Currently the backing…
GKman
  • 495
  • 3
  • 9
  • 16
0
votes
1 answer

Kibana cannot be accessed through port 5601 in browser

I cannot get to kibana through web UI. I'm set the necessary ports in firewall-cmd, I've configured kibana.yml and elasticsearch.yml. I'm not seeing any relevant errors, or at least don't know if they are if they are there. It just shows 'Site…
jFasaJr
  • 111
  • 1
  • 6
0
votes
0 answers

Multiple Web Application - Cache Layer Design

I have multiple client e-commerce web applications running on a single VM, each web application is a node.js express application. The express web application communicates with the back end via API's to retrieve the content for the pages and the list…
Tam2
  • 111
0
votes
1 answer

How to stop ElasticSearch background task

According to the CLI help of ElasticSearch, you can start ElasticSearch in the background with elasticsearch -d or elasticsearch --daemonize. This is what I use all the time locally, as it seems to take much less ressources and doesn't need to keep…
bolino
  • 273
  • 3
  • 15
0
votes
0 answers

Ubuntu server 'partially' responsive

I have an Ubuntu 18.04 server that has periodically unresponsive - I can ping it, and it appears that some https services are running (albeit v. slowly), however it hangs if I try to log in (on the console and SSH). I'm prompted for the username and…
16shells
  • 1
  • 3
0
votes
1 answer

realtime monitoring of linux server network

We have a few Linux server which act as Edge network, We want realtime (or near-realtime) information on network bandwidth, top IP addresses and network bandwidth per them and other network parameters so we can see the overall status of our network…
Yashar
  • 151
  • 4
0
votes
1 answer

How to display the logs of a VM on ELK stack which is running on another VM?

-ELK is running on localhost & successfully getting logs. -Both VM's are on same server. -OS on both VM'S is Ubuntu 18-04 LTS.
Baqir kazmi
  • 13
  • 1
  • 5
0
votes
1 answer

NGINX - Access port via SSL

I have ElasticSearch and NGINX set up on my server. Accessing it via SSL is failing. I can access ElasticSearch fine via: http://ipaddress:9200 http://mydomain.co.uk:9200 The domain was then set up with an SSL letsencrypt…
wharfdale
  • 151
  • 8
0
votes
0 answers

Storage balancing in elasticsearch cluster

I've a Elasticsearch cluster with 5 nodes. I've this used storage repartition: Node1: 76% Node2: 94% Node3: 88% Node4: 73% Node5: 74% How to do to storage balancing/leveling the used storage ? For the node 2 and 3, we arrived to the watermark…
brimix
  • 1
  • 1
1 2 3
25 26