标签:elk elasticsearch elk stack
1. 从Elastic官网下载最新版本的Elasticsearch,目前最新版本为V2.3.3。
2. 解压
tar zxvf elasticsearch-2.3.2.tar.gz
3. 切换到Elasticsearch的bin目录下,启动服务。
./elasticsearch Exception in thread "main" java.lang.RuntimeException: don‘t run elasticsearch as root.
启动时会发现Elasticsearch会报如下错误,因为Elasticsearch为安全起见不允许使用root账号启动服务。
4. 创建一个新账号
[root@Server01 bin]# useradd elasticsearchuser [root@Server01 bin]# passwd elasticsearchuser Changing password for user elasticsearchuser. New password: BAD PASSWORD: is too simple Retype new password: passwd: all authentication tokens updated successfully. [root@Server01 bin]# usermod -g root elasticsearchuser
5. 重新启动服务。
[elasticsearchuser@Server01 bin]$ ./elasticsearch [2016-05-19 16:44:41,864][WARN ][bootstrap ] unable to install syscall filter: seccomp unavailable: requires kernel 3.5+ with CONFIG_SECCOMP and CONFIG_SECCOMP_FILTER compiled in [2016-05-19 16:44:42,190][INFO ][node ] [Genis-Vell] version[2.3.2], pid[8878], build[b9e4a6a/2016-04-21T16:03:47Z] [2016-05-19 16:44:42,191][INFO ][node ] [Genis-Vell] initializing ... [2016-05-19 16:44:42,774][INFO ][plugins ] [Genis-Vell] modules [lang-groovy, reindex, lang-expression], plugins [], sites [] [2016-05-19 16:44:42,805][INFO ][env ] [Genis-Vell] using [1] data paths, mounts [[/ (/dev/sda2)]], net usable_space [486.6gb], net total_space [533.7gb], spins? [possibly], types [ext4] [2016-05-19 16:44:42,805][INFO ][env ] [Genis-Vell] heap size [990.7mb], compressed ordinary object pointers [true] [2016-05-19 16:44:42,805][WARN ][env ] [Genis-Vell] max file descriptors [20480] for elasticsearch process likely too low, consider increasing to at least [65536] [2016-05-19 16:44:44,758][INFO ][node ] [Genis-Vell] initialized [2016-05-19 16:44:44,758][INFO ][node ] [Genis-Vell] starting ... [2016-05-19 16:44:44,858][INFO ][transport ] [Genis-Vell] publish_address {127.0.0.1:9300}, bound_addresses {127.0.0.1:9300}, {[::1]:9300} [2016-05-19 16:44:44,863][INFO ][discovery ] [Genis-Vell] elasticsearch/kpitDjQNTwu8Q4D4pbWXnQ [2016-05-19 16:44:47,910][INFO ][cluster.service ] [Genis-Vell] new_master {Genis-Vell}{kpitDjQNTwu8Q4D4pbWXnQ}{127.0.0.1}{127.0.0.1:9300}, reason: zen-disco-join(elected_as_master, [0] joins received) [2016-05-19 16:44:47,923][INFO ][http ] [Genis-Vell] publish_address {127.0.0.1:9200}, bound_addresses {127.0.0.1:9200}, {[::1]:9200} [2016-05-19 16:44:47,923][INFO ][node ] [Genis-Vell] started [2016-05-19 16:44:48,020][INFO ][gateway ] [Genis-Vell] recovered [0] indices into cluster_state
6. 服务也可以以守护进程方式运行
./elasticsearch -d
还可以在启动时同时指定pid
./elasticsearch -d -p pid
7. 在浏览器中访问一下,再次确认服务是完好的,但前提是修改/config/elasticsearch.yml,找到 network.host在下面添加一行,然后就可以在浏览器中访问http://10.0.0.5:9200/。
network.host : 10.0.0.5
浏览器显示内容如下:
{ "name" : "Gargouille", "cluster_name" : "elasticsearch", "version" : { "number" : "2.3.2", "build_hash" : "b9e4a6acad4008027e4038f6abed7f7dba346f94", "build_timestamp" : "2016-04-21T16:03:47Z", "build_snapshot" : false, "lucene_version" : "5.5.0" }, "tagline" : "You Know, for Search" } |
至此,Elasticsearch安装启动完毕,更详细的操作还待后文。
本文出自 “这个人的IT世界” 博客,请务必保留此出处http://favccxx.blog.51cto.com/2890523/1792655
标签:elk elasticsearch elk stack
原文地址:http://favccxx.blog.51cto.com/2890523/1792655