标签:elk elasticsearch elk stack
1. 从Elastic官网下载最新版本的Elasticsearch,目前最新版本为V2.3.3。
2. 解压
tar zxvf elasticsearch-2.3.2.tar.gz
3. 切换到Elasticsearch的bin目录下,启动服务。
./elasticsearch Exception in thread "main" java.lang.RuntimeException: don‘t run elasticsearch as root.
启动时会发现Elasticsearch会报如下错误,因为Elasticsearch为安全起见不允许使用root账号启动服务。
4. 创建一个新账号
[root@Server01 bin]# useradd elasticsearchuser [root@Server01 bin]# passwd elasticsearchuser Changing password for user elasticsearchuser. New password: BAD PASSWORD: is too simple Retype new password: passwd: all authentication tokens updated successfully. [root@Server01 bin]# usermod -g root elasticsearchuser
5. 重新启动服务。
[elasticsearchuser@Server01 bin]$ ./elasticsearch
[2016-05-19 16:44:41,864][WARN ][bootstrap ] unable to install syscall filter: seccomp unavailable: requires kernel 3.5+ with CONFIG_SECCOMP and CONFIG_SECCOMP_FILTER compiled in
[2016-05-19 16:44:42,190][INFO ][node ] [Genis-Vell] version[2.3.2], pid[8878], build[b9e4a6a/2016-04-21T16:03:47Z]
[2016-05-19 16:44:42,191][INFO ][node ] [Genis-Vell] initializing ...
[2016-05-19 16:44:42,774][INFO ][plugins ] [Genis-Vell] modules [lang-groovy, reindex, lang-expression], plugins [], sites []
[2016-05-19 16:44:42,805][INFO ][env ] [Genis-Vell] using [1] data paths, mounts [[/ (/dev/sda2)]], net usable_space [486.6gb], net total_space [533.7gb], spins? [possibly], types [ext4]
[2016-05-19 16:44:42,805][INFO ][env ] [Genis-Vell] heap size [990.7mb], compressed ordinary object pointers [true]
[2016-05-19 16:44:42,805][WARN ][env ] [Genis-Vell] max file descriptors [20480] for elasticsearch process likely too low, consider increasing to at least [65536]
[2016-05-19 16:44:44,758][INFO ][node ] [Genis-Vell] initialized
[2016-05-19 16:44:44,758][INFO ][node ] [Genis-Vell] starting ...
[2016-05-19 16:44:44,858][INFO ][transport ] [Genis-Vell] publish_address {127.0.0.1:9300}, bound_addresses {127.0.0.1:9300}, {[::1]:9300}
[2016-05-19 16:44:44,863][INFO ][discovery ] [Genis-Vell] elasticsearch/kpitDjQNTwu8Q4D4pbWXnQ
[2016-05-19 16:44:47,910][INFO ][cluster.service ] [Genis-Vell] new_master {Genis-Vell}{kpitDjQNTwu8Q4D4pbWXnQ}{127.0.0.1}{127.0.0.1:9300}, reason: zen-disco-join(elected_as_master, [0] joins received)
[2016-05-19 16:44:47,923][INFO ][http ] [Genis-Vell] publish_address {127.0.0.1:9200}, bound_addresses {127.0.0.1:9200}, {[::1]:9200}
[2016-05-19 16:44:47,923][INFO ][node ] [Genis-Vell] started
[2016-05-19 16:44:48,020][INFO ][gateway ] [Genis-Vell] recovered [0] indices into cluster_state6. 服务也可以以守护进程方式运行
./elasticsearch -d
还可以在启动时同时指定pid
./elasticsearch -d -p pid
7. 在浏览器中访问一下,再次确认服务是完好的,但前提是修改/config/elasticsearch.yml,找到 network.host在下面添加一行,然后就可以在浏览器中访问http://10.0.0.5:9200/。
network.host : 10.0.0.5
浏览器显示内容如下:
{
"name" : "Gargouille",
"cluster_name" : "elasticsearch",
"version" : {
"number" : "2.3.2",
"build_hash" : "b9e4a6acad4008027e4038f6abed7f7dba346f94",
"build_timestamp" : "2016-04-21T16:03:47Z",
"build_snapshot" : false,
"lucene_version" : "5.5.0"
},
"tagline" : "You Know, for Search"
} |
至此,Elasticsearch安装启动完毕,更详细的操作还待后文。
本文出自 “这个人的IT世界” 博客,请务必保留此出处http://favccxx.blog.51cto.com/2890523/1792655
标签:elk elasticsearch elk stack
原文地址:http://favccxx.blog.51cto.com/2890523/1792655
