Deploy elasticsearch cluster with security enabled
- ubuntu 18.04
- elasticsearch version 6.8.1 or newer (newer than v7 not tested)
If deploy on new machine, java should be installed by running following script:
sudo apt install openjdk-11-jdkRunning above script to turn off swap
sudo swapoff -aIf you want to disable swap on reboot, you can open file /etc/fstab and comment the line starting with swapfile
Open file /etc/systemd/system.conf, uncomment 2 fields:
DefaultLimitNOFILE=<some-big-value>
DefaultLimitMEMLOCK=infinityOpen file /etc/security/limits.conf, add those lines to the end of file:
* - nofile 100000
* - memlock unlimited
root - nofile 100000
root - memlock unlimitedOpen file /etc/sysctl.conf, add this line at the end of file:
vm.max_map_count=300000After setting up all configuration above, restart machine to apply changes
Edit file config/jvm.options and set 2 lines:
-Xms4g
-Xmx4gYou should edit the memory to be half the memory your machine has. Here I set 4g
Open file config/elasticsearch.yml and set parameters
cluster.name: <cluster-name>
node.name: <node-name>
node.master: true # set true if master
node.data: false # set true if data
node.ingest: false # set true if ingest (client)
bootstrap.memory_lock: true
network.publish_host: <your-private-ip>
network.host: <`0.0.0.0` or public-ip>
discovery.zen.minimum_master_nodes: <min-master-node-in-cluster>
discovery.zen.ping.unicast.hosts: <list-of-all-nodes-ip-in-cluster>
xpack.security.enabled: false # here Im putting `false` for no authenticationIn case you want to setup elasticsearch cluster with basic authentication, you must have SSL certificate as instructed here
This option allows you to re-index from a backup cluster
reindex.remote.whitelist: <remote-ip>:<remote-port>Your cluster should have a repo for backup
path.repo: <shared-repo>This config is only needed for master and data nodes