Elasticsearch (part of ELK stack)
Official
Official Dockerfile on Github
Official Github
Deprecated repo on Docker Hub
https://www.docker.elastic.co/
Default username/password: elastic/changeme
PUT _cluster/settings
{
"persistent": {
"xpack.monitoring.collection.enabled": true
}
}Depending on your platform:
- Linux
The vm.max_map_count setting should be set permanently in /etc/sysctl.conf:
grep vm.max_map_count /etc/sysctl.conf
# or
sysctl vm.max_map_count
#vm.max_map_count=262144To apply the setting on a live system type: sysctl -w vm.max_map_count=262144
- macOS with Docker for Mac
The vm.max_map_count setting must be set within the xhyve virtual machine:
screen ~/Library/Containers/com.docker.docker/Data/com.docker.driver.amd64-linux/ttyLog in with root and no password. Then configure the sysctl setting as you would for Linux:
sysctl -w vm.max_map_count=262144
sysctl vm.max_map_countDefault Kibana plugins come with docker image:
ingest-geoip 6.2.3
ingest-user-agent 6.2.3
AWS Kibana instance plugins:
analysis-icu 6.2.3
analysis-kuromoji 6.2.3
analysis-phonetic 6.2.3
analysis-seunjeon x.x.x.x (AWS only)
analysis-smartcn 6.2.3
analysis-stempel 6.2.3
analysis-ukrainian 6.2.3
discovery-ec2 6.2.3
elasticsearch-jetty 2.2.0 (AWS only)
ingest-attachment 6.2.3
ingest-user-agent 6.2.3
mapper-murmur3 6.2.3
mapper-size 6.2.3
repository-s3 6.2.3
GET /_stats
If we are a write-heavy Elasticsearch user, we should use a tool like iostat to keep an eye on disk IO metrics over time.
index.translog.flush_threshold_size
$p = (pwd) -replace "([A-Z]{1}):\\","/`$1/"
$env:PWD = ($p.substring(0,2).ToLower() + $p.substring(2)).replace("\", "/")
docker run --rm -it -v $PWD/data/usr/share/elasticsearch/data:/usr/share/elasticsearch/data docker.elastic.co/elasticsearch/elasticsearch:7.7.0 /bin/bash
ls -la /usr/share/elasticsearch/data
chown -R 1000 /usr/share/elasticsearch/data
chmod -R 777 /usr/share/elasticsearch/data
ls -la /usr/share/elasticsearch/data