elasticsearch 7.10.1集群搭建+验证

最新推荐文章于 2024-05-23 16:38:24 发布

张益达·

最新推荐文章于 2024-05-23 16:38:24 发布

阅读量1.1k

点赞数

分类专栏： centos7环境搭建 Java学习之路文章标签： elasticsearch

本文链接：https://blog.csdn.net/weixin_42082634/article/details/120845944

版权

Java学习之路同时被 2 个专栏收录

24 篇文章 0 订阅

订阅专栏

centos7环境搭建

13 篇文章 0 订阅

订阅专栏

ip	node
10.0.54.121	node-1
10.0.54.122	node-2
10.0.54.123	node-3

elasticsearch下载地址
 下载es对应ik分词

设置系统环境（三台服务器均需要操作，以node-1为例）
设置主机名，并添加本地解析

[es@localhost elasticsearch-7.10.1]$ cat /etc/hosts
127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4
::1         localhost localhost.localdomain localhost6 localhost6.localdomain6
10.0.54.121 node-1
10.0.54.122 node-2
10.0.54.123 node-3

修改服务器文件描述符

vim /etc/security/limits.conf

底部添加如下两项

* soft nofile 65535
* hard nofile 65535

修改max_map_count值

sysctl -w vm.max_map_count=655360
echo 'vm.max_map_count=655360' >> /etc/sysctl.conf 
sysctl -p

部署Elasticsearch7.10.1集群
解压 elasticsearch-7.10.1-linux-x86_64.tar.gz

修改es配置文件

[es@localhost elasticsearch-7.10.1]$ cat config/elasticsearch.yml
# ======================== Elasticsearch Configuration =========================
#
# NOTE: Elasticsearch comes with reasonable defaults for most settings.
#       Before you set out to tweak and tune the configuration, make sure you
#       understand what are you trying to accomplish and the consequences.
#
# The primary way of configuring a node is via this file. This template lists
# the most important settings you may want to configure for a production cluster.
#
# Please consult the documentation for further information on configuration options:
# https://www.elastic.co/guide/en/elasticsearch/reference/index.html
#
# ---------------------------------- Cluster -----------------------------------
#
# Use a descriptive name for your cluster:
#
cluster.name: elasticsearch-cluster
#
# ------------------------------------ Node ------------------------------------
#
# Use a descriptive name for the node:
#
node.name: node-1
#
# Add custom attributes to the node:
#
#node.attr.rack: r1
#
# ----------------------------------- Paths ------------------------------------
#
# Path to directory where to store the data (separate multiple locations by comma):
#
path.data: /usr/local/sdb/elasticsearch-7.10.1/data
#
# Path to log files:
#
path.logs: /usr/local/sdb/elasticsearch-7.10.1/logs
#
# ----------------------------------- Memory -----------------------------------
#
# Lock the memory on startup:
#
#bootstrap.memory_lock: true
#
# Make sure that the heap size is set to about half the memory available
# on the system and that the owner of the process is allowed to use this
# limit.
#
# Elasticsearch performs poorly when the system is swapping the memory.
#
# ---------------------------------- Network -----------------------------------
#
# Set the bind address to a specific IP (IPv4 or IPv6):
#
network.host: 0.0.0.0
#
# Set a custom port for HTTP:
#
http.port: 9200
#
# For more information, consult the network module documentation.
#
# --------------------------------- Discovery ----------------------------------
#
# Pass an initial list of hosts to perform discovery when this node is started:
# The default list of hosts is ["127.0.0.1", "[::1]"]
#
discovery.seed_hosts: ["10.0.54.121", "10.0.54.131","10.0.54.211"]
#
# Bootstrap the cluster using an initial set of master-eligible nodes:
#
cluster.initial_master_nodes: ["node-1", "node-2","node-3"]
#
# For more information, consult the discovery and cluster formation module documentation.
#
# ---------------------------------- Gateway -----------------------------------
#
# Block initial recovery after a full cluster restart until N nodes are started:
#
#gateway.recover_after_nodes: 3
#
# For more information, consult the gateway module documentation.
#
# ---------------------------------- Various -----------------------------------
#
# Require explicit names when deleting indices:
#
#action.destructive_requires_name: true
http.cors.enabled: true
http.cors.allow-origin: "*"

启动Elasticsearch（elasticsearch 默认root用户不能启动，需要java环境官方推荐jdk11）

[es@localhost elasticsearch-7.10.1]$ ./bin/elasticsearch -d
-d是后台启动，第一次启动可以不加-d看下启动日志

防火墙开放端口

[es@localhost elasticsearch-7.10.1]# firewall-cmd --permanent --add-port=9200/tcp #es服务端口
[es@localhost elasticsearch-7.10.1]# firewall-cmd --permanent --add-port=9300/tcp #集群通信端口
es@localhost elasticsearch-7.10.1]# firewall-cmd --reload

查看集群状态
浏览器访问：http://10.0.54.121:9200/_cluster/state

配置ES集群间 TLS 和身份验证
生产证书文件（仅集群中一台服务器生产即可，然后copy到另外两台服务器）

[es@localhost elasticsearch-7.10.1]# /usr/local/sdb/elasticsearch-7.10.1/bin/elasticsearch-certutil cert -out /usr/local/sdb/elasticsearch-7.10.1/config/elastic-certificates.p12 -pass ""
[es@localhost config]#  scp ./elastic-certificates.p12 root@node-2:/usr/local/sdb/elasticsearch-7.10.1/config/
[es@localhost config]#  scp ./elastic-certificates.p12 root@node-3:/usr/local/sdb/elasticsearch-7.10.1/config/

elastic-certificates.p12文件要放在elasticsearch-7.10.1/config目录下要不然启动会报错，同时此文件要有读写权限

修改配置文件

xpack.security.enabled: true
xpack.license.self_generated.type: basic
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.keystore.path: /usr/local/sdb/elasticsearch-7.10.1/config/elastic-certificates.p12
xpack.security.transport.ssl.truststore.path: /usr/local/sdb/elasticsearch-7.10.1/config/elastic-certificates.p12
#在elasticsearch.yml里添加，添加完后重启三台elasticsearch

在集群中的任何一个节点上生成密码都可以，一个节点生成后会同步至集群

es@localhost elasticsearch-7.10.1]$ ./bin/elasticsearch-setup-passwords auto
future versions of Elasticsearch will require Java 11; your Java version from [/usr/local/sdb/jdk1.8.0_251/jre] does not meet this requirement
Initiating the setup of passwords for reserved users elastic,apm_system,kibana,kibana_system,logstash_system,beats_system,remote_monitoring_user.
The passwords will be randomly generated and printed to the console.
Please confirm that you would like to continue [y/N]y


Changed password for user apm_system
PASSWORD apm_system = yLYtbIiMRctM7qeRyjpR

Changed password for user kibana_system
PASSWORD kibana_system = jiCO0RTzbUOSUGgjpGpP

Changed password for user kibana
PASSWORD kibana = jiCO0RTzbUOSUGgjpGpP

Changed password for user logstash_system
PASSWORD logstash_system = RA1Ua66C1kcIRggferQC

Changed password for user beats_system
PASSWORD beats_system = lcmXb62EO4xSIfyzMpUZ

Changed password for user remote_monitoring_user
PASSWORD remote_monitoring_user = wymxeQ0qLcNoOLIOeVC0

Changed password for user elastic
PASSWORD elastic = 5AWMWliEXMmHNDC3ipmV

访问验证

[root@localhost ~]# curl -u elastic:5AWMWliEXMmHNDC3ipmV -XGET 'http://10.0.54.121:9200/_cat/nodes?v'
ip          heap.percent ram.percent cpu load_1m load_5m load_15m node.role  master name
10.0.54.121           34          26   2    0.01    0.12     0.13 cdhilmrstw *      node-1
10.0.54.122           25          26   2    0.02    0.16     0.13 cdhilmrstw -      node-3
10.0.54.123           26          26   1    0.04    0.14     0.12 cdhilmrstw -      node-2

张益达·

关注

0
点赞
踩
3

收藏

觉得还不错? 一键收藏
打赏
0
评论
elasticsearch 7.10.1集群搭建+验证

ipnode10.0.54.121node-110.0.54.122node-210.0.54.123node-3elasticsearch下载地址下载es对应ik分词设置系统环境（三台服务器均需要操作，以node-1为例）设置主机名，并添加本地解析[es@localhost elasticsearch-7.10.1]$ cat /etc/hosts127.0.0.1 localhost localhost.localdomain localho...
复制链接

扫一扫