My kibana doesnt talk to Elasticsearch after changes are made in elasticsearch config
Some history:
installed ELK on one host and filebeat on another one.
Started elasticsearch, started kibana, started logstash
Connected to kibana with browser and put enrollment token ( automatically generated), connected with user: elastic and password, everything works.
Configured filebeat and logstash, they are able to communicate now. Filebeat sends events, logstash receives them.
To provide insecure communication between logstash and elasticsearch made changes in elasticsearch.yml. For the moment it looks like this
I believe I need to make some changes in xpack.fleet.outputs line of kibana.
Is this right? What changes should I make to provide access kibana to elasticsearch again?
I don't care for security for now. This setup on testing environment to get familiar with ELK
Thank you for your help.
I forgot to mention - when I'm trying to http://IP:5601
I have a message "Kibana server is not ready yet."
In kibana.log I can see lines like this:
{"service":{"node":{"roles":["background_tasks","ui"]}},"ecs":{"version":"8.4.0"},"@timestamp":"2023-02-14T15:32:11.180-06:00","message":"Unable to retrieve version information from Elasticsearch nodes. write EPROTO 47776760881024:error:1408F10B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:332:\n","log":{"level":"ERROR","logger":"elasticsearch-service"},"process":{"pid":18927},"trace":{"id":"d23526847b6ba234f6fe7e55c64d0f73"},"transaction":{"id":"5f094a5e56756e96"}}
yes, I have access to kibana interface thank you for your help
The only question I have - what "fleet" does?
I've commented it out - will I be able to see events(logs) in kibana?
I'm trying to reach very basic setup - filebeat on remote host, ELK on server and see logs from remote host in Kibana.. That's what I'm trying to reach
Thank you, Stephen
My first intention was - to have default security enabled, but I met some problems - that some parts of environments were not able to communicate to each other.
So I started to disable security features to have at least something working and see logs in kibana.
For me right now more important to see logs in kibana and make some filtering..
As I said after that I will add ssl back and so on
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.