Elasticsearch docker ulimit

Fei_Yao · March 15, 2018, 6:00pm

first of all, my Elasticsearch docker (under unprivileged mode, and using office Elasticsearch docker image from https://www.docker.elastic.co/) has passed boostrap check by setting correct vm.max_map_count, etc. One thing really piqued my curiosity, which is ulimit.

inside the container I have:
ulimit -n => 1048576
ulimit -u => unlimited
outside the container, and at the VM level I have the following:
ulimit -n => 1024
ulimit -u => 31706

So, it is plausible container can override daemon ulimit without using privileged mode? In my scenario above, do you think it is production-ready?

According to https://www.elastic.co/guide/en/elasticsearch/reference/current/docker.html. It appears I can do either at the VM level (docker daemon), or container level like below.

--ulimit nofile=65536:65536

Any advice?
Thanks

system · April 12, 2018, 6:00pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Ulimits for elasticsearch instances Elasticsearch docker	8	4159	April 18, 2022
Elasticsearch 7.17.7 ReadOnly Root FileSystem/Privileged Container Elasticsearch docker	1	365	December 19, 2022
RE : Ulimit property Elasticsearch	7	1169	July 6, 2017
Dockerize elasticsearch 5.x.x Elasticsearch	3	551	February 23, 2017
Nofile -> limit for open file under docker container for elasticsearch user Elastic Cloud on Kubernetes (ECK) docker	3	2635	April 12, 2022

Elasticsearch docker ulimit

Related topics