We have Anthos on-prem K8s, where we need to deploy Elasticsearch and Kibana, I used the attached .yaml file but it's not working..
I have two DNS created for Elasticsearch and Kibana something like this elasticsearch.uat.domain.com & kibana.uat.domain.com also we have two different IPs registered with these DNS, and we got the certificate for these two DNSs.. (same certificate for both DNS)..
Hello @Sunile_Manjee I saw in one of the case that you are an expert in ECK, could you please help with making this deployment success, I think we messed up the yaml s by referring different examples.. really not getting an idea how to make this work.. please do the needful
@Esakki couple things I need from you to try and help debug this
Have you deployed the operator? kubectl get pods -n elastic-system
Can you elaborate on what happens when you deploy the YAMLs? Do you see any pods initializing? Do you encounter any errors during deployment? kubectl get pods -l elasticsearch.k8s.elastic.co/cluster-name= elasticsearch
Have you set up a baseline working example without using custom DNS? I often do this before further customizing the YAMLs. ElasticKonductor provides great examples. Additionally, cloud-on-eck has numerous examples.
Please post your YAMLs using the "preformatted text" option. Without it, it's challenging to test with your YAMLs.
In your Kibana manifest why are you {Kibana LB-IP}? If you don't have a specific IP, you can remove this line altogether, and Kubernetes will automatically assign one for you. Maybe this is what you intended, a specific IP.
You also don't need
env:
- name: ES_JAVA_OPTS
value: "-Xms1g -Xmx1g"
Kibana will take up half the available to it on the pod.
Your pods are running, that's good. Are you able to reach Kibana via the LB service deployed? https://elasticsearch-kb-http-External-IP>:443. Can you please verify the LB service is serving Kibana pods?
Fetch the details of the service to see which label selector it uses. kubectl describe svc elasticsearch-kb-http
Then run kubectl get pods -l key=value
Replace key=value with the actual label selector you found in the previous step. If there are multiple labels, you can comma-separate them like -l key1=value1,key2=value2.
This command will show you the list of pods that the elasticsearch-kb-http service is targeting.
Can you please elaborate on what is the issue you are experiencing? I am guessing that you are not able to reach Kibana. If that is accurate, what exactly is error.
@Sunile_Manjee thanks for your response, please find the details below.
In your Kibana manifest why are you {Kibana LB-IP} ? - Yes, I have a separate loadbalancer IP that I have configured in kibana svc, type:LoadBalancer and the IP as well.
I'm unable to run this https://elasticsearch-kb-http-External-IP>:443 . browser and in local as curl cmd, here I replaced the external IP with my kibana loadbalancer IP, that I referred in in the above point#1.
Error Details:
Kibana is not working, because Elasticsearch is not running and not reachable. So looks like I'm missing something related to my certificate config in the elasticsearch.yaml file?
Hi @Sunile_Manjee , Still facing the same certificate issue.. In the mean time as per my attached ES .yaml file I have 3 master and 3 data nodes, my client is asking for routing the client requests only to data nodes/pod not to master nodes how can I achieve this? is this possible?
@Wes_Plunk Hello Sir, I come to know that you have enough experience with Elasticsearch (I just gone through one of your post you raised on 2013).. is that possible for you to help here on the above ask please?
Also, my client want only master and data nodes/pods and the requests should go only to the data nodes not to the master nodes, how to achieve this, right now when I hit my elasticsearch url (DNS), in browser the requests has been routed to either master or data nodes.
try to track your latest status. you are able to reach ES via api and Kibana. However when you use your custom certs, you are not able to reach Kibana. Is that accurate? Please provide full kibana yaml and please take a look at Kibana logs to view errors.
Attaching SS for your reference( I'm new to Elastic Search, may be I'm doing some simple mistake in config, but I'm not sure what is wrong here)
Kibana - working fine.
@Sunile_Manjee I have resolved the certificate issue, when I used different certs for Elasticsearch and Kibana, cert issue got resolved. Now, when I launch Kibana URL it's not working, it's unable to reach/communicate with elasticsearch, what config changed I have to do in kibana.yaml can you give some sample code?
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
