I was using elasticsearch without ssl/https enabled, then when I enabled it, the previous logs were all gone, but still remains in the vm in /data/elasticsearch, whereas the original path was /home/user/elasticsearch
i am able to see the nodes in /data/elasticsearch/data/0/nodes/indices but even i move them to where the elasticsearch is running, (/home/user/elasticsearch/data/0/nodes) i am unable to see the previous logs.
it says its because the uuid does not match, so i even copied _state folder from a working path to indices that is not showing, but unable to retreive the data.
How can i retrieve the lost data that still remains in the vm?
if elasticsearch is now writing data to /data/elasticsearch and was writing data to /home/user/elasticsearch (which suggests it was running as user), then you did more than "add ssl/https'. Perhaps you are now even running elasticsearch as a different user?
You need to share the config files (before / after, which location, ...), and the exact commands you are using.
The group can be very helpful, I still think you can recover your situation, but you need to share far more information.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.