Failed to connect to master node

sbu · February 14, 2018, 9:07am

Hi,

We are having problems setting up a cluster on Azure using docker. We are using three docker run commands to start each of the nodes, along the lines of :-

sudo docker run --net=bridge -d -e "node.master=true" -e "transport.host=0.0.0.0" -e "network.host=0.0.0.0" -e "network.bind_host=0.0.0.0" -e "network.publish_host=0.0.0.0" -e "node.name=esuk02" -e "discovery.zen.minimum_master_nodes=2" -e "ELASTIC_PASSWORD=xxx" -e "bootstrap.memory_lock=true" -e "ES_JAVA_OPTS=-Xms8g -Xmx8g" -e "xpack.security.http.ssl.enabled=true" -e "xpack.security.transport.ssl.enabled=true" -e "xpack.security.transport.ssl.verification_mode=certificate" -e "xpack.ssl.certificate_authorities=x-pack/certificates/certs/ca/ca.crt" -e "xpack.ssl.certificate=x-pack/certificates/certs/ukselastic2/ukselastic2.crt" -e "xpack.ssl.key=x-pack/certificates/certs/ukselastic2/ukselastic2.key" -e "discovery.zen.ping.unicast.hosts=10.4.0.10,10.4.0.11,10.4.0.12" --mount type=bind,source=/var/lib/waagent,target=/usr/share/elasticsearch/config/x-pack/certificates,readonly -p 9200:9200 -p 9300:9300 --ulimit memlock=-1:-1 docker.elastic.co/elasticsearch/elasticsearch-platinum:6.2.0

This is created with Terraform, which substitutes the relevant items such as the node.name and the certs

In our logs we're seeing :-

gist.github.com

https://gist.github.com/sbutt/5fc33c7de52d855501160cb2821d8d91

node 0 log

     [2018-02-13T16:26:09,025][INFO ][o.e.n.Node               ] [esuk00] initializing ...
    [2018-02-13T16:26:09,114][INFO ][o.e.e.NodeEnvironment    ] [esuk00] using [1] data paths, mounts [[/ (overlay)]], net usable_space [25.5gb], net total_space [29gb], types [overlay]
    [2018-02-13T16:26:09,115][INFO ][o.e.e.NodeEnvironment    ] [esuk00] heap size [7.9gb], compressed ordinary object pointers [true]
    [2018-02-13T16:26:09,117][INFO ][o.e.n.Node               ] [esuk00] node name [esuk00], node ID [4EAU15Q7RqOW-eEP1JkV5w]
    [2018-02-13T16:26:09,117][INFO ][o.e.n.Node               ] [esuk00] version[6.2.0], pid[1], build[37cdac1/2018-02-01T17:31:12.527918Z], OS[Linux/4.13.0-1007-azure/amd64], JVM[Oracle Corporation/OpenJDK 64-Bit Server VM/1.8.0_161/25.161-b14]
    [2018-02-13T16:26:09,117][INFO ][o.e.n.Node               ] [esuk00] JVM arguments [-Xms1g, -Xmx1g, -XX:+UseConcMarkSweepGC, -XX:CMSInitiatingOccupancyFraction=75, -XX:+UseCMSInitiatingOccupancyOnly, -XX:+AlwaysPreTouch, -Xss1m, -Djava.awt.headless=true, -Dfile.encoding=UTF-8, -Djna.nosys=true, -XX:-OmitStackTraceInFastThrow, -Dio.netty.noUnsafe=true, -Dio.netty.noKeySetOptimization=true, -Dio.netty.recycler.maxCapacityPerThread=0, -Dlog4j.shutdownHookEnabled=false, -Dlog4j2.disable.jmx=true, -Djava.io.tmpdir=/tmp/elasticsearch.r1ktnFL7, -XX:+HeapDumpOnOutOfMemoryError, -XX:+PrintGCDetails, -XX:+PrintGCDateStamps, -XX:+PrintTenuringDistribution, -XX:+PrintGCApplicationStoppedTime, -Xloggc:logs/gc.log, -XX:+UseGCLogFileRotation, -XX:NumberOfGCLogFiles=32, -XX:GCLogFileSize=64m, -Des.cgroups.hierarchy.override=/, -Xms8g, -Xmx8g, -Des.path.home=/usr/share/elasticsearch, -Des.path.conf=/usr/share/elasticsearch/config]
    [2018-02-13T16:26:13,272][INFO ][o.e.p.PluginsService     ] [esuk00] loaded module [aggs-matrix-stats]
    [2018-02-13T16:26:13,273][INFO ][o.e.p.PluginsService     ] [esuk00] loaded module [analysis-common]
    [2018-02-13T16:26:13,278][INFO ][o.e.p.PluginsService     ] [esuk00] loaded module [ingest-common]
    [2018-02-13T16:26:13,278][INFO ][o.e.p.PluginsService     ] [esuk00] loaded module [lang-expression]

This file has been truncated. show original

which I think looks OK. But on node 2 :-

gist.github.com

https://gist.github.com/sbutt/9452778e34e2ed8a683d011e7862f653

gistfile1.txt


    [2018-02-14T08:53:01,302][INFO ][o.e.n.Node               ] [esuk01] initializing ...
    [2018-02-14T08:53:01,418][INFO ][o.e.e.NodeEnvironment    ] [esuk01] using [1] data paths, mounts [[/ (overlay)]], net usable_space [26.2gb], net total_space [29gb], types [overlay]
    [2018-02-14T08:53:01,418][INFO ][o.e.e.NodeEnvironment    ] [esuk01] heap size [7.9gb], compressed ordinary object pointers [true]
    [2018-02-14T08:53:01,420][INFO ][o.e.n.Node               ] [esuk01] node name [esuk01], node ID [PCt0h46VQiCY5qKnPZ7-AA]
    [2018-02-14T08:53:01,420][INFO ][o.e.n.Node               ] [esuk01] version[6.2.0], pid[1], build[37cdac1/2018-02-01T17:31:12.527918Z], OS[Linux/4.13.0-1007-azure/amd64], JVM[Oracle Corporation/OpenJDK 64-Bit Server VM/1.8.0_161/25.161-b14]
    [2018-02-14T08:53:01,420][INFO ][o.e.n.Node               ] [esuk01] JVM arguments [-Xms1g, -Xmx1g, -XX:+UseConcMarkSweepGC, -XX:CMSInitiatingOccupancyFraction=75, -XX:+UseCMSInitiatingOccupancyOnly, -XX:+AlwaysPreTouch, -Xss1m, -Djava.awt.headless=true, -Dfile.encoding=UTF-8, -Djna.nosys=true, -XX:-OmitStackTraceInFastThrow, -Dio.netty.noUnsafe=true, -Dio.netty.noKeySetOptimization=true, -Dio.netty.recycler.maxCapacityPerThread=0, -Dlog4j.shutdownHookEnabled=false, -Dlog4j2.disable.jmx=true, -Djava.io.tmpdir=/tmp/elasticsearch.NeVchLXk, -XX:+HeapDumpOnOutOfMemoryError, -XX:+PrintGCDetails, -XX:+PrintGCDateStamps, -XX:+PrintTenuringDistribution, -XX:+PrintGCApplicationStoppedTime, -Xloggc:logs/gc.log, -XX:+UseGCLogFileRotation, -XX:NumberOfGCLogFiles=32, -XX:GCLogFileSize=64m, -Des.cgroups.hierarchy.override=/, -Xms8g, -Xmx8g, -Des.path.home=/usr/share/elasticsearch, -Des.path.conf=/usr/share/elasticsearch/config]
    [2018-02-14T08:53:05,319][INFO ][o.e.p.PluginsService     ] [esuk01] loaded module [aggs-matrix-stats]
    [2018-02-14T08:53:05,319][INFO ][o.e.p.PluginsService     ] [esuk01] loaded module [analysis-common]
    [2018-02-14T08:53:05,319][INFO ][o.e.p.PluginsService     ] [esuk01] loaded module [ingest-common]

This file has been truncated. show original

And likewise we get a similar thing on node 3.

I can netcat to each of the nodes from each other using 9200 or 9300, using either the 10.4.0.x address OR the 172.17.0.x address, from the host or by executing a bash prompt within the docker container and that works just fine, so I don't think I have connectivity or firewall type problems. It must be something wrong with my ES config then (right?)

Here's the docker run for node 1 :-

sudo docker run --net=bridge -d -e "node.master=true" -e "transport.host=0.0.0.0"   -e "network.host=0.0.0.0"   -e "node.name=esuk01"   -e "discovery.zen.minimum_master_nodes=2"   -e "ELASTIC_PASSWORD=xxx"   -e "bootstrap.memory_lock=true"   -e "ES_JAVA_OPTS=-Xms8g -Xmx8g"   -e "xpack.security.http.ssl.enabled=true"   -e "xpack.security.transport.ssl.enabled=true"   -e "xpack.security.transport.ssl.verification_mode=certificate"   -e "xpack.ssl.certificate_authorities=x-pack/certificates/certs/ca/ca.crt"   -e "xpack.ssl.certificate=x-pack/certificates/certs/ukselastic1/ukselastic1.crt"   -e "xpack.ssl.key=x-pack/certificates/certs/ukselastic1/ukselastic1.key" -e "discovery.zen.ping.unicast.hosts=10.4.0.10,10.4.0.12"  --mount type=bind,source=/var/lib/waagent,target=/usr/share/elasticsearch/config/x-pack/certificates,readonly   -p 9200:9200   -p 9300:9300   --ulimit memlock=-1:-1   docker.elastic.co/elasticsearch/elasticsearch-platinum:6.2.0

and node 0 :-

sudo docker run --net=bridge -d -e "node.master=true" -e "transport.host=0.0.0.0" -e "network.host=0.0.0.0" -e "node.name=esuk00" -e "discovery.zen.minimum_master_nodes=2" -e "ELASTIC_PASSWORD=xxx" -e "bootstrap.memory_lock=true" -e "ES_JAVA_OPTS=-Xms8g -Xmx8g" -e "xpack.security.http.ssl.enabled=true" -e "xpack.security.transport.ssl.enabled=true" -e "xpack.security.transport.ssl.verification_mode=certificate" -e "xpack.ssl.certificate_authorities=x-pack/certificates/certs/ca/ca.crt" -e "xpack.ssl.certificate=x-pack/certificates/certs/ukselastic0/ukselastic0.crt" -e "xpack.ssl.key=x-pack/certificates/certs/ukselastic0/ukselastic0.key" --mount type=bind,source=/var/lib/waagent,target=/usr/share/elasticsearch/config/x-pack/certificates,readonly -p 9200:9200 -p 9300:9300 --ulimit memlock=-1:-1 docker.elastic.co/elasticsearch/elasticsearch-platinum:6.2.0

Many thanks!

Steve Button

sbu · February 14, 2018, 9:28am

Actually, that's not quite true. I can

nc -v 172.17.0.1 9200
nc -v 172.17.0.1 9300
nc -v 172.17.0.2 9200
nc -v 172.17.0.2 9300

From inside the container and they all work OK, but 172.17.0.3 doesn't work. I guess I should change network.host or transport.host to bind to the 10.4.0.0 network instead of 0.0.0.0 which I guess is ANY interface. I'm a little unclear what each of these parameters actually does, and the docs don't expand on it much (at least the ones I was looking at)

sbu · February 15, 2018, 11:58am

I'm still looking into this, and further to this I've found that if I set transport.host to the IP of the node (which is shared with the docker container) for example 10.4.0.11 then I get "BindException[Cannot assign requested address];" and it's complaining about ports 9300-9400, however when I set transport.host to 0.0.0.0 it keeps running, but I get the message :-

[2018-02-15T11:43:39,122][WARN ][o.e.d.z.ZenDiscovery     ] [esuk01] failed to connect to master [{esuk00}{7AKsFpnVT2CazmBegPA4Lw}{W_f7IPanQc6PgXOqO5q0MA}{172.17.0.2}{172.17.0.2:9300}{ml.machine_memory=16797728768, ml.max_open_jobs=20, ml.enabled=etrying...
org.elasticsearch.transport.ConnectTransportException: [esuk00][172.17.0.2:9300] handshake failed. unexpected remote node {esuk01}{KllV7qs6R5WjFl0ZFqsvjA}{xiKH4kRKTOa9zIWbiQnEWA}{172.17.0.2}{172.17.0.2:9300}{ml.machine_memory=16797728768, ml.max_o20, ml.enabled=true}

which is interesting, because this is from node es01, and so it must be talking to es00 to get this message (otherwise how would it know if the existence of "es00"?), so I guess the question I need to answer is what does "failed to connect to master" actually mean? What makes that happen?

system · March 15, 2018, 11:58am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Elastic node not connecting to master Elasticsearch	2	563	March 22, 2021
Elasticsearch cluster across multiple docker hosts Elasticsearch docker	4	360	April 29, 2024
Need help on azure container apps Elasticsearch docker	1	240	April 30, 2024
Nodes can't join the cluster Elasticsearch docker	8	1654	June 29, 2022
Error during setup es cluster with docker on different vm 7.5 Elasticsearch	2	490	January 10, 2020

Failed to connect to master node

Related topics