High Load ELK on docker

Juan_Fernandez_Bernt · November 2, 2021, 7:57pm

I've been having issues with my ELK deployment. Its on docker and the CPU/Load usage is always high for some reason I still cannot find.

Each ES node has 4GB memory assigned, total memory on the machine is 32GB.
I've tried disabling swapping, bootstrap memory lock and other solutions I've been able to find in the forums but none of them seems to work

the docker-compose file is

version: '2.2'
services:
  es-node01:
    image: docker.elastic.co/elasticsearch/elasticsearch:7.14.1
    container_name: es-node01
    environment:
      - node.name=es-node01
      - cluster.name=es-docker-cluster
      - discovery.seed_hosts=es-node02,03
      - cluster.initial_master_nodes=es-node01,es-node02,es-node03
      - bootstrap.memory_lock=true
      - "ES_JAVA_OPTS=-Xms4048m -Xmx4048m"
#      - xpack.security.enabled=true
    ulimits:
      memlock:
        soft: -1
        hard: -1
    volumes:
      - nes-node01:/usr/share/elasticsearch/data
#      - /opt/ELK/elasticsearch/config/:/usr/share/elasticsearch/config/
    ports:
      - 9200:9200
    networks:
      - elastic
    logging:
      driver: "json-file"
      options:
        max-size: "100m"
        max-file: "3"

  es-node02:
    image: docker.elastic.co/elasticsearch/elasticsearch:7.14.1
    container_name: es-node02
    environment:
      - node.name=es-node02
      - cluster.name=es-docker-cluster
      - discovery.seed_hosts=es-node01,es-node03
      - cluster.initial_master_nodes=es-node01,es-node02,es-node03
      - bootstrap.memory_lock=true
      - "ES_JAVA_OPTS=-Xms4048m -Xmx4048m"
#      - xpack.security.enabled=true
    ulimits:
      memlock:
        soft: -1
        hard: -1
    volumes:
      - nes-node02:/usr/share/elasticsearch/data
#      - /opt/ELK/elasticsearch/config/:/usr/share/elasticsearch/config/
    ports:
      - 9200
    networks:
      - elastic
    logging:
      driver: "json-file"
      options:
        max-size: "100m"
        max-file: "3"

  es-node03:
    image: docker.elastic.co/elasticsearch/elasticsearch:7.14.1
    container_name: es-node03
    environment:
      - node.name=es-node03
      - cluster.name=es-docker-cluster
      - discovery.seed_hosts=es-node01,es-node02
      - cluster.initial_master_nodes=es-node01,es-node02,es-node03
      - bootstrap.memory_lock=true
      - "ES_JAVA_OPTS=-Xms4048m -Xmx4048m"
#      - xpack.security.enabled=true
    ulimits:
      memlock:
        soft: -1
        hard: -1
    volumes:
      - nes-node03:/usr/share/elasticsearch/data
#      - /opt/ELK/elasticsearch/config/:/usr/share/elasticsearch/config/
    ports:
      - 9200
    networks:
      - elastic
    logging:
      driver: "json-file"
      options:
        max-size: "100m"
        max-file: "3"

  es-node04:
    image: docker.elastic.co/elasticsearch/elasticsearch:7.14.1
    container_name: es-node04
    environment:
      - node.name=es-node04
      - cluster.name=es-docker-cluster
      - discovery.seed_hosts=es-node01,es-node02,es-node03
      - cluster.initial_master_nodes=es-node01,es-node02,es-node03
      - bootstrap.memory_lock=true
      - "ES_JAVA_OPTS=-Xms4048m -Xmx4048m"
#      - xpack.security.enabled=true
    ulimits:
      memlock:
        soft: -1
        hard: -1
    volumes:
      - nes-node04:/usr/share/elasticsearch/data
#      - /opt/ELK/elasticsearch/config/:/usr/share/elasticsearch/config/
    ports:
      - 9200
    networks:
      - elastic
    logging:
      driver: "json-file"
      options:
        max-size: "100m"
        max-file: "3"

  kib01:
    image: docker.elastic.co/kibana/kibana:7.14.1
    container_name: kib01
    ports:
      - 5601:5601
    environment:
      ELASTICSEARCH_HOSTS: '["http://es-node01:9200","http://es-node02:9200","http://es-node03:                                                                                                                                                             9200"]'
    volumes:
      - /opt/ELK/kibana/kibana.yml:/usr/share/kibana/config/kibana.yml
    networks:
      - elastic

  logstash:
    image: docker.elastic.co/logstash/logstash:7.14.1
    container_name: logstash-node01
    ports:
      - 9001:9001
      - "9002:9002/udp"
      - "9003:9003/udp"
    networks:
      - elastic
    volumes:
      - /opt/ELK/logstash/config/:/usr/share/logstash/config/

volumes:
  nes-node01:
    driver: local
  nes-node02:
    driver: local
  nes-node03:
    driver: local
  nes-node04:
    driver: local

networks:
  elastic:
    driver: bridge

Hot Threads:

warkolm · November 2, 2021, 9:10pm

Welcome to our community!

What is the output from the _cluster/stats?pretty&human API?

Juan_Fernandez_Bernt · November 3, 2021, 1:03pm

{
  "_nodes" : {
    "total" : 4,
    "successful" : 4,
    "failed" : 0
  },
  "cluster_name" : "es-docker-cluster-produccion",
  "cluster_uuid" : "JGD8e5nMRRi3rxJ-NEkF1Q",
  "timestamp" : 1635948932304,
  "status" : "green",
  "indices" : {
    "count" : 104,
    "shards" : {
      "total" : 534,
      "primaries" : 267,
      "replication" : 1.0,
      "index" : {
        "shards" : {
          "min" : 2,
          "max" : 8,
          "avg" : 5.134615384615385
        },
        "primaries" : {
          "min" : 1,
          "max" : 4,
          "avg" : 2.5673076923076925
        },
        "replication" : {
          "min" : 1.0,
          "max" : 1.0,
          "avg" : 1.0
        }
      }
    },
    "docs" : {
      "count" : 393148293,
      "deleted" : 438467
    },
    "store" : {
      "size" : "588.4gb",
      "size_in_bytes" : 631847054705,
      "total_data_set_size" : "588.4gb",
      "total_data_set_size_in_bytes" : 631847054705,
      "reserved" : "0b",
      "reserved_in_bytes" : 0
    },
    "fielddata" : {
      "memory_size" : "78.4mb",
      "memory_size_in_bytes" : 82286656,
      "evictions" : 0
    },
    "query_cache" : {
      "memory_size" : "17.6mb",
      "memory_size_in_bytes" : 18498745,
      "total_count" : 96545291,
      "hit_count" : 2367562,
      "miss_count" : 94177729,
      "cache_size" : 12127,
      "cache_count" : 97804,
      "evictions" : 85677
    },
    "completion" : {
      "size" : "0b",
      "size_in_bytes" : 0
    },
    "segments" : {
      "count" : 6268,
      "memory" : "397.5mb",
      "memory_in_bytes" : 416845214,
      "terms_memory" : "335.1mb",
      "terms_memory_in_bytes" : 351461216,
      "stored_fields_memory" : "3.2mb",
      "stored_fields_memory_in_bytes" : 3360928,
      "term_vectors_memory" : "0b",
      "term_vectors_memory_in_bytes" : 0,
      "norms_memory" : "48.3mb",
      "norms_memory_in_bytes" : 50670464,
      "points_memory" : "0b",
      "points_memory_in_bytes" : 0,
      "doc_values_memory" : "10.8mb",
      "doc_values_memory_in_bytes" : 11352606,
      "index_writer_memory" : "604.2mb",
      "index_writer_memory_in_bytes" : 633618624,
      "version_map_memory" : "0b",
      "version_map_memory_in_bytes" : 0,
      "fixed_bit_set" : "108.8kb",
      "fixed_bit_set_memory_in_bytes" : 111448,
      "max_unsafe_auto_id_timestamp" : 1635945361842,
      "file_sizes" : { }
    },
    "mappings" : {
      "field_types" : [
        {
          "name" : "alias",
          "count" : 6,
          "index_count" : 2,
          "script_count" : 0
        },
        {
          "name" : "boolean",
          "count" : 186,
          "index_count" : 16,
          "script_count" : 0
        },
        {
          "name" : "byte",
          "count" : 2,
          "index_count" : 2,
          "script_count" : 0
        },
        {
          "name" : "date",
          "count" : 372,
          "index_count" : 97,
          "script_count" : 0
        },
        {
          "name" : "double",
          "count" : 398,
          "index_count" : 9,
          "script_count" : 0
        },
        {
          "name" : "float",
          "count" : 447,
          "index_count" : 13,
          "script_count" : 0
        },
        {
          "name" : "geo_point",
          "count" : 14,
          "index_count" : 2,
          "script_count" : 0
        },
        {
          "name" : "half_float",
          "count" : 10,
          "index_count" : 2,
          "script_count" : 0
        },
        {
          "name" : "integer",
          "count" : 116,
          "index_count" : 20,
          "script_count" : 0
        },
        {
          "name" : "ip",
          "count" : 114,
          "index_count" : 20,
          "script_count" : 0
        },
        {
          "name" : "keyword",
          "count" : 12557,
          "index_count" : 97,
          "script_count" : 0
        },
        {
          "name" : "long",
          "count" : 6120,
          "index_count" : 96,
          "script_count" : 0
        },
        {
          "name" : "nested",
          "count" : 7,
          "index_count" : 3,
          "script_count" : 0
        },
        {
          "name" : "object",
          "count" : 6322,
          "index_count" : 44,
          "script_count" : 0
        },
        {
          "name" : "scaled_float",
          "count" : 296,
          "index_count" : 2,
          "script_count" : 0
        },
        {
          "name" : "text",
          "count" : 10387,
          "index_count" : 90,
          "script_count" : 0
        }
      ],
      "runtime_field_types" : [ ]
    },
    "analysis" : {
      "char_filter_types" : [ ],
      "tokenizer_types" : [ ],
      "filter_types" : [ ],
      "analyzer_types" : [ ],
      "built_in_char_filters" : [ ],
      "built_in_tokenizers" : [ ],
      "built_in_filters" : [ ],
      "built_in_analyzers" : [ ]
    },
    "versions" : [
      {
        "version" : "7.14.2",
        "index_count" : 104,
        "primary_shard_count" : 267,
        "total_primary_size" : "294.4gb",
        "total_primary_bytes" : 316140010918
      }
    ]
  },
  "nodes" : {
    "count" : {
      "total" : 4,
      "coordinating_only" : 0,
      "data" : 4,
      "data_cold" : 4,
      "data_content" : 4,
      "data_frozen" : 4,
      "data_hot" : 4,
      "data_warm" : 4,
      "ingest" : 4,
      "master" : 4,
      "ml" : 4,
      "remote_cluster_client" : 4,
      "transform" : 4,
      "voting_only" : 0
    },
    "versions" : [
      "7.14.2"
    ],
    "os" : {
      "available_processors" : 16,
      "allocated_processors" : 16,
      "names" : [
        {
          "name" : "Linux",
          "count" : 4
        }
      ],
      "pretty_names" : [
        {
          "pretty_name" : "CentOS Linux 8",
          "count" : 4
        }
      ],
      "architectures" : [
        {
          "arch" : "amd64",
          "count" : 4
        }
      ],
      "mem" : {
        "total" : "123.8gb",
        "total_in_bytes" : 132996890624,
        "free" : "957.2mb",
        "free_in_bytes" : 1003765760,
        "used" : "122.9gb",
        "used_in_bytes" : 131993124864,
        "free_percent" : 1,
        "used_percent" : 99
      }
    },
    "process" : {
      "cpu" : {
        "percent" : 90
      },
      "open_file_descriptors" : {
        "min" : 1860,
        "max" : 2094,
        "avg" : 1973
      }
    },
    "jvm" : {
      "max_uptime" : "5.7d",
      "max_uptime_in_millis" : 499143897,
      "versions" : [
        {
          "version" : "16.0.2",
          "vm_name" : "OpenJDK 64-Bit Server VM",
          "vm_version" : "16.0.2+7",
          "vm_vendor" : "Eclipse Foundation",
          "bundled_jdk" : true,
          "using_bundled_jdk" : true,
          "count" : 4
        }
      ],
      "mem" : {
        "heap_used" : "8.9gb",
        "heap_used_in_bytes" : 9613691392,
        "heap_max" : "16gb",
        "heap_max_in_bytes" : 17179869184
      },
      "threads" : 377
    },
    "fs" : {
      "total" : "1.9tb",
      "total_in_bytes" : 2109484302336,
      "free" : "1.3tb",
      "free_in_bytes" : 1468857372672,
      "available" : "1.2tb",
      "available_in_bytes" : 1361416081408
    },
    "plugins" : [ ],
    "network_types" : {
      "transport_types" : {
        "security4" : 4
      },
      "http_types" : {
        "security4" : 4
      }
    },
    "discovery_types" : {
      "zen" : 4
    },
    "packaging_types" : [
      {
        "flavor" : "default",
        "type" : "docker",
        "count" : 4
      }
    ],
    "ingest" : {
      "number_of_pipelines" : 2,
      "processor_stats" : {
        "gsub" : {
          "count" : 0,
          "failed" : 0,
          "current" : 0,
          "time" : "0s",
          "time_in_millis" : 0
        },
        "script" : {
          "count" : 0,
          "failed" : 0,
          "current" : 0,
          "time" : "0s",
          "time_in_millis" : 0
        }
      }
    }
  }

system · December 1, 2021, 1:04pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
ES 7.5.0 gets OOM Elasticsearch	3	484	January 16, 2020
Elastic stack 7.9.2 - my /var/lib/docker is heavy Elasticsearch docker	1	333	January 27, 2021
Recommended RAM ratios for ELK with docker-compose Elasticsearch	1	1682	August 21, 2018
Setting heap size at docker-compose Elasticsearch docker	1	5043	December 10, 2018
Elasticsearch heap Memory WARNING in elk docker Elasticsearch docker	5	324	July 29, 2021

High Load ELK on docker

Related topics