Hello, as I mentioned in enrich processor missing documents, I am facing some issues in my elasticsearch cluster related to document enrichment. I'm opening a new thread as I suspect they are different problems.
As the people comment, i upgrade elasticsearch node to 7.17.9 and then i generate a new elasticsearch node to create a cluster. The server on which the nodes run has 48 GB of RAM and 48 CPUs.
Here is the docker-compose configuration:
elasticsearch:
image: docker.elastic.co/elasticsearch/elasticsearch:7.17.9
ports:
- "9200:9200"
ulimits:
memlock:
soft: -1
hard: -1
volumes:
- /etc/my-folder/pm-monitor/elasticsearch/certs/ca/ca.crt:/usr/share/elasticsearch/config/ca.crt
- /etc/my-folder/pm-monitor/elasticsearch/certs/instance/elasticsearch.crt:/usr/share/elasticsearch/config/elasticsearch.crt
- /etc/my-folder/pm-monitor/elasticsearch/certs/instance/elasticsearch.key:/usr/share/elasticsearch/config/elasticsearch.key
- /data/docker/volumes/elasticsearch_data:/usr/share/elasticsearch/data
- /data/docker/volumes/elasticsearch_snapshots:/snapshots
- /etc/my-folder/pm-monitor/elasticsearch/elasticsearch.yml:/usr/share/elasticsearch/config/elasticsearch.yml
labels:
co.elastic.metrics/module: elasticsearch
co.elastic.metrics/hosts: "elasticsearch:9200"
co.elastic.metrics/metricsets: enrich,index,index_summary,node_stats,pending_tasks
environment:
#- "discovery.type=single-node"
- node.name=elasticsearch
- cluster.initial_master_nodes=elasticsearch
- xpack.security.enabled=true
#- xpack.license.self_generated.type=basic
- "http.cors.allow-origin=http://localhost:1358,http://127.0.0.1:1358,http://some-url:1358"
- "http.cors.enabled=true"
- "http.cors.allow-headers=X-Requested-With,X-Auth-Token,Content-Type,Content-Length,Authorization"
- "http.cors.allow-credentials=true"
- "ES_JAVA_OPTS=-Xms14g -Xmx14g"
- bootstrap.memory_lock=true
restart: always
elasticsearch02:
image: docker.elastic.co/elasticsearch/elasticsearch:7.17.9
ulimits:
memlock:
soft: -1
hard: -1
volumes:
- /etc/my-folder/pm-monitor/elasticsearch/certs/ca/ca.crt:/usr/share/elasticsearch/config/ca.crt
- /etc/my-folder/pm-monitor/elasticsearch/certs/instance/elasticsearch.crt:/usr/share/elasticsearch/config/elasticsearch.crt
- /etc/my-folder/pm-monitor/elasticsearch/certs/instance/elasticsearch.key:/usr/share/elasticsearch/config/elasticsearch.key
- /etc/my-folder/pm-monitor/elasticsearch/elasticsearch02.yml:/usr/share/elasticsearch/config/elasticsearch.yml
labels:
co.elastic.metrics/module: elasticsearch
co.elastic.metrics/hosts: "elasticsearch:9200"
co.elastic.metrics/metricsets: enrich,index,index_summary,node_stats,pending_tasks
environment:
- node.name=elasticsearch02
- discovery.seed_hosts=elasticsearch
- "ES_JAVA_OPTS=-Xms14g -Xmx14g"
- xpack.security.enabled=true
#- xpack.license.self_generated.type=basic
- bootstrap.memory_lock=true
- "http.cors.enabled=true"
- "http.cors.allow-headers=X-Requested-With,X-Auth-Token,Content-Type,Content-Length,Authorization"
- "http.cors.allow-credentials=true"
Here are the elasticsearch.yml configuration files:
Node elasticsearch:
cluster.name: "docker-cluster"
network.host: 0.0.0.0
xpack.security.enabled: true
path.repo: /snapshots
enrich.cache_size: 1500
node.roles: ["data", "data_cold", "data_content", "data_frozen" ,"data_hot", "data_warm", "ingest", "master", "ml", "remote_cluster_client", "transform"]
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.key: /usr/share/elasticsearch/config/elasticsearch.key
xpack.security.transport.ssl.certificate: /usr/share/elasticsearch/config/elasticsearch.crt
xpack.security.transport.ssl.certificate_authorities: [ "/usr/share/elasticsearch/config/ca.crt"]
Node elasticsearch02:
cluster.name: "docker-cluster"
network.host: 0.0.0.0
xpack.security.enabled: true
enrich.cache_size: 1500
node.roles: ["data", "data_cold", "data_content", "data_frozen" ,"data_hot", "data_warm", "ingest", "master", "ml", "remote_cluster_client", "transform"]
xpack.security.transport.ssl.enabled: true
xpack.security.transport.ssl.verification_mode: certificate
xpack.security.transport.ssl.key: /usr/share/elasticsearch/config/elasticsearch.key
xpack.security.transport.ssl.certificate: /usr/share/elasticsearch/config/elasticsearch.crt
xpack.security.transport.ssl.certificate_authorities: [ "/usr/share/elasticsearch/config/ca.crt"]
The cluster is working well but it still having troubles with enrichments, indeed, if a search for enrichments API:
GET _enrich/_stats
{
"executing_policies" : [ ],
"coordinator_stats" : [
{
"node_id" : "CQzSUS3cRdyI0MC_i-1LnQ",
"queue_size" : 0,
"remote_requests_current" : 0,
"remote_requests_total" : 0,
"executed_searches_total" : 0
},
{
"node_id" : "mcEo_QXMTbiYporFgWgYgQ",
"queue_size" : 7,
"remote_requests_current" : 8,
"remote_requests_total" : 93557921,
"executed_searches_total" : 184340292
}
],
"cache_stats" : [
{
"node_id" : "CQzSUS3cRdyI0MC_i-1LnQ",
"count" : 0,
"hits" : 0,
"misses" : 0,
"evictions" : 0
},
{
"node_id" : "mcEo_QXMTbiYporFgWgYgQ",
"count" : 1500,
"hits" : 531829397,
"misses" : 187088591,
"evictions" : 124235272
}
]
}
It seems that the new node (CQzSUS3cRdyI0MC_i-1LnQ) is not doing any ingestion tasks.
I don't know if it has something to do with it, but maybe the fact of not generating a volume mapping for the elasticsearch02 node has something to do with it?
Could someone help me with this issue, thank you in advance.