记录:ELK7.6.2安装(一):Elasticsearch压缩包的安装

原创 已于 2025-08-21 21:07:12 修改 · 448 阅读 · 1 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#elasticsearch #centos

于 2020-05-06 13:42:11 首次发布
本文记录了在CentOS 8.1.1911上安装Elasticsearch 7.6.2的详细步骤,包括配置yum源、解决root权限问题、修改配置文件以允许网络访问,并调整系统参数以确保顺利运行。通过这些步骤,成功启动并测试了Elasticsearch服务。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

ELK官方网址:https://www.elastic.co/cn/

参考官方文档:https://www.elastic.co/guide/en/elasticsearch/reference/7.6/index.html 和互联网实现安装及问题解决

初步学习和了解ELK,计划所有组件全部安装在同一虚拟机

系统环境:CentOS 8.1.1911

软件版本:elasticsearch-7.6.2

计划安装成Filebeat+Redis+Elasticsearch+Logstash+Kibana

一、配置yum安装源为国内资源

修改/etc/yum.repos.d下的三个文件:CentOS-AppStream.repo、CentOS-Base.repo和CentOS-Epel.repo

[root@localhost yum.repos.d]# cat CentOS-AppStream.repo
# CentOS-AppStream.repo
#
# The mirror system uses the connecting IP address of the client and the
# update status of each mirror to pick mirrors that are updated to and
# geographically close to the client.  You should use this for CentOS updates
# unless you are manually picking other mirrors.
#
# If the mirrorlist= does not work for you, as a fall back you can try the
# remarked out baseurl= line instead.
#
#

[AppStream]
name=CentOS-$releasever - AppStream
baseurl=http://mirrors.aliyun.com/centos/$releasever/AppStream/$basearch/os/
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=AppStream&infra=$infra
#baseurl=http://mirror.centos.org/$contentdir/$releasever/AppStream/$basearch/os/
gpgcheck=1
enabled=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial

[root@localhost yum.repos.d]# cat CentOS-Base.repo
# CentOS-Base.repo
#
# The mirror system uses the connecting IP address of the client and the
# update status of each mirror to pick mirrors that are updated to and
# geographically close to the client.  You should use this for CentOS updates
# unless you are manually picking other mirrors.
#
# If the mirrorlist= does not work for you, as a fall back you can try the
# remarked out baseurl= line instead.
#
#

[BaseOS]
name=CentOS-$releasever - Base
baseurl=http://mirrors.aliyun.com/centos/$releasever/BaseOS/$basearch/os/
#mirrorlist=http://mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=BaseOS&infra=$infra
#baseurl=http://mirror.centos.org/$contentdir/$releasever/BaseOS/$basearch/os/
gpgcheck=1
enabled=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-centosofficial

[root@localhost yum.repos.d]# cat CentOS-Epel.repo
[epel]
name=CentOS-$releasever - Epel
baseurl=http://mirrors.aliyun.com/epel/8/Everything/$basearch
enabled=1
gpgcheck=0

dnf clean all

dnf make cache

yum -y update

二、Elasticsearch压缩包安装

先把redis安装,后面可能会用到

[root@localhost /]# dnf install redis
CentOS-8 - AppStream                                                                               47 kB/s | 4.3 kB     00:00
CentOS-8 - Base                                                                                    71 kB/s | 3.9 kB     00:00
CentOS-8 - Epel                                                                                    44 kB/s | 4.7 kB     00:00
CentOS-8 - Extras                                                                                 2.6 kB/s | 1.5 kB     00:00
Dependencies resolved.
==================================================================================================================================
 Package               Architecture           Version                                             Repository                 Size
==================================================================================================================================
Installing:
 redis                 x86_64                 5.0.3-1.module_el8.0.0+6+ab019c03                   AppStream                 927 k
Enabling module streams:
 redis                                        5

Transaction Summary
==================================================================================================================================
Install  1 Package

Total download size: 927 k
Installed size: 3.3 M
Is this ok [y/N]: y
Downloading Packages:
redis-5.0.3-1.module_el8.0.0+6+ab019c03.x86_64.rpm                                                1.7 MB/s | 927 kB     00:00
----------------------------------------------------------------------------------------------------------------------------------
Total                                                                                             1.7 MB/s | 927 kB     00:00
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Running transaction
  Preparing        :                                                                                                          1/1
  Running scriptlet: redis-5.0.3-1.module_el8.0.0+6+ab019c03.x86_64                                                           1/1
  Installing       : redis-5.0.3-1.module_el8.0.0+6+ab019c03.x86_64                                                           1/1
  Running scriptlet: redis-5.0.3-1.module_el8.0.0+6+ab019c03.x86_64                                                           1/1
  Verifying        : redis-5.0.3-1.module_el8.0.0+6+ab019c03.x86_64                                                           1/1

Installed:
  redis-5.0.3-1.module_el8.0.0+6+ab019c03.x86_64

Complete!

 下载elasticsearch包,解压,我选择安装在/etc/路径下

wget https://mirrors.huaweicloud.com/elasticsearch/7.6.2/elasticsearch-7.6.2-linux-x86_64.tar.gz
[root@localhost ~]# tar -zxvf elasticsearch-7.6.2-linux-x86_64.tar.gz
[root@localhost ~]# mv ./elasticsearch-7.6.2 /etc/

[root@localhost elasticsearch-7.6.2]# ./bin/elasticsearch
OpenJDK 64-Bit Server VM warning: Option UseConcMarkSweepGC was deprecated in version 9.0 and will likely be removed in a future release.
[2020-05-05T23:32:04,098][ERROR][o.e.b.ElasticsearchUncaughtExceptionHandler] [localhost.localdomain] uncaught exception in thread [main]
org.elasticsearch.bootstrap.StartupException: java.lang.RuntimeException: can not run elasticsearch as root
        at org.elasticsearch.bootstrap.Elasticsearch.init(Elasticsearch.java:174) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.bootstrap.Elasticsearch.execute(Elasticsearch.java:161) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.cli.EnvironmentAwareCommand.execute(EnvironmentAwareCommand.java:86) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.cli.Command.mainWithoutErrorHandling(Command.java:125) ~[elasticsearch-cli-7.6.2.jar:7.6.2]
        at org.elasticsearch.cli.Command.main(Command.java:90) ~[elasticsearch-cli-7.6.2.jar:7.6.2]
        at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:126) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:92) ~[elasticsearch-7.6.2.jar:7.6.2]
Caused by: java.lang.RuntimeException: can not run elasticsearch as root
        at org.elasticsearch.bootstrap.Bootstrap.initializeNatives(Bootstrap.java:105) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.bootstrap.Bootstrap.setup(Bootstrap.java:172) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.bootstrap.Bootstrap.init(Bootstrap.java:349) ~[elasticsearch-7.6.2.jar:7.6.2]
        at org.elasticsearch.bootstrap.Elasticsearch.init(Elasticsearch.java:170) ~[elasticsearch-7.6.2.jar:7.6.2]
        ... 6 more
uncaught exception in thread [main]
java.lang.RuntimeException: can not run elasticsearch as root
        at org.elasticsearch.bootstrap.Bootstrap.initializeNatives(Bootstrap.java:105)
        at org.elasticsearch.bootstrap.Bootstrap.setup(Bootstrap.java:172)
        at org.elasticsearch.bootstrap.Bootstrap.init(Bootstrap.java:349)
        at org.elasticsearch.bootstrap.Elasticsearch.init(Elasticsearch.java:170)
        at org.elasticsearch.bootstrap.Elasticsearch.execute(Elasticsearch.java:161)
        at org.elasticsearch.cli.EnvironmentAwareCommand.execute(EnvironmentAwareCommand.java:86)
        at org.elasticsearch.cli.Command.mainWithoutErrorHandling(Command.java:125)
        at org.elasticsearch.cli.Command.main(Command.java:90)
        at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:126)
        at org.elasticsearch.bootstrap.Elasticsearch.main(Elasticsearch.java:92)
For complete error details, refer to the log at /etc/elasticsearch-7.6.2/logs/elasticsearch.log

错误日志:can not run elasticsearch as root,解决方法参考:https://www.zhangbj.com/p/264.html

ELK禁止root账号进行安装,创建其它账号和用户组并授权

groupadd elsearch
useradd elsearch -g elsearch
passwd elsearch
chown -R elsearch:elsearch /etc/elasticsearch-7.6.2

切换用户su elsearch,再次执行/etc/elasticsearch-7.6.2/bin/elasticsearch

执行/etc/elasticsearch-7.6.2/bin/elasticsearch -d

测试是否可以正常访问

[elsearch@localhost elasticsearch-7.6.2]$ curl http://192.X.X.X:9200
curl: (7) Failed to connect to 192.X.X.X port 9200: Connection refused

 错误日志,解决方法参考:https://blog.csdn.net/Struggle99/article/details/102896821

[elsearch@localhost elasticsearch-7.6.2]$ ERROR: [3] bootstrap checks failed
[1]: max file descriptors [4096] for elasticsearch process is too low, increase to at least [65535]
[2]: max virtual memory areas vm.max_map_count [65530] is too low, increase to at least [262144]
[3]: the default discovery settings are unsuitable for production use; at least one of [discovery.seed_hosts, discovery.seed_providers, cluster.initial_master_nodes] must be configured
ERROR: Elasticsearch did not exit normally - check the logs at /etc/elasticsearch-7.6.2/logs/elasticsearch.log

 修改配置文件/etc/elasticsearch-7.6.2/config/elasticsearch.yml

bootstrap.memory_lock: false

network.host: 0.0.0.0

http.port: 9200

修改 etc/security/limits.conf,添加参数

* soft nofile 65536
* hard nofile 65536
* soft nproc 4096
* hard nproc 4096

修改 /etc/sysctl.conf,添加参数

vm.max_map_count=262144

重新加载配置文件

sysctl -p

重新启动elasticsearch,需要先查找进程id,并结束进程id

查找elasticsearch进程,ps -ef | grep elastic

[root@localhost elasticsearch-7.6.2]# ps -ef | grep elastic
elsearch  8651     1  0 01:17 ?        00:02:22 /etc/elasticsearch-7.6.2/jdk/bin/java -Des.networkaddress.cache.ttl=60 -Des.networkaddress.cache.negative.ttl=10 -XX:+AlwaysPreTouch -Xss1m -Djava.awt.headless=true -Dfile.encoding=UTF-8 -Djna.nosys=true -XX:-OmitStackTraceInFastThrow -Dio.netty.noUnsafe=true -Dio.netty.noKeySetOptimization=true -Dio.netty.recycler.maxCapacityPerThread=0 -Dio.netty.allocator.numDirectArenas=0 -Dlog4j.shutdownHookEnabled=false -Dlog4j2.disable.jmx=true -Djava.locale.providers=COMPAT -Xms1g -Xmx1g -XX:+UseConcMarkSweepGC -XX:CMSInitiatingOccupancyFraction=75 -XX:+UseCMSInitiatingOccupancyOnly -Djava.io.tmpdir=/tmp/elasticsearch-6027927097867659117 -XX:+HeapDumpOnOutOfMemoryError -XX:HeapDumpPath=data -XX:ErrorFile=logs/hs_err_pid%p.log -Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m -XX:MaxDirectMemorySize=536870912 -Des.path.home=/etc/elasticsearch-7.6.2 -Des.path.conf=/etc/elasticsearch-7.6.2/config -Des.distribution.flavor=default -Des.distribution.type=tar -Des.bundled_jdk=true -cp /etc/elasticsearch-7.6.2/lib/* org.elasticsearch.bootstrap.Elasticsearch -d
elsearch  8666  8651  0 01:17 ?        00:00:00 /etc/elasticsearch-7.6.2/modules/x-pack-ml/platform/linux-x86_64/bin/controller
root     15535 14055  0 13:19 pts/0    00:00:00 grep --color=auto elastic

结束进程,kill 8651 

重新启动服务/etc/elasticsearch-7.6.2/bin/elasticsearch -d,没有错误日志输出

检查服务是否重新启动,ps -ef | grep elastic

curl http://192.X.X.X:9200 测试正常

[root@localhost elasticsearch-7.6.2]# curl http://192.X.X.X:9200
{
  "name" : "localhost.localdomain",
  "cluster_name" : "elasticsearch",
  "cluster_uuid" : "su1pzhJQRtmnd5A39toViw",
  "version" : {
    "number" : "7.6.2",
    "build_flavor" : "default",
    "build_type" : "tar",
    "build_hash" : "ef48eb35cf30adf4db14086e8aabd07ef6fb113f",
    "build_date" : "2020-03-26T06:34:37.794943Z",
    "build_snapshot" : false,
    "lucene_version" : "8.4.0",
    "minimum_wire_compatibility_version" : "6.8.0",
    "minimum_index_compatibility_version" : "6.0.0-beta1"
  },
  "tagline" : "You Know, for Search"

 

 

 

 

 

Centos 7.6 Install ELK离线安装
极致,细节
05-17 1495
Nginx安装 https://blog.csdn.net/hanzheng260561728/article/details/90209721 Nginx配置实例 https://blog.csdn.net/hanzheng260561728/article/details/80583051 Centos 7.6系统下载 http://mirrors.cqu.edu.cn/Cen...
CentOS 7 压缩包方式安装 Elasticsearch
找啊找啊找bug的博客
05-12 285
1.下载 Elasticsearch 压缩包 Elasticsearch下载地址 IK分词器下载地址 Kibana下载地址 Elasticsearch-Head下载地址(也可使用谷歌浏览器Elasticsearch-Head插件) 注意所有压缩包版本号要(Elasticsearch-Head除外),这里以 7.12.1 为例 2.准备 Elasticsearch规划安装目录:/usr/local/elasticsearch Kibana规划安装目录:/usr/local/kibana Nodejs规划安
ElasticSearch的解压安装
m0_46093203的博客
07-29 348
1、解压后的文件 文件中相关目录文件夹的解析: bin:启动文件 config:配置文件 log4j2:日志配置文件 jvm.options.d java虚拟机相关配置 elasticSearch.yml elasticSearch的配置文件!,默认端口9200 lib:相关jar包 module:功能模块 plugins:插件 logs:日志 2、启动 打开bin目录,双击elasticsearch.bat文件 此时已经启动,认真查看会出现两个端口,所以后面也要配置跨域 172.0.0.1:9300
ELK 7.6 安装 Elasticsearch 7.6
mixboot
02-21 1277
ELK Grafana 安装1,ELK Grafana 安装 1,ELK Grafana 安装 Elasticsearch Elasticsearch个分布式、可扩展、实时的搜索与数据分析引擎。 Logstash Logstash 是开源的服务器端数据处理管道,能够同时从多个来源采集数据,转换数据,然后将数据发送到您最喜欢的“存储库”中。 Kibana 通过 Kibana,您可以对自己的 ...
elasticsearch安装.zip
07-21
elasticsearch安装所依赖的包,包括es5.22安装包,es插件 ,ik中文分词器
Elasticsearch安装教程
最新发布
alankuo的专栏
10-08 1347
【代码】Elasticsearch安装教程。
安装指南:ELK 7.6.2拼音分词插件的部署与配置
在本例中,我们有个特定版本的ELK分词拼音插件,即针对Elasticsearch 7.6.2版本的拼音插件。通常,这样的插件需要被正确地安装和配置在Elasticsearch中,以便能够正确执行其功能。接下来,我们将详细介绍如何下载...
LINUX-ELK7.6.2.zip
08-27
Linux ELK 7.6.2个强大的日志管理和分析解决方案,由四个核心组件组成:Filebeat、Kafka、Zookeeper、Logstash、Elasticsearch 和 Kibana。这个压缩包提供了这些组件的源码资源,使得用户可以自行编译和部署在...
Centos7 ELK7.6.2集群搭建
Messi的小迷弟
12-18 1120
Centos7 ELK7.6.2集群搭建ELK7.6.2网盘安装包下载、单节点准备配置ip配置主机名和主机名映射关闭防火墙事件同步更换yum源(阿里云yum源)安装常用软件系统优化创建用来启动es的普通用户jdk安装二、克隆两台虚拟机配置免密登录(三台机器都要)三、安装elasticsearch上传及解压配置elasticsearch.yml将本节点的elasticsearch-7.6.2发送到另外两台机器上修改另外两台节点的elasticsearch.yml配置信息给所有节点上的elasticsearc
elasticsearch7.6.2 集群研究及搭建过程(windows版)
LUNG108的博客
06-02 709
压缩包方式 1. 下载解压 https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-7.6.2-windows-x86_64.zip 2. 启动 解压之后,追加些配置config/elasticsearch.yml,启动 #是否启用xpack xpack.ml.enabled: false # 允许跨域访问 http.cors.enabled: true http.cors.allow-origin:...
ELK 7.6.2全套日志分析组件源码资源包下载
它是个轻量级转发器,可以安装在服务器上,监视指定的日志文件或位置,并转发日志数据至指定位置,如Elasticsearch或Logstash。Filebeat的作用是安全高效地将日志数据传输到Elasticsearch,它通过减少资源使用并...
ELK6.2.4安装.zip
04-09
elasticsearch-6.2.4.tar.gz kibana-6.2.4-linux-x86_64.tar.gz logstash-6.2.4.tar.gz
elk打包zip 第部分
12-05
ELKElasticsearch、Logstash和Kibana三部分组件组成
Elasticsearch安装和入门使用
weixin_43790613的博客
10-07 4658
ES安装和简单使用
最新Centos7.6 部署ELK日志分析系统
weixin_30768175的博客
07-18 507
下载elasticsearch 创建elk用户并授权 useradd elk chown -R elk:elk /home/elk/elasticsearch chown -R elk:elk /home/elk/elasticsearch1 chown -R elk:elk /home/elk/elasticsearch2 mkdir -p /home/eladata mkdir -p...
Elasticsearch基础篇之安装和基础使用
llaxw1989的博客
03-06 1824
ElasticSearch软件和基础使用
ELK7.6.0】docker es单节点环境搭建及logstash同步mysql数据至ElasticSearch
m0_67403073的博客
04-11 267
单节点ES 1 安装elasticsearch 1.1 测试elasticsearch docker run -d --name elasticsearch -p 9200:9200 -p 9300:9300 -e "discovery.type=single-node" elasticsearch:7.6.0 1.3 创建目录 mkdir -p /web/es/config/ mkdir -p /web/es/data/ 1.3 拷贝文件 docker cp elasticsearch:/usr/sha
ELK-7.6.0安装及配置
烟花散尽不问繁华
03-26 2022
、JDK环境(建议最少11以上): 在/etc/profile末尾添加以下内容: export JAVA_HOME=/usr/local/jdk11.0.6_91 export PATH=${JAVA_HOME}/bin:${PATH} 然后source /etc/profile 二、安装Elasticsearch 官方下载地址:https://www.elastic.co/downloads...
ELK 7.6 搭建过程(Linuxcentos7
LUNG108的博客
05-08 641
前段时间搭建运行了个windows版的elk,主要目的是为了研究elk的整个运行过程 https://blog.csdn.net/LUNG108/article/details/115968732 目录 写在前面 elasticsearch 安装 1. 拉取镜像 2. 启动容器 二、kibana 安装 1. 拉取镜像 2. 启动容器 挂载个文件 三、logstash 安装 1. 下载包 2. 解压启动 其中 启动 四、filebeat 安装 1.下载包 2..
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值