First install with docker and can't connect to localhost

[PKNekoLink]

Hello. I'm intereset by opencti and I wanna try this. I create a VM with hyper-v ans ubuntu 20.04. I've try to install OpenCTI with docker, following the guide. My docker-compose.yml looks like:

version: '3' services: redis: image: redis:6.2.1 restart: always volumes:

• redisdata:/data elasticsearch: image: docker.elastic.co/elasticsearch/elasticsearch:7.11.2 volumes:
• esdata:/usr/share/elasticsearch/data environment:
• discovery.type=single-node restart: always ulimits: memlock: soft: -1 hard: -1 nofile: soft: 65536 hard: 65536 minio: image: minio/minio:RELEASE.2021-03-10T05-11-33Z volumes:
• s3data:/data ports:
• "9000:9000" environment: MINIO_ACCESS_KEY: mdppz2 MINIO_SECRET_KEY: mdppz3 command: server /data healthcheck: test: ["CMD", "curl", "-f", "http://localhost:9000/minio/health/live"] interval: 30s timeout: 20s retries: 3 restart: always rabbitmq: image: rabbitmq:3.8-management environment:
• RABBITMQ_DEFAULT_USER=quest
• RABBITMQ_DEFAULT_PASS=quest volumes:
• amqpdata:/var/lib/rabbitmq restart: always opencti: image: opencti/platform:4.3.1 environment:
• NODE_OPTIONS=--max-old-space-size=8096
• APP__PORT=8080
• APPADMINEMAIL=pk**@gmail.com
• APPADMINPASSWORD=mdppz
• APPADMINTOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• APP__LOGS_LEVEL=error
• APP__LOGS=./logs
• APP__REACTIVE=true
• APP__COOKIE_SECURE=false
• REDIS__HOSTNAME=redis
• REDIS__PORT=6379
• ELASTICSEARCH__URL=http://elasticsearch:9200
• MINIO__ENDPOINT=minio
• MINIO__PORT=9000
• MINIO__USE_SSL=false
• MINIO__ACCESS_KEY=mdppz2
• MINIO__SECRET_KEY=mdppz3
• RABBITMQ__HOSTNAME=rabbitmq
• RABBITMQ__PORT=5672
• RABBITMQ__PORT_MANAGEMENT=15672
• RABBITMQ__MANAGEMENT_SSL=false
• RABBITMQ__USERNAME=quest
• RABBITMQ__PASSWORD=quest
• PROVIDERSLOCALSTRATEGY=LocalStrategy ports:
• "8080:8080" depends_on:
• redis
• elasticsearch
• minio
• rabbitmq restart: always worker: image: opencti/worker:4.3.1 environment:
• OPENCTI_URL=http://opencti:8080
• OPENCTI_TOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• WORKER_LOG_LEVEL=info depends_on:
• opencti deploy: mode: replicated replicas: 3 restart: always connector-history: image: opencti/connector-history:4.3.1 environment:
• OPENCTI_URL=http://opencti:8080
• OPENCTI_TOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• CONNECTOR_ID=eafd4628-8bbc-11eb-b2a9-00155d010a05
• CONNECTOR_TYPE=STREAM
• CONNECTOR_NAME=History
• CONNECTOR_SCOPE=history
• CONNECTOR_CONFIDENCE_LEVEL=3
• CONNECTOR_LOG_LEVEL=info restart: always connector-export-file-stix: image: opencti/connector-export-file-stix:4.3.1 environment:
• OPENCTI_URL=http://opencti:8080
• OPENCTI_TOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• CONNECTOR_ID=fce77336-8bbc-11eb-80b4-00155d010a05
• CONNECTOR_TYPE=INTERNAL_EXPORT_FILE
• CONNECTOR_NAME=ExportFileStix2
• CONNECTOR_SCOPE=application/json
• CONNECTOR_CONFIDENCE_LEVEL=3
• CONNECTOR_LOG_LEVEL=info restart: always connector-export-file-csv: image: opencti/connector-export-file-csv:4.3.1 environment:
• OPENCTI_URL=http://opencti:8080
• OPENCTI_TOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• CONNECTOR_ID=0a416668-8bbd-11eb-8426-00155d010a05
• CONNECTOR_TYPE=INTERNAL_EXPORT_FILE
• CONNECTOR_NAME=ExportFileCsv
• CONNECTOR_SCOPE=text/csv
• CONNECTOR_CONFIDENCE_LEVEL=3
• CONNECTOR_LOG_LEVEL=info restart: always connector-import-file-stix: image: opencti/connector-import-file-stix:4.3.1 environment:
• OPENCTI_URL=http://opencti:8080
• OPENCTI_TOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• CONNECTOR_ID=14fab88e-8bbd-11eb-bd2a-00155d010a05
• CONNECTOR_TYPE=INTERNAL_IMPORT_FILE
• CONNECTOR_NAME=ImportFileStix2
• CONNECTOR_SCOPE=application/json
• CONNECTOR_CONFIDENCE_LEVEL=3
• CONNECTOR_LOG_LEVEL=info restart: always connector-import-file-pdf-observables: image: opencti/connector-import-file-pdf-observables:4.3.1 environment:
• OPENCTI_URL=http://opencti:8080
• OPENCTI_TOKEN=873c5f8e-8bbc-11eb-b132-00155d010a05
• CONNECTOR_ID=22bc7aca-8bbd-11eb-bd2d-00155d010a05
• CONNECTOR_TYPE=INTERNAL_IMPORT_FILE
• CONNECTOR_NAME=ImportFilePdfObservables
• CONNECTOR_SCOPE=application/pdf
• CONNECTOR_CONFIDENCE_LEVEL=3
• CONNECTOR_LOG_LEVEL=info
• PDF_OBSERVABLES_CREATE_INDICATOR=False restart: always volumes: esdata: s3data: redisdata: amqpdata:

And when I lunch dock compose for the first time, it's seem I've got no problem. For security, I lunch it twice and got this:

sudo docker-compose up -d WARNING: Some services (worker) use the 'deploy' key, which will be ignored. Compose does not support 'deploy' configuration - use docker stack deploy to deploy to a swarm. docker_elasticsearch_1 is up-to-date docker_connector-export-file-stix_1 is up-to-date docker_connector-import-file-stix_1 is up-to-date docker_minio_1 is up-to-date docker_rabbitmq_1 is up-to-date docker_connector-import-file-pdf-observables_1 is up-to-date docker_redis_1 is up-to-date docker_connector-history_1 is up-to-date docker_connector-export-file-csv_1 is up-to-date docker_opencti_1 is up-to-date docker_worker_1 is up-to-date

But when I try to go to http://opencti:8080, I've got nothing (no website). Did I miss something? Thanks for your help ;)

[richard-julien]

Do you create a dns linking opencti to your vm? (http://opencti:8080) If not if think you need to use http://IP_OF_YOUR_VM:8080 Try first inside your VM to access http://localhost:8080

[PKNekoLink]

My VM IP is 172.31.83.XXX and it's not working with localhost, 127.0.0.1 or 172.31.83.xxx inside the VM. The VM and the host can ping each other but I want to test in my VM before trying to reach with the host.

[PKNekoLink]

Up

[SamuelHassine]

Hello @PKNekoLink,

1) What is the output of docker ps? 2) Can you please share the logs of the OpenCTI platform container?

Thanks!

[PKNekoLink]

This is my "docker ps":

CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 9c8c7e0a6a60 opencti/worker:4.3.4 "/entrypoint.sh" 2 minutes ago Restarting (1) 16 seconds ago docker_worker_1

059aa0594ef8 opencti/platform:4.3.4 "/sbin/tini -- node …" 3 minutes ago Restarting (1) 11 seconds ago docker_opencti_1

757278b6a493 opencti/connector-import-file-pdf-observables:4.3.4 "/entrypoint.sh" 3 minutes ago Up 3 seconds docker_connector-import-file-pdf-observables_1

f5e84e07168c redis:6.2.1 "docker-entrypoint.s…" 3 minutes ago Up 3 minutes 6379/tcp docker_redis_1

70670f97fcb4 opencti/connector-export-file-csv:4.3.4 "/entrypoint.sh" 3 minutes ago Up 2 seconds docker_connector-export-file-csv_1

ae42aa2dacdc opencti/connector-import-file-stix:4.3.4 "/entrypoint.sh" 3 minutes ago Up 2 seconds docker_connector-import-file-stix_1

fa7de8a4bfbc docker.elastic.co/elasticsearch/elasticsearch:7.12.0 "/bin/tini -- /usr/l…" 3 minutes ago Up 3 minutes 9200/tcp, 9300/tcp docker_elasticsearch_1

c199c7726fa5 rabbitmq:3.8-management "docker-entrypoint.s…" 3 minutes ago Up 3 minutes 4369/tcp, 5671-5672/tcp, 15671-15672/tcp, 15691-15692/tcp, 25672/tcp docker_rabbitmq_1

fea746afc573 opencti/connector-export-file-stix:4.3.4 "/entrypoint.sh" 3 minutes ago Up 11 seconds docker_connector-export-file-stix_1

6008438a2d1a minio/minio:RELEASE.2021-03-26T00-00-41Z "/usr/bin/docker-ent…" 3 minutes ago Restarting (1) 50 seconds ago docker_minio_1

6925d962267c opencti/connector-history:4.3.4 "/entrypoint.sh" 3 minutes ago Restarting (1) 39 seconds ago docker_connector-history_1

Where can I find OpenCTI platform container's logs?

Thanks for your answers. Best Regard

[PKNekoLink]

Up

[richard-julien]

Hi @PKNekoLink .

docker logs <id of container>

[PKNekoLink]

Hello richard-julien and thanks for your answer. docker logs docker_opencti_1:

{"error":{"name":"UnknownError","data":{"message":"getaddrinfo EAI_AGAIN minio","_stack":"Error: getaddrinfo EAI_AGAIN minio\n at GetAddrInfoReqWrap.onlookup [as oncomplete] (node:dns:69:26)"}},"version":"4.3.4","level":"error","message":"[OPENCTI] Platform initialization fail","timestamp":"2021-04-14T11:29:56.500Z"}

I don't know why initialization fail :(

[richard-julien]

Looks like opencti fail to connect to the minio container. Can you check the status and logs of minio?

[PKNekoLink]

Ok, it's seen my password for minio was too short (6 characters and need 8). Now, minio is working:

sudo docker logs docker_minio_1

You are running an older version of MinIO released 1 week ago Update: Run mc admin update

Attempting encryption of all config, IAM users and policies on MinIO backend Endpoint: http://172.18.0.5:9000 http://127.0.0.1:9000

Browser Access: http://172.18.0.5:9000 http://127.0.0.1:9000

Object API (Amazon S3 compatible): Go: https://docs.min.io/docs/golang-client-quickstart-guide Java: https://docs.min.io/docs/java-client-quickstart-guide Python: https://docs.min.io/docs/python-client-quickstart-guide JavaScript: https://docs.min.io/docs/javascript-client-quickstart-guide .NET: https://docs.min.io/docs/dotnet-client-quickstart-guide IAM initialization complete

But I can't connect to opencti:8080:

{"error":{"name":"ConfigurationError","_error":{},"_showLocations":false,"_showPath":false,"time_thrown":"2021-04-14T11:58:47.319Z","data":{"reason":"ElasticSearch seems down","category":"technical"},"internalData":{}},"version":"4.3.4","level":"error","message":"[OPENCTI] Platform initialization fail","timestamp":"2021-04-14T11:58:47.319Z"}

Do you have any ideas?

[richard-julien]

ElasticSearch seems down

Check the elastic.

[PKNekoLink]

I got this:

{"type": "server", "timestamp": "2021-04-14T11:58:12,899Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "version[7.12.0], pid[7], build[default/docker/78722783c38caa25a70982b5b042074cde5d3b3a/2021-03-18T06:17:15.410153305Z], OS[Linux/5.8.0-49-generic/amd64], JVM[AdoptOpenJDK/OpenJDK 64-Bit Server VM/15.0.1/15.0.1+9]" } {"type": "server", "timestamp": "2021-04-14T11:58:12,904Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "JVM home [/usr/share/elasticsearch/jdk], using bundled JDK [true]" } {"type": "server", "timestamp": "2021-04-14T11:58:12,918Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "JVM arguments [-Xshare:auto, -Des.networkaddress.cache.ttl=60, -Des.networkaddress.cache.negative.ttl=10, -XX:+AlwaysPreTouch, -Xss1m, -Djava.awt.headless=true, -Dfile.encoding=UTF-8, -Djna.nosys=true, -XX:-OmitStackTraceInFastThrow, -XX:+ShowCodeDetailsInExceptionMessages, -Dio.netty.noUnsafe=true, -Dio.netty.noKeySetOptimization=true, -Dio.netty.recycler.maxCapacityPerThread=0, -Dio.netty.allocator.numDirectArenas=0, -Dlog4j.shutdownHookEnabled=false, -Dlog4j2.disable.jmx=true, -Djava.locale.providers=SPI,COMPAT, --add-opens=java.base/java.io=ALL-UNNAMED, -XX:+UseG1GC, -Djava.io.tmpdir=/tmp/elasticsearch-11465125603542324052, -XX:+HeapDumpOnOutOfMemoryError, -XX:HeapDumpPath=data, -XX:ErrorFile=logs/hs_err_pid%p.log, -Xlog:gc*,gc+age=trace,safepoint:file=logs/gc.log:utctime,pid,tags:filecount=32,filesize=64m, -Des.cgroups.hierarchy.override=/, -Xms9337m, -Xmx9337m, -XX:MaxDirectMemorySize=4898947072, -XX:InitiatingHeapOccupancyPercent=30, -XX:G1ReservePercent=25, -Des.path.home=/usr/share/elasticsearch, -Des.path.conf=/usr/share/elasticsearch/config, -Des.distribution.flavor=default, -Des.distribution.type=docker, -Des.bundled_jdk=true]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,393Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [aggs-matrix-stats]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,399Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [analysis-common]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,399Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [constant-keyword]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,399Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [flattened]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,399Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [frozen-indices]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,400Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [ingest-common]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,400Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [ingest-geoip]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,402Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [ingest-user-agent]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,402Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [kibana]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,402Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [lang-expression]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,403Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [lang-mustache]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,404Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [lang-painless]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,404Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [mapper-extras]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,404Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [mapper-version]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,405Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [parent-join]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,405Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [percolator]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,405Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [rank-eval]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,405Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [reindex]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,407Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [repositories-metering-api]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,408Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [repository-encrypted]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,408Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [repository-url]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,408Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [search-business-rules]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,408Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [searchable-snapshots]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,409Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [snapshot-repo-test-kit]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,409Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [spatial]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,409Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [transform]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,410Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [transport-netty4]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,410Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [unsigned-long]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,413Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [vectors]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,413Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [wildcard]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,413Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-aggregate-metric]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,415Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-analytics]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,415Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-async]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,415Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-async-search]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,416Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-autoscaling]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,416Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-ccr]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,416Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-core]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,416Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-data-streams]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,417Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-deprecation]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,420Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-enrich]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,420Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-eql]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,420Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-fleet]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,420Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-graph]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,421Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-identity-provider]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,421Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-ilm]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,421Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-ingest]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,421Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-logstash]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,421Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-ml]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,422Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-monitoring]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,422Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-ql]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,422Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-rollup]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,422Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-runtime-fields]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,422Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-security]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,423Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-sql]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,423Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-stack]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,424Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-text-structure]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,424Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-voting-only-node]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,425Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "loaded module [x-pack-watcher]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,428Z", "level": "INFO", "component": "o.e.p.PluginsService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "no plugins loaded" } {"type": "server", "timestamp": "2021-04-14T11:58:23,485Z", "level": "INFO", "component": "o.e.e.NodeEnvironment", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "using [1] data paths, mounts [[/usr/share/elasticsearch/data (/dev/sda5)]], net usable_space [32.8gb], net total_space [48.4gb], types [ext4]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,487Z", "level": "INFO", "component": "o.e.e.NodeEnvironment", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "heap size [9.1gb], compressed ordinary object pointers [true]" } {"type": "server", "timestamp": "2021-04-14T11:58:23,617Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "node name [7cc5b6ab8d0c], node ID [6piXljIzRtu-9aoIcEk4FA], cluster name [docker-cluster], roles [transform, data_frozen, master, remote_cluster_client, data, ml, data_content, data_hot, data_warm, data_cold, ingest]" } {"type": "server", "timestamp": "2021-04-14T11:58:34,821Z", "level": "INFO", "component": "o.e.x.m.p.l.CppLogMessageHandler", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[controller/169] [Main.cc@117] controller (64 bit): Version 7.12.0 (Build 778cc7261dfdd1) Copyright (c) 2021 Elasticsearch BV" } {"type": "server", "timestamp": "2021-04-14T11:58:38,815Z", "level": "INFO", "component": "o.e.x.s.a.s.FileRolesStore", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "parsed [0] roles from file [/usr/share/elasticsearch/config/roles.yml]" } {"type": "server", "timestamp": "2021-04-14T11:58:42,739Z", "level": "INFO", "component": "o.e.t.NettyAllocator", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "creating NettyAllocator with the following configs: [name=elasticsearch_configured, chunk_size=1mb, suggested_max_allocation_size=1mb, factors={es.unsafe.use_netty_default_chunk_and_page_size=false, g1gc_enabled=true, g1gc_region_size=8mb}]" } {"type": "server", "timestamp": "2021-04-14T11:58:43,107Z", "level": "INFO", "component": "o.e.d.DiscoveryModule", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "using discovery type [single-node] and seed hosts providers [settings]" } {"type": "server", "timestamp": "2021-04-14T11:58:44,929Z", "level": "INFO", "component": "o.e.g.DanglingIndicesState", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "gateway.auto_import_dangling_indices is disabled, dangling indices will not be automatically detected or imported and must be managed manually" } {"type": "server", "timestamp": "2021-04-14T11:58:46,686Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "initialized" } {"type": "server", "timestamp": "2021-04-14T11:58:46,690Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "starting ..." } {"type": "server", "timestamp": "2021-04-14T11:58:47,506Z", "level": "INFO", "component": "o.e.x.s.c.PersistentCache", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "persistent cache index loaded" } {"type": "server", "timestamp": "2021-04-14T11:58:47,710Z", "level": "INFO", "component": "o.e.t.TransportService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "publish_address {172.18.0.7:9300}, bound_addresses {0.0.0.0:9300}" } {"type": "server", "timestamp": "2021-04-14T11:58:49,854Z", "level": "INFO", "component": "o.e.c.c.Coordinator", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "cluster UUID [qFbpv9kxQai8ITKTS5Uj2w]" } {"type": "server", "timestamp": "2021-04-14T11:58:51,350Z", "level": "INFO", "component": "o.e.c.c.JoinHelper", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "failed to join {7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144} with JoinRequest{sourceNode={7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}, minimumTerm=8, optionalJoin=Optional[Join{term=9, lastAcceptedTerm=8, lastAcceptedVersion=51, sourceNode={7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}, targetNode={7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}}]}", "stacktrace": ["org.elasticsearch.transport.RemoteTransportException: [7cc5b6ab8d0c][172.18.0.7:9300][internal:cluster/coordination/join]", "Caused by: org.elasticsearch.cluster.coordination.CoordinationStateRejectedException: incoming term 9 does not match current term 10", "at org.elasticsearch.cluster.coordination.CoordinationState.handleJoin(CoordinationState.java:214) ~[elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.coordination.Coordinator.handleJoin(Coordinator.java:1002) ~[elasticsearch-7.12.0.jar:7.12.0]", "at java.util.Optional.ifPresent(Optional.java:176) ~[?:?]", "at org.elasticsearch.cluster.coordination.Coordinator.processJoinRequest(Coordinator.java:521) ~[elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.coordination.Coordinator.lambda$handleJoinRequest$7(Coordinator.java:485) ~[elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.action.ActionListener$1.onResponse(ActionListener.java:117) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.transport.TransportService.connectToNode(TransportService.java:405) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.transport.TransportService.connectToNode(TransportService.java:392) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.coordination.Coordinator.handleJoinRequest(Coordinator.java:472) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.coordination.JoinHelper.lambda$new$1(JoinHelper.java:130) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.xpack.security.transport.SecurityServerTransportInterceptor$ProfileSecuredRequestHandler$1.doRun(SecurityServerTransportInterceptor.java:261) [x-pack-security-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.AbstractRunnable.run(AbstractRunnable.java:26) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.xpack.security.transport.SecurityServerTransportInterceptor$ProfileSecuredRequestHandler.messageReceived(SecurityServerTransportInterceptor.java:324) [x-pack-security-7.12.0.jar:7.12.0]", "at org.elasticsearch.transport.RequestHandlerRegistry.processMessageReceived(RequestHandlerRegistry.java:61) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.transport.TransportService$8.doRun(TransportService.java:914) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.ThreadContext$ContextPreservingAbstractRunnable.doRun(ThreadContext.java:732) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.AbstractRunnable.run(AbstractRunnable.java:26) [elasticsearch-7.12.0.jar:7.12.0]", "at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1130) [?:?]", "at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:630) [?:?]", "at java.lang.Thread.run(Thread.java:832) [?:?]"] } {"type": "server", "timestamp": "2021-04-14T11:58:52,241Z", "level": "INFO", "component": "o.e.c.s.MasterService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "elected-as-master ([1] nodes joined)[{7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144} elect leader, _BECOME_MASTERTASK, _FINISHELECTION], term: 10, version: 52, delta: master node changed {previous [], current [{7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}]}" } {"type": "server", "timestamp": "2021-04-14T11:58:52,244Z", "level": "WARN", "component": "o.e.c.s.MasterService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "failing [elected-as-master ([1] nodes joined)[{7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144} elect leader, _BECOME_MASTERTASK, _FINISHELECTION]]: failed to commit cluster state version [52]", "stacktrace": ["org.elasticsearch.cluster.coordination.FailedToCommitClusterStateException: node is no longer master for term 10 while handling publication", "at org.elasticsearch.cluster.coordination.Coordinator.publish(Coordinator.java:1072) ~[elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService.publish(MasterService.java:257) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService.runTasks(MasterService.java:239) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService.access$000(MasterService.java:62) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService$Batcher.run(MasterService.java:140) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.TaskBatcher.runIfNotProcessed(TaskBatcher.java:139) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.TaskBatcher$BatchedTask.run(TaskBatcher.java:177) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.ThreadContext$ContextPreservingRunnable.run(ThreadContext.java:673) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.PrioritizedEsThreadPoolExecutor$TieBreakingPrioritizedRunnable.runAndClean(PrioritizedEsThreadPoolExecutor.java:241) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.PrioritizedEsThreadPoolExecutor$TieBreakingPrioritizedRunnable.run(PrioritizedEsThreadPoolExecutor.java:204) [elasticsearch-7.12.0.jar:7.12.0]", "at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1130) [?:?]", "at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:630) [?:?]", "at java.lang.Thread.run(Thread.java:832) [?:?]"] } {"type": "server", "timestamp": "2021-04-14T11:58:52,251Z", "level": "INFO", "component": "o.e.c.c.JoinHelper", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "failed to join {7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144} with JoinRequest{sourceNode={7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}, minimumTerm=9, optionalJoin=Optional[Join{term=10, lastAcceptedTerm=8, lastAcceptedVersion=51, sourceNode={7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}, targetNode={7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}}]}", "stacktrace": ["org.elasticsearch.transport.RemoteTransportException: [7cc5b6ab8d0c][172.18.0.7:9300][internal:cluster/coordination/join]", "Caused by: org.elasticsearch.cluster.coordination.FailedToCommitClusterStateException: node is no longer master for term 10 while handling publication", "at org.elasticsearch.cluster.coordination.Coordinator.publish(Coordinator.java:1072) ~[elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService.publish(MasterService.java:257) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService.runTasks(MasterService.java:239) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService.access$000(MasterService.java:62) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.MasterService$Batcher.run(MasterService.java:140) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.TaskBatcher.runIfNotProcessed(TaskBatcher.java:139) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.cluster.service.TaskBatcher$BatchedTask.run(TaskBatcher.java:177) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.ThreadContext$ContextPreservingRunnable.run(ThreadContext.java:673) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.PrioritizedEsThreadPoolExecutor$TieBreakingPrioritizedRunnable.runAndClean(PrioritizedEsThreadPoolExecutor.java:241) [elasticsearch-7.12.0.jar:7.12.0]", "at org.elasticsearch.common.util.concurrent.PrioritizedEsThreadPoolExecutor$TieBreakingPrioritizedRunnable.run(PrioritizedEsThreadPoolExecutor.java:204) [elasticsearch-7.12.0.jar:7.12.0]", "at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1130) [?:?]", "at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:630) [?:?]", "at java.lang.Thread.run(Thread.java:832) [?:?]"] } {"type": "server", "timestamp": "2021-04-14T11:58:52,253Z", "level": "INFO", "component": "o.e.c.s.MasterService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "elected-as-master ([1] nodes joined)[{7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144} elect leader, _BECOME_MASTERTASK, _FINISHELECTION], term: 11, version: 52, delta: master node changed {previous [], current [{7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}]}" } {"type": "server", "timestamp": "2021-04-14T11:58:53,468Z", "level": "INFO", "component": "o.e.c.s.ClusterApplierService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "master node changed {previous [], current [{7cc5b6ab8d0c}{6piXljIzRtu-9aoIcEk4FA}{5wd_9xrOQMSNCpreqbVraw}{172.18.0.7}{172.18.0.7:9300}{cdfhilmrstw}{ml.machine_memory=22036758528, xpack.installed=true, transform.node=true, ml.max_open_jobs=20, ml.max_jvm_size=9797894144}]}, term: 11, version: 52, reason: Publication{term=11, version=52}" } {"type": "server", "timestamp": "2021-04-14T11:58:53,558Z", "level": "INFO", "component": "o.e.h.AbstractHttpServerTransport", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "publish_address {172.18.0.7:9200}, bound_addresses {0.0.0.0:9200}", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:58:53,567Z", "level": "INFO", "component": "o.e.n.Node", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "started", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:58:54,616Z", "level": "INFO", "component": "o.e.l.LicenseService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "license [881afda5-70b7-4d7f-a70a-447a6057c873] mode [basic] - valid", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:58:54,626Z", "level": "INFO", "component": "o.e.x.s.s.SecurityStatusChangeListener", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "Active license is now [BASIC]; Security is disabled", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:58:54,637Z", "level": "INFO", "component": "o.e.g.GatewayService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "recovered [0] indices into cluster_state", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:20,502Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_history-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:22,044Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:22,996Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_meta_objects-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:25,226Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_domain_objects-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:26,351Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_cyber_observables-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:27,452Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_relationships-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:28,645Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_core_relationships-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:29,727Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_sighting_relationships-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:30,546Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_cyber_observable_relationships-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:32,352Z", "level": "INFO", "component": "o.e.c.m.MetadataCreateIndexService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_meta_relationships-000001] creating index, cause [api], templates [], shards [1]/[1]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:45,338Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:47,133Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:47,854Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:48,403Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_stix_meta_objects-000001/Ys7BAv7tSF25O0EsUUuMtA] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T11:59:49,841Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:02,270Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_relationships-000001/b30cdrkXRvy3xcddVS7kpQ] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:03,215Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:04,346Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:04,799Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:05,886Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:08,081Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:15,031Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:16,255Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_internal_objects-000001/eI0j3LnBQEyQbqWXfr-Jow] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" } {"type": "server", "timestamp": "2021-04-14T12:00:44,454Z", "level": "INFO", "component": "o.e.c.m.MetadataMappingService", "cluster.name": "docker-cluster", "node.name": "7cc5b6ab8d0c", "message": "[opencti_history-000001/Ghmo_unhRhKbBMtvqOfthQ] update_mapping [_doc]", "cluster.uuid": "qFbpv9kxQai8ITKTS5Uj2w", "node.id": "6piXljIzRtu-9aoIcEk4FA" }

[PKNekoLink]

UP

[PKNekoLink]

I try to solve my problems but without succes :(. Someone have a ideas?

[manonviallet]

Good afternoon @PKNekoLink , is your problem still active ? I would advise joining the slack channel, if you have not already done so, as the community is active and you will be able to receive real-time advise from many other users !