search

TravisFSmith / SweetSecurity

Network Security Monitoring on Raspberry Pi type devices
Apache License 2.0
777 stars 190 forks source link

Waiting for Elasticsearch to start... #20

Open mtk54101 opened 7 years ago

mtk54101 commented 7 years ago

Hi sir,

 then i install the server by  "sudo python setup.py".  it always blocking in "Waiting for Elasticsearch to start..." as below.
 i do not know how to do the next? how to start Elasticsearch? it has been installed?
 thanks

Elasticsearch already installed Creating elasticsearch credentials Kibana already installed Importing Kibana Index Patterns Importing /root/Documents/github/SweetSecurity/kibana/patterns/logstash.json Importing /root/Documents/github/SweetSecurity/kibana/patterns/sweet_security_alerts.json Importing /root/Documents/github/SweetSecurity/kibana/patterns/sweet_security.json Importing /root/Documents/github/SweetSecurity/kibana/patterns/tardis.json Importing Dashboards Importing /root/Documents/github/SweetSecurity/kibana/dashboards/geoip.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/SweetSecurityAlerts.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/logstash.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/sweet_security.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/baselines.json Waiting for Elasticsearch to start... Waiting for Elasticsearch to start...

TravisFSmith commented 7 years ago

There appears to be an error in communicating with Elasticsearch to update the kibana instance. If there is a specific exception being thrown, the current installer does not log it. You can modify the installer to print out the exception by performing the following.

Paste the results here.

darkmatter91 commented 7 years ago

Are you getting issues regarding the curl of localhost:9200? If so, you can kill the install, run sudo service elasticsearch start, check the status and review the error code. I was having like issues and it was complaining java-v8 was not installed. Purged all old java and installed 8. Re-ran the install and everything is working fine now.

ghost commented 6 years ago

I am trying to install a server (Role 3) on an Ubuntu 17.10 64 bit and I am having the same issue Starting Kibana Importing Kibana Index Pattern Importing /home/user/sweetsecurity/kibana/patterns/tardis.json Importing /home/user/sweetsecurity/kibana/patterns/logstash.json Importing /home/user/sweetsecurity/kibana/patterns/sweet_security_alerts.json Importing /home/user/sweetsecurity/kibana/patterns/sweet_security.json Importing Dashboards Importing /home/user/sweetsecurity/kibana/dashboards/SweetSecurityAlerts.json Importing /home/user/sweetsecurity/kibana/dashboards/logstash.json Importing /home/user/sweetsecurity/kibana/dashboards/geoip.json Importing /home/user/sweetsecurity/kibana/dashboards/baselines.json Importing /home/user/sweetsecurity/kibana/dashboards/sweet_security.json Waiting for Elasticsearch to start...

The exception for me is: TransportError(404, u'document_missing_exception', u'[config][5.5.1]: document missing') the elasticsearch service is running and responds on port 9200 but the installer does not see it.

Dulanic commented 6 years ago

Same issue, my errors just show unable to connect over and over saying connection refused.

Restarting Apache
Installing Logstash
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (7) Failed to connect to localhost port 9201: Connection refused
Error: Waiting for Elasticsearch to start...try 1 of 10
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (7) Failed to connect to localhost port 9201: Connection refused
Error: Waiting for Elasticsearch to start...try 2 of 10
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (7) Failed to connect to localhost port 9201: Connection refused
Error: Waiting for Elasticsearch to start...try 3 of 10
VernMcC commented 6 years ago

I had a similar problem, but discovered it was the password I used on my elastic stack. I built the web half in a VM and used a non-alphanumeric in the password, but the Raspberry Pi was set to En-GB keyboard, so when I typed in the password on the Raspberry Pi it was submitting the wrong character.

s3luX commented 6 years ago

In case the setup script wait on elastic search run the following command: /etic/init.d/elasticsearch status

it will most probably say that the service did not start correctly, and most probably it will be due to the Java Runtime Env. run the following commands and it will fix your issue in case its the java: apt-get update apt-get install default-jre

Lanroc commented 4 years ago

Having same problem with error NotFoundError(404, u'document_missing_exception', u'[config][5.5.1]: document missing')