search

etsy / 411

An Alert Management Web Application
https://demo.fouroneone.io
MIT License
971 stars 112 forks source link

Connectivity issue with elasticsearch in logging project in openshift #172

Closed aaryabhatt closed 6 years ago

aaryabhatt commented 6 years ago

Hi Team,

First of all thanks to you for Etsy/411, great tool and working fine for one of our deployment with elasticsearch 5x deployed with 5x branch of etsy/411.

Now I want to configure it with openshift aggregate logging EFK deployment, which capture all the operations logs. In this elasticsearch version is 2.4.4, see this so I pulled the docker image kaiz/411.

bash-4.2$ curl -XGET --key /etc/elasticsearch/secret/admin-key --cert /etc/elasticsearch/secret/admin-cert --cacert /etc/elasticsearch/secret/admin-ca "https ://localhost:9200/" { "name" : "logging-es-data-master-0v7g47an", "cluster_name" : "logging-es", "cluster_uuid" : "BRhd6zhNSGCg9SR7JZRSeQ", "version" : { "number" : "2.4.4", "build_hash" : "fcbb46dfd45562a9cf00c604b30849a6dec6b017", "build_timestamp" : "2017-01-03T11:33:16Z", "build_snapshot" : false, "lucene_version" : "5.5.2" }, "tagline" : "You Know, for Search" }

I am getting this error when I click on alert button err1

in this elasticsearch it is behind the ssl secret, so I used the the secret cert+key+ca as bundle file in cert. Earlier I was getting in elasticsearch unknown CA when certificate was not proper, and now it is not showing anything.

this is my config.php setting for elasticsearch connectivity # Configuration for the logstash index that 411 queries. 'operations' => [ 'hosts' => ['https://logging-es:9200'], 'index_hosts' => [], 'ssl_cert' => 'null', 'index' => '[.operations.]y.m.d', 'date_based' => true, 'date_interval' => 'd', 'date_field' => '@timestamp', 'date_type' => null, 'src_url' => null, ],

Now when I run the search query, it show process image and then show nothing like, no data found or some error.

How can I troubleshoot this.

-- Thanks

Amit Bondwal

aaryabhatt commented 6 years ago

I just check dockerfile of docker image kaiz/411 and found that it uses elasticsearch version 5X release. Shall I used to master branch for build image for elasticsearch version 2X.

aaryabhatt commented 6 years ago

I build the image with master repo but still facing the same issue

aaryabhatt commented 6 years ago

Issue looks different like self sign ssl certification connection to closing this and opening a new issue