Skip to content

gokhanayhan38/elasticsearch-cluster

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
node1master/config
node1master/config
 
 
node2slave/config
node2slave/config
 
 
README.md
README.md
 
 

Repository files navigation

elasticsearch-cluster

Multi master durumunda clientlar hagi masterin ipsini kullanacak? Kaynak: https://dzone.com/articles/nginx-and-elasticsearch https://www.digitalocean.com/community/tutorials/how-to-install-nginx-on-ubuntu-16-04

masterların onunde bir nginx olmalı configi su sekilde:

service nginx stop sudo nano /etc/nginx/nginx.conf

user www-data;
worker_processes auto;
pid /run/nginx.pid;

events {
        worker_connections 768;
        # multi_accept on;
}

http {

        ##
        # Basic Settings
        ##

        sendfile on;
        tcp_nopush on;
        tcp_nodelay on;
        keepalive_timeout 65;
        types_hash_max_size 2048;
        # server_tokens off;

        # server_names_hash_bucket_size 64;
        # server_name_in_redirect off;

        include /etc/nginx/mime.types;
        default_type application/octet-stream;

        upstream elasticcluster{
                server 10.10.10.55:9200 weight=1 fail_timeout=1;
                server 10.10.10.53:9200 weight=1 fail_timeout=1;
        }

        # BUNLARDA BİR HATA VAR
        #sendfile        on;
        #keepalive_timeout  65;

        server {
                listen       8080;
                server_name  127.0.0.1;

                location / {
                        proxy_pass  http://elasticcluster;
                        proxy_connect_timeout 1;
                }

                error_page   500 502 503 504  /50x.html;
                location = /50x.html {
                root   html;
                }

        }

        ##
        # SSL Settings
        ##

        ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
        ssl_prefer_server_ciphers on;
        
         ##
        # Logging Settings
        ##

        access_log /var/log/nginx/access.log;
        error_log /var/log/nginx/error.log;

        ##
        # Gzip Settings
        ##

        gzip on;
        gzip_disable "msie6";

        # gzip_vary on;
        # gzip_proxied any;
        # gzip_comp_level 6;
        # gzip_buffers 16 8k;
        # gzip_http_version 1.1;
        # gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;

        ##
        # Virtual Host Configs
        ##

        include /etc/nginx/conf.d/*.conf;
        include /etc/nginx/sites-enabled/*;
}

service nginx start service nginx restart vb de kullanılabilir.

If you are simply making configuration changes, Nginx can often reload without dropping connections. To do this, this command can be used: sudo systemctl reload nginx

Tunnelling gerekirse :

ssh -L9200:10.10.10.70:8080 [email protected]

Burada 10.10.10.70 in 8080 portuna 18.218.170.149 routeri uzerinden baglanıp bizim 9200 portumuza baglıyor. Sonrada localhost:9200 u kullanarak 10 lu ip deki makinanın istedigimiz portuna erişiyoruz. 10 lu ip de ki 8080 portunun configurasyonu yukardaki nginx conf ile yapıldı.

Security

Add the following line to your elasticsearch.yml to disable dynamic scripting and prevent remote code execution:

script.disable_dynamic: true

https://bou.ke/blog/elasticsearch-rce/

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published