Elasticsearch is a distributed, RESTful search and analytics engine capable of addressing a growing number of use cases. As the heart of the Elastic Stack, it centrally stores your data for lightning fast search, fine‑tuned relevancy, and powerful analytics that scale with ease.
Before installing Elasticsearch we need JDK installed on the server, installing JDK is available here. https://blog.pandaways.com/2020/04/19/java-jdk-8-installation-on-centos-7/
There are many ways to install Elasticsearch instance, we can use a package manager like yum on CentOS or apt on Ubuntu. This time we will use the tarball version. Download the Elasticsearch package from https://www.elastic.co/downloads/elasticsearch site.
The other way we can download with wget command.
[root@localhost]# wget https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-7.6.2-linux-x86_64.tar.gz
After downloading the package, extract and rename the directory to elasticsearch. Change directory ownership to elasticsearch with chown command, we need start the instance with elasticsearch user.
[root@localhost]# tar zxvf elasticsearch-7.6.2-linux-x86_64.tar.gz [root@localhost]# mv elasticsearch-7.6.2 elasticsearch [root@localhost]# chown -R elasticsearch:elasticsearch elasticsearch
Before we start the Elasticsearch instance we need to set several configurations. Set the elasticsearch.yml file bellow, change with your server address (ex: 192.168.0.110).
[root@localhost]# cd elasticsearch/ [root@localhost]# vim config/elasticsearch.yml
Create elasticsearch user and set soft & hard open files on /etc/security/limits.conf file.
[root@localhost]# useradd elasticsearch [root@localhost]# vim /etc/security/limits.conf
Now we can start Elasticsearch with /bin/elasticsearch command. This command will run on foreground, I recommend to run in background tools like tmux or screen.
Create tmux windows and start the Elasticsearch, for stopping just interrupt with ctrl + c key.
[root@localhost]# su elasticsearch [elasticsearch@localhost]# tmux new -s elasticsearch [elasticsearch@localhost]# ./bin/elasticsearch
We can make sure if Elasticsearch opened with accessing 192.168.0.110:9200 port on the browser.
Kibana is an open source frontend application that sits on top of the Elastic Stack, providing search and data visualization capabilities for data indexed in Elasticsearch. Commonly known as the charting tool for the Elastic Stack (previously referred to as the ELK Stack after Elasticsearch, Logstash, and Kibana), Kibana also acts as the user interface for monitoring, managing, and securing an Elastic Stack cluster — as well as the centralized hub for built-in solutions developed on the Elastic Stack. Developed in 2013 from within the Elasticsearch community, Kibana has grown to become the window into the Elastic Stack itself, offering a portal for users and companies.
Like the Elasticsearch we can install either with package manager or tarball version. We will install with tarball version. Download package from https://www.elastic.co/downloads/kibana.
Simply we can download with wget command on terminal.
[root@localhost]# wget https://artifacts.elastic.co/downloads/kibana/kibana-7.6.2-linux-x86_64.tar.gz
Then extract tar file and move with directory named kibana.
[root@localhost]# tar zxvf kibana-7.6.2-linux-x86_64.tar.gz [root@localhost]# mv kibana-7.6.2-linux-x86_64 kibana
Like Elasticsearch, Kibana will work with its own user. Change Kibana directory ownership to kibana and create the kibana user.
[root@localhost]# chown -R kibana:kibana kibana [root@localhost]# useradd kibana
Set config/kibana.yml configuration file your address.
For starting Kibana we can use ./bin/kibana command. This command will start kibana on the foreground, use tmux or screen. For stopping just interrupt keyboard with ctrl + c.
[root@localhost]# su kibana [kibana@localhost]# tmux new -s kibana [kibana@localhost]# ./bin/kibana
Access Kibana UI on 5601 port with browser.