wazuh web interface down
298 views
Skip to first unread message
Madison !
Sep 9, 2021, 3:18:42 PM9/9/21
to Wazuh mailing list
Hello team could you help me to resolve the problem
My wazuh web interface is down and i can not up to it. wazuh-manager status is running
kibana service is running
elastic search service is running
What else should I see?
Madison !
Sep 9, 2021, 3:28:02 PM9/9/21
to Wazuh mailing list
Kibana service is not ready yet
пятница, 10 сентября 2021 г. в 01:18:42 UTC+6, Madison !:
elw...@wazuh.com
Sep 10, 2021, 6:47:29 AM9/10/21
to Wazuh mailing list
Hello Madison,
Can perform and share the following :
- Stop kibana service and run it in verbose mode: systemctl stop kibana then sudo -u kibana /usr/share/kibana/bin/kibana --verbose , share the output.
- Elasticsearch logs file ( The default located in: /var/log/elasticsearch/elasticsearch.log).
Regards,
Wali
Madison !
Oct 14, 2021, 3:03:05 AM10/14/21
to Wazuh mailing list
elw...@wazuh.com
Oct 14, 2021, 6:52:02 AM10/14/21
to Wazuh mailing list
Hello Madison,
I forgot to mention that the configuration file should be mentioned to run Kibana in verbose mode: sudo -u kibana /usr/share/kibana/bin/kibana --verbose -c /etc/kibana/kibana.yml
You can share the logs from Elasticsearch as well.
Regards,
Wali
I forgot to mention that the configuration file should be mentioned to run Kibana in verbose mode: sudo -u kibana /usr/share/kibana/bin/kibana --verbose -c /etc/kibana/kibana.yml
You can share the logs from Elasticsearch as well.
Regards,
Wali
Madison !
Oct 14, 2021, 9:55:38 AM10/14/21
to Wazuh mailing list
elw...@wazuh.com
Oct 15, 2021, 4:25:37 AM10/15/21
to Wazuh mailing list
Hello Madison,
Please share Elasticsearch logs as requested previously.
For Kibana, You need to navigate first to /usr/share/kibana/ then run it in verbose mode:
cd /usr/share/kibana/
sudo -u kibana /usr/share/kibana/bin/kibana --verbose -c /etc/kibana/kibana.yml
Regards,
Wali
Please share Elasticsearch logs as requested previously.
For Kibana, You need to navigate first to /usr/share/kibana/ then run it in verbose mode:
cd /usr/share/kibana/
sudo -u kibana /usr/share/kibana/bin/kibana --verbose -c /etc/kibana/kibana.yml
Regards,
Wali
Madison !
Oct 16, 2021, 7:08:30 PM10/16/21
to Wazuh mailing list
[root@localhost kibana]# sudo -u kibana /usr/share/kibana/bin/kibana --verbose -c /etc/kibana/kibana.yml
/usr/share/kibana/node_modules/@babel/register/lib/cache.js:81
throw e;
^
Error: ENOSPC: no space left on device, write
at Object.writeSync (fs.js:573:3)
at Object.writeFileSync (fs.js:1204:26)
at save (/usr/share/kibana/node_modules/@babel/register/lib/cache.js:63:17)
at process._tickCallback (internal/process/next_tick.js:61:11)
at Function.Module.runMain (internal/modules/cjs/loader.js:834:11)
at startup (internal/bootstrap/node.js:283:19)
at bootstrapNodeJSCore (internal/bootstrap/node.js:623:3)
пятница, 15 октября 2021 г. в 14:25:37 UTC+6, elw...@wazuh.com:
elw...@wazuh.com
Oct 18, 2021, 6:47:59 AM10/18/21
to Wazuh mailing list
Hello Madison,
As the error message states, the server has no available space left `Error: ENOSPC: no space left on device, write` you can verify that with df -h.
Regards,
Wali
As the error message states, the server has no available space left `Error: ENOSPC: no space left on device, write` you can verify that with df -h.
Regards,
Wali
elw...@wazuh.com
Oct 18, 2021, 8:20:26 AM10/18/21
to Wazuh mailing list
Hello Madison,
Please make sure to hit Reply to all when answering so the whole community can see your response.
The available disk is located for /home directory which is not used by Elasticsearch nor Kibana by default.
.png?part=0.1&view=1)
You should either change the allocation to be for the root / directory or change the default path for Elasticsearch (path.logs & path.data) & Kibana (path.data) to a newly created directories under /home, making sure that the ownership/permissions matched the defaults path.
Regards,
Wali
Please make sure to hit Reply to all when answering so the whole community can see your response.
The available disk is located for /home directory which is not used by Elasticsearch nor Kibana by default.
You should either change the allocation to be for the root / directory or change the default path for Elasticsearch (path.logs & path.data) & Kibana (path.data) to a newly created directories under /home, making sure that the ownership/permissions matched the defaults path.
Regards,
Wali
Madison !
Oct 19, 2021, 1:19:24 AM10/19/21
to Wazuh mailing list
Wali, if i create a new wazuh server I should add more space to the root directory isn't it?
понедельник, 18 октября 2021 г. в 18:20:26 UTC+6, elw...@wazuh.com:
Elwali Karkoub
Oct 19, 2021, 4:04:04 AM10/19/21
to wa...@googlegroups.com
--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/81b5b03c-1fcf-420e-aa94-980c0010c49fn%40googlegroups.com.
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/81b5b03c-1fcf-420e-aa94-980c0010c49fn%40googlegroups.com.
elw...@wazuh.com
Oct 19, 2021, 4:06:45 AM10/19/21
to Wazuh mailing list
Hello Madison,
Please use Reply ALL when answering.
Indeed, you should allocate more resources to the root directory and if you are deploying a new instance you can leverage the use of the unattended script https://documentation.wazuh.com/current/installation-guide/open-distro/all-in-one-deployment/unattended-installation.html.
Hope it helps.
Regards,
Wali
Please use Reply ALL when answering.
Indeed, you should allocate more resources to the root directory and if you are deploying a new instance you can leverage the use of the unattended script https://documentation.wazuh.com/current/installation-guide/open-distro/all-in-one-deployment/unattended-installation.html.
Hope it helps.
Regards,
Wali
Madison !
Oct 20, 2021, 7:51:53 AM10/20/21
to Wazuh mailing list
where i can change the default path where is located
path.logs & path.data could you help me?
вторник, 19 октября 2021 г. в 14:06:45 UTC+6, elw...@wazuh.com:
elw...@wazuh.com
Oct 20, 2021, 8:06:23 AM10/20/21
to Wazuh mailing list
In Elasticsearch configuration /etc/elasticsearch/elasticsearch.yml.
Regards,
Wali
Madison !
Oct 20, 2021, 9:05:08 AM10/20/21
to Wazuh mailing list
i should change path.data and path logs?
for example: /home/lib/elasticsearch?
/home/log/elasticsearch?
/home/log/elasticsearch?
среда, 20 октября 2021 г. в 18:06:23 UTC+6, elw...@wazuh.com:
Madison !
Oct 20, 2021, 9:15:42 AM10/20/21
to Wazuh mailing list
Does it look like i should add more spaces on the var directory all the logs are keeping on var?
среда, 20 октября 2021 г. в 18:06:23 UTC+6, elw...@wazuh.com:
Madison !
Oct 21, 2021, 9:25:49 AM10/21/21
to Wazuh mailing list
Please could you answer it?
среда, 20 октября 2021 г. в 19:15:42 UTC+6, Madison !:
elw...@wazuh.com
Oct 22, 2021, 5:05:54 AM10/22/21
to Wazuh mailing list
Hello Madison,
Sure, you can also allocate more disk space to /var.
Regards,
Wali
Sure, you can also allocate more disk space to /var.
Regards,
Wali
Reply all
Reply to author
Forward
0 new messages