Alpha update in AWS - ELSA to Kibana
15 views
Skip to first unread message
Jon Little
Oct 25, 2017, 6:07:01 AM10/25/17
to security-onion
I have an issue when migrating to Kibana.
Any suggestions?
I cant get so-elastic-restart to complete after trying to migrate the config it times out.
I was timing out on "sudo so-elastic-configure"
so-freqserver: 7e93c2cdd323784372ff0c82e8bb104c72c1dc20c953c53e6f21a044d4cf84d5
so-domainstats: 25b48607c92fbb7eb293238948050d694234d4911b19e8eb89cb105601beef82
so-elasticsearch: 9c91efc5e0753d209e7f1748d45c848fd2b9335fb70cabfa4ac22ef99ac11b6c
so-logstash: 5da451c0080ea5232317b668c7f57cc2adbe63c2a19d9ab729f3040a7306642d
Waiting for ElasticSearch................................................................
Connection attempt timed out. Unable to connect to ElasticSearch.
Please try:
-checking log(s) in /var/log/elasticsearch/
-running 'sudo docker ps'
-running 'sudo so-elastic-restart'
so-kibana: ce592daa7a9e26b144d0b8b445d03946ddb682d37945efc203b9aa06ea5b4508
so-elastalert: 99d932bcd1b26b83ca0d24549a31dd7709533cf194d1c7c66cbc95d4b534b22d
so-curator: 8baa61dd4bc5ef38adb3f70b38c09d8f0d39d0f272e31ccfb10b8bd531d70f3f
ubuntu@ip-:/var/log/logstash$ sudo docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
8baa61dd4bc5 securityonionsolutions/so-curator "/bin/bash" 24 seconds ago Up 23 seconds so-curator
99d932bcd1b2 securityonionsolutions/so-elastalert "/opt/start-elasta..." 24 seconds ago Up 24 seconds so-elastalert
25b48607c92f securityonionsolutions/so-domainstats "/bin/sh -c '/usr/..." About a minute ago Up About a minute 20000/tcp so-domainstats
7e93c2cdd323 securityonionsolutions/so-freqserver "/bin/sh -c '/usr/..." About a minute ago Up About a minute 10004/tcp so-freqserver
ubuntu@ip-:/var/log/logstash$ cat /var/log/elasticsearch/
Any suggestions?
I cant get so-elastic-restart to complete after trying to migrate the config it times out.
I was timing out on "sudo so-elastic-configure"
so-freqserver: 7e93c2cdd323784372ff0c82e8bb104c72c1dc20c953c53e6f21a044d4cf84d5
so-domainstats: 25b48607c92fbb7eb293238948050d694234d4911b19e8eb89cb105601beef82
so-elasticsearch: 9c91efc5e0753d209e7f1748d45c848fd2b9335fb70cabfa4ac22ef99ac11b6c
so-logstash: 5da451c0080ea5232317b668c7f57cc2adbe63c2a19d9ab729f3040a7306642d
Waiting for ElasticSearch................................................................
Connection attempt timed out. Unable to connect to ElasticSearch.
Please try:
-checking log(s) in /var/log/elasticsearch/
-running 'sudo docker ps'
-running 'sudo so-elastic-restart'
so-kibana: ce592daa7a9e26b144d0b8b445d03946ddb682d37945efc203b9aa06ea5b4508
so-elastalert: 99d932bcd1b26b83ca0d24549a31dd7709533cf194d1c7c66cbc95d4b534b22d
so-curator: 8baa61dd4bc5ef38adb3f70b38c09d8f0d39d0f272e31ccfb10b8bd531d70f3f
ubuntu@ip-:/var/log/logstash$ sudo docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
8baa61dd4bc5 securityonionsolutions/so-curator "/bin/bash" 24 seconds ago Up 23 seconds so-curator
99d932bcd1b2 securityonionsolutions/so-elastalert "/opt/start-elasta..." 24 seconds ago Up 24 seconds so-elastalert
25b48607c92f securityonionsolutions/so-domainstats "/bin/sh -c '/usr/..." About a minute ago Up About a minute 20000/tcp so-domainstats
7e93c2cdd323 securityonionsolutions/so-freqserver "/bin/sh -c '/usr/..." About a minute ago Up About a minute 10004/tcp so-freqserver
ubuntu@ip-:/var/log/logstash$ cat /var/log/elasticsearch/
Wes
Oct 25, 2017, 8:02:55 AM10/25/17
to security-onion
Jon,
Have you tried checking the log(s) in /var/log/elasticsearch/ for clues?
Thanks,
Wes
Reply all
Reply to author
Forward
0 new messages