Wazuh indexer reinstallation
1,038 views
Skip to first unread message
Arby Malabo
Oct 2, 2023, 2:39:10 AM10/2/23
to wa...@googlegroups.com
Hello,
How can I reinstall my indexer? I am using Amazon Machine images All-in_one deployment. My wazuh indexer can't start after I reboot the instance, I just want to try if reinstallation would make my indexer work again.
Md. Nazmur Sakib
Oct 2, 2023, 3:24:22 AM10/2/23
to Wazuh | Mailing List
Hi Arby Malabo,
I hope you are doing well. Thank you for using Wazuh.
As it is an all-in-one deployment. The indexer reinstall process can cause the indices to go missing.
To reinstall the Wazuh indexer first you need to uninstall it properly.
Check this document to get help with uninstalling the Wazuh indexer:
Check this document to get help with installing the Wazuh indexer:
https://documentation.wazuh.com/current/installation-guide/wazuh-indexer/step-by-step.html
If you want we can look into the issue you are having with your Wazuh indexer to guide you without reinstalling the Wazuh indexer.
I hope this information helps. Please let me know if you need any further information or assistance.
Regards
Md. Nazmur Sakib
Md. Nazmur Sakib
Oct 3, 2023, 6:16:24 AM10/3/23
to Wazuh | Mailing List
Hi Arby Malabo,
Hope you are doing well.
Can you share the output of
/var/log/wazuh-indexer/wazuh-cluster.log
Also, share the output of the command
filebeat test output
Can you remember if you have made any recent changes related to Wazuh Indices?
Please use the reply all option to replay in this mail thread.
Regards
Md. Nazmur Sakib
Arby Malabo
Oct 3, 2023, 10:55:40 AM10/3/23
to Md. Nazmur Sakib, Wazuh | Mailing List
Hello Nazmur,
Good day!
I did not do any changes anywhere on my wazuh, I just stop the instance for 2 days, and when I start the instance again I was prompted a message "Wazuh dashboard server is not ready yet" upon some digging I found that my indexer service is not starting.
filebeat test output
elasticsearch: https://127.0.0.1:9200...
parse url... OK
connection...
parse host... OK
dns lookup... OK
addresses: 127.0.0.1
dial up... ERROR dial tcp 127.0.0.1:9200: connect: connection refused
elasticsearch: https://127.0.0.1:9200...
parse url... OK
connection...
parse host... OK
dns lookup... OK
addresses: 127.0.0.1
dial up... ERROR dial tcp 127.0.0.1:9200: connect: connection refused
wazuh-cluster.log
2023-09-22T00:00:00,486][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:01:28,716][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:01:28,722][INFO ][o.o.c.m.MetadataCreateIndexService] [node-1] [wazuh-alerts-4.x-2023.09.22] creating index, cause [auto(bulk api)], templates [wazuh], shards [3]/[0]
[2023-09-22T00:01:28,739][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:01:28,755][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:01:28,788][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:01:28,789][INFO ][o.o.c.r.a.AllocationService] [node-1] Cluster health status changed from [YELLOW] to [GREEN] (reason: [shards started [[wazuh-alerts-4.x-2023.09.22][2], [wazuh-alerts-4.x-2023.09.22][0]]]).
[2023-09-22T00:01:28,802][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:01:28,808][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:01:28,815][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T00:01:28,835][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:03:07,072][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:08:07,072][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:13:07,073][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:15:00,176][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:15:54,731][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:15:54,739][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T00:15:54,758][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:18:07,073][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:23:07,074][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:23:56,014][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:23:56,021][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T00:23:56,041][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:28:07,074][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:30:01,473][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:33:07,074][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:38:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:43:06,906][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T00:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T00:43:06,907][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T00:43:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:45:00,643][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:48:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:53:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:58:07,076][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:00:00,392][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:03:07,076][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:08:07,076][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:13:07,077][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:15:00,134][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:18:07,077][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:23:07,077][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:28:07,078][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:30:01,468][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:33:07,078][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:38:07,078][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:43:06,906][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T01:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T01:43:06,907][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T01:43:06,934][INFO ][o.o.i.i.IndexStateManagementHistory] [node-1] No Old History Indices to delete
[2023-09-22T01:43:07,079][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:45:00,625][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:48:07,079][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:53:07,079][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:58:07,080][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:00:00,342][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:03:07,080][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:08:07,080][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:13:07,081][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:15:01,058][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:16:20,884][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:16:20,891][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:16:20,911][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:16:27,885][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:16:27,892][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:16:27,914][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:18:07,081][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:23:07,081][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:23:13,907][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:23:13,915][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:23:13,932][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:23:13,934][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:23:13,945][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:23:13,952][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:23:13,970][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:28:07,082][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:30:01,393][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:33:07,082][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:38:07,082][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T02:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T02:43:06,907][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T02:43:07,083][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:45:00,479][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:48:07,083][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:53:07,083][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:57:03,934][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:57:03,941][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:57:03,964][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:58:07,084][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:58:33,937][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:58:33,945][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:58:33,966][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:58:33,967][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:00:00,225][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:03:07,084][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:08:07,084][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:13:07,085][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:15:00,907][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:18:07,085][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:21:05,980][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:21:05,988][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T03:21:06,009][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T03:21:06,011][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:21:06,019][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T03:21:06,042][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T03:21:06,046][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:21:06,055][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:23:07,085][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:28:07,086][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:30:01,184][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:33:07,086][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:38:07,086][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T03:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T03:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T03:43:07,087][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:45:00,296][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:48:07,087][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:53:07,087][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:58:07,088][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:00:00,950][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:03:07,088][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:08:07,088][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:08:51,088][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T04:08:51,095][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T04:08:51,116][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T04:13:07,089][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:15:00,614][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:18:07,089][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:23:07,089][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:28:07,090][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:30:00,852][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:33:07,090][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:38:07,090][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T04:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T04:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T04:43:07,091][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:45:00,966][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:48:07,091][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:53:07,091][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:58:07,092][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:00:00,561][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:03:07,092][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:08:07,092][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:13:07,093][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:15:00,238][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:18:07,093][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:23:07,093][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:28:07,094][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:30:01,459][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:33:07,094][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:38:07,094][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T05:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T05:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T05:43:07,095][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:45:00,529][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:48:07,095][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:53:07,095][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:58:07,096][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:00:00,118][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:03:07,096][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:08:07,096][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:13:07,097][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:15:00,791][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:18:07,097][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:23:07,097][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:28:07,098][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:30:01,009][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:33:07,098][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:38:07,098][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T06:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T06:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T06:43:07,099][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:45:00,069][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:48:07,099][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:53:07,099][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:58:07,100][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:00:00,728][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:03:07,100][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:08:07,100][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:13:07,101][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:15:00,371][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:18:07,101][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:23:07,101][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:28:07,102][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:30:01,658][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:33:07,102][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:38:07,102][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T07:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T07:43:06,909][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T07:43:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:45:00,704][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:48:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:53:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:58:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:00:00,389][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:03:07,104][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:08:07,104][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:13:07,104][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:15:01,061][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:18:07,105][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:23:07,105][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:28:07,105][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:30:01,353][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:33:07,106][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:38:07,106][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T08:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T08:43:06,909][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T08:43:07,106][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:45:00,479][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:48:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:53:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:58:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:00:00,231][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:03:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:08:07,108][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:13:07,108][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:15:00,984][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:18:07,108][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:23:07,109][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:28:07,109][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:30:01,310][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:33:07,109][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:38:07,110][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:43:06,900][ERROR][o.o.a.a.AlertIndices ] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,900][ERROR][o.o.a.a.AlertIndices ] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,901][INFO ][o.o.a.a.AlertIndices ] [node-1] No Old History Indices to delete
[2023-09-22T09:43:06,901][INFO ][o.o.a.a.AlertIndices ] [node-1] No Old Finding Indices to delete
[2023-09-22T09:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T09:43:06,909][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T09:43:06,909][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T09:43:06,934][INFO ][o.o.i.i.IndexStateManagementHistory] [node-1] No Old History Indices to delete
[2023-09-22T09:43:06,947][ERROR][o.o.s.i.DetectorIndexManagementService] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,947][ERROR][o.o.s.i.DetectorIndexManagementService] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,947][INFO ][o.o.s.i.DetectorIndexManagementService] [node-1] No Old Alert Indices to delete
[2023-09-22T09:43:06,947][INFO ][o.o.s.i.DetectorIndexManagementService] [node-1] No Old Finding Indices to delete
[2023-09-22T09:43:07,110][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:45:00,458][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:48:07,110][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:53:07,111][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:58:07,111][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T10:00:00,178][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T10:01:07,427][INFO ][o.o.n.Node ] [node-1] stopping ...
[2023-09-22T10:01:07,431][INFO ][o.o.s.a.r.AuditMessageRouter] [node-1] Closing AuditMessageRouter
[2023-09-22T10:01:07,431][INFO ][o.o.s.a.s.SinkProvider ] [node-1] Closing DebugSink
[2023-09-22T10:01:07,552][INFO ][o.o.n.Node ] [node-1] stopped
[2023-09-22T10:01:07,552][INFO ][o.o.n.Node ] [node-1] closing ...
[2023-09-22T10:01:07,557][INFO ][o.o.s.a.i.AuditLogImpl ] [node-1] Closing AuditLogImpl
[2023-09-22T10:01:07,561][INFO ][o.o.n.Node ] [node-1] closed
[2023-09-22T00:01:28,716][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:01:28,722][INFO ][o.o.c.m.MetadataCreateIndexService] [node-1] [wazuh-alerts-4.x-2023.09.22] creating index, cause [auto(bulk api)], templates [wazuh], shards [3]/[0]
[2023-09-22T00:01:28,739][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:01:28,755][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:01:28,788][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:01:28,789][INFO ][o.o.c.r.a.AllocationService] [node-1] Cluster health status changed from [YELLOW] to [GREEN] (reason: [shards started [[wazuh-alerts-4.x-2023.09.22][2], [wazuh-alerts-4.x-2023.09.22][0]]]).
[2023-09-22T00:01:28,802][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:01:28,808][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:01:28,815][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T00:01:28,835][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:03:07,072][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:08:07,072][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:13:07,073][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:15:00,176][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:15:54,731][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:15:54,739][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T00:15:54,758][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:18:07,073][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:23:07,074][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:23:56,014][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T00:23:56,021][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T00:23:56,041][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T00:28:07,074][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:30:01,473][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:33:07,074][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:38:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:43:06,906][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T00:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T00:43:06,907][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T00:43:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:45:00,643][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T00:48:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:53:07,075][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T00:58:07,076][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:00:00,392][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:03:07,076][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:08:07,076][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:13:07,077][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:15:00,134][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:18:07,077][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:23:07,077][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:28:07,078][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:30:01,468][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:33:07,078][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:38:07,078][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:43:06,906][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T01:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T01:43:06,907][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T01:43:06,934][INFO ][o.o.i.i.IndexStateManagementHistory] [node-1] No Old History Indices to delete
[2023-09-22T01:43:07,079][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:45:00,625][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T01:48:07,079][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:53:07,079][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T01:58:07,080][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:00:00,342][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:03:07,080][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:08:07,080][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:13:07,081][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:15:01,058][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:16:20,884][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:16:20,891][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:16:20,911][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:16:27,885][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:16:27,892][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:16:27,914][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:18:07,081][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:23:07,081][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:23:13,907][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:23:13,915][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:23:13,932][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:23:13,934][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:23:13,945][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:23:13,952][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:23:13,970][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:28:07,082][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:30:01,393][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:33:07,082][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:38:07,082][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T02:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T02:43:06,907][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T02:43:07,083][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:45:00,479][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T02:48:07,083][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:53:07,083][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:57:03,934][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:57:03,941][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:57:03,964][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:58:07,084][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T02:58:33,937][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T02:58:33,945][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T02:58:33,966][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T02:58:33,967][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:00:00,225][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:03:07,084][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:08:07,084][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:13:07,085][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:15:00,907][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:18:07,085][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:21:05,980][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:21:05,988][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T03:21:06,009][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T03:21:06,011][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:21:06,019][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T03:21:06,042][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T03:21:06,046][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:21:06,055][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T03:23:07,085][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:28:07,086][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:30:01,184][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:33:07,086][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:38:07,086][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T03:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T03:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T03:43:07,087][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:45:00,296][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T03:48:07,087][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:53:07,087][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T03:58:07,088][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:00:00,950][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:03:07,088][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:08:07,088][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:08:51,088][INFO ][o.o.p.PluginsService ] [node-1] PluginService:onIndexModule index:[wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g]
[2023-09-22T04:08:51,095][INFO ][o.o.c.m.MetadataMappingService] [node-1] [wazuh-alerts-4.x-2023.09.22/CDmTtWIOSrm2iqXxgwcC0g] update_mapping [_doc]
[2023-09-22T04:08:51,116][INFO ][o.o.a.u.d.DestinationMigrationCoordinator] [node-1] Detected cluster change event for destination migration
[2023-09-22T04:13:07,089][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:15:00,614][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:18:07,089][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:23:07,089][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:28:07,090][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:30:00,852][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:33:07,090][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:38:07,090][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T04:43:06,907][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T04:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T04:43:07,091][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:45:00,966][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T04:48:07,091][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:53:07,091][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T04:58:07,092][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:00:00,561][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:03:07,092][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:08:07,092][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:13:07,093][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:15:00,238][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:18:07,093][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:23:07,093][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:28:07,094][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:30:01,459][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:33:07,094][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:38:07,094][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:43:06,907][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T05:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T05:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T05:43:07,095][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:45:00,529][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T05:48:07,095][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:53:07,095][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T05:58:07,096][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:00:00,118][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:03:07,096][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:08:07,096][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:13:07,097][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:15:00,791][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:18:07,097][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:23:07,097][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:28:07,098][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:30:01,009][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:33:07,098][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:38:07,098][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T06:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T06:43:06,908][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T06:43:07,099][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:45:00,069][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T06:48:07,099][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:53:07,099][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T06:58:07,100][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:00:00,728][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:03:07,100][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:08:07,100][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:13:07,101][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:15:00,371][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:18:07,101][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:23:07,101][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:28:07,102][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:30:01,658][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:33:07,102][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:38:07,102][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T07:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T07:43:06,909][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T07:43:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:45:00,704][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T07:48:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:53:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T07:58:07,103][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:00:00,389][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:03:07,104][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:08:07,104][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:13:07,104][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:15:01,061][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:18:07,105][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:23:07,105][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:28:07,105][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:30:01,353][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:33:07,106][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:38:07,106][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T08:43:06,908][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T08:43:06,909][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T08:43:07,106][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:45:00,479][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T08:48:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:53:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T08:58:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:00:00,231][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:03:07,107][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:08:07,108][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:13:07,108][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:15:00,984][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:18:07,108][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:23:07,109][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:28:07,109][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:30:01,310][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:33:07,109][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:38:07,110][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:43:06,900][ERROR][o.o.a.a.AlertIndices ] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,900][ERROR][o.o.a.a.AlertIndices ] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,901][INFO ][o.o.a.a.AlertIndices ] [node-1] No Old History Indices to delete
[2023-09-22T09:43:06,901][INFO ][o.o.a.a.AlertIndices ] [node-1] No Old Finding Indices to delete
[2023-09-22T09:43:06,908][INFO ][o.o.a.t.CronTransportAction] [node-1] Start running AD hourly cron.
[2023-09-22T09:43:06,909][INFO ][o.o.a.t.ADTaskManager ] [node-1] Start to maintain running historical tasks
[2023-09-22T09:43:06,909][INFO ][o.o.a.c.HourlyCron ] [node-1] Hourly maintenance succeeds
[2023-09-22T09:43:06,934][INFO ][o.o.i.i.IndexStateManagementHistory] [node-1] No Old History Indices to delete
[2023-09-22T09:43:06,947][ERROR][o.o.s.i.DetectorIndexManagementService] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,947][ERROR][o.o.s.i.DetectorIndexManagementService] [node-1] info deleteOldIndices
[2023-09-22T09:43:06,947][INFO ][o.o.s.i.DetectorIndexManagementService] [node-1] No Old Alert Indices to delete
[2023-09-22T09:43:06,947][INFO ][o.o.s.i.DetectorIndexManagementService] [node-1] No Old Finding Indices to delete
[2023-09-22T09:43:07,110][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:45:00,458][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T09:48:07,110][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:53:07,111][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T09:58:07,111][INFO ][o.o.j.s.JobSweeper ] [node-1] Running full sweep
[2023-09-22T10:00:00,178][INFO ][o.o.c.m.MetadataUpdateSettingsService] [node-1] updating number_of_replicas to [0] for indices [wazuh-monitoring-2023.38w]
[2023-09-22T10:01:07,427][INFO ][o.o.n.Node ] [node-1] stopping ...
[2023-09-22T10:01:07,431][INFO ][o.o.s.a.r.AuditMessageRouter] [node-1] Closing AuditMessageRouter
[2023-09-22T10:01:07,431][INFO ][o.o.s.a.s.SinkProvider ] [node-1] Closing DebugSink
[2023-09-22T10:01:07,552][INFO ][o.o.n.Node ] [node-1] stopped
[2023-09-22T10:01:07,552][INFO ][o.o.n.Node ] [node-1] closing ...
[2023-09-22T10:01:07,557][INFO ][o.o.s.a.i.AuditLogImpl ] [node-1] Closing AuditLogImpl
[2023-09-22T10:01:07,561][INFO ][o.o.n.Node ] [node-1] closed
--
You received this message because you are subscribed to the Google Groups "Wazuh | Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/085239b1-1e5f-4d68-af12-b921a47f51ddn%40googlegroups.com.
Md. Nazmur Sakib
Oct 4, 2023, 3:05:45 AM10/4/23
to Wazuh | Mailing List
Hi Arby Malabo
Good Day!
Looks like Filebeat is unable to communicate with the Wazuh indexer IP.
Can you check if, inside your indexer configuration, the IP is set to lookback IP address
vi /etc/wazuh-indexer/opensearch.yml
network.host: "127.0.0.1"
If you have a different ip check the Filebeat configuration and update the indexer ip in the Filebeat.
vi /etc/filebeat/filebeat.yml
output.elasticsearch.hosts:
- ***.***.***.***:9200
Restart both indexer and filebeat.
systemctl restart wazuh-indexer
systemctl restart filebeat
Check the status of your Wazuh-indexer if it is active and running
systemctl status wazuh-indexer
After restarting run the Filebeat test
filebeat test output
If you see Filebeat and indexer have the same IP inside their configuration file. Still, restart both services, run the Filebeat test, and share the output.
I hope this information helps. Please let me know if you need any further assistance.
Regards
Md. Nazmur Sakib
Reply all
Reply to author
Forward
0 new messages