Failed to start elasticsearch and Kibana is not ready yet (Urgent)

[Enekupe Lelevaga]

Need help please.

[Raul Del Pozo Moreno]

Hello enetupevaga

Sorry for delete the messages, i see a typo.

Please don't open two posts asking the same question without answering the first post first: https://groups.google.com/g/wazuh/c/68U8OZRmWzU

In any case, let's see what happens here, so it seems there is a problem with java, in order to help you I need some information

- How much RAM has the machine where elasticsearch is installed

- How much RAM has elasticsearch assigned: cat /etc/elastichsearch/jvm.options | grep -i -E "\-Xms|\-Xmx"

- Output of: journalctl -r -u elasticsearch | grep -i -E "error|warning"

Regards Raúl

[Raul Del Pozo Moreno]

In fact, from what I see from this image, the problem may be in "Not enough ...", so I would need the complete output of the journalctl command that I have provided to you

[Enekupe Lelevaga]

I did reply and provide output from the last conversation. So there was no response and post it again. 

the first command did not work

output from the second command below.

--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/8acd6d73-a038-46ba-a295-baa48abdf080n%40googlegroups.com.

[Raul Del Pozo Moreno]

Hello enetupevaga

Im sorry, but I can't see any answer after my colleague's answer, you may hit "reply author", in that case, please use "reply all".

As you can see in your screenshot, there is a typo in the path, it is elasticsearch not elastichsearch (note the h in the middle)

This error is due to the lack of available RAM memory in the machine, as I have asked, how much RAM does the machine have? Are you using a virtual machine? It would be necessary to see the content of the /etc/elasticsearch/jvm.options file please.

Regards, Raul.

[Raul Del Pozo Moreno]

I just see i wrote wrong elasticsearch, sorry about that.

[Enekupe Lelevaga]

The output below is per snip of how RAM assign to elasticsearch. 

Yes, the Server is running on VM.

The output below after running /etc/elasticsearch/jvm.options

To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/a1342a6e-328a-41cc-85a7-fadce8ee968cn%40googlegroups.com.

[Enekupe Lelevaga]

The output below is per snip of how RAM assign to elasticsearch. 

Yes, the Server is running on VM.

The output below after running /etc/elasticsearch/jvm.options

[Enekupe Lelevaga]

Awaiting your reply for any fix, please

Regards

[Enekupe Lelevaga]

Anyone can help with this please.

Enekupe Lelevaga

IT Support Officer 

+682 58133 | enetu...@gmail.com

Any opinions expressed in this message are not necessarily those of the Airport Authority of the Cook Island. This message and any files transmitted with it are confidential and solely for the use of the intended recipient. If you are not the intended recipient or the person responsible for delivery to the intended recipient, be advised that you have received this message in error and that any use is strictly prohibited. Please contact the sender and delete the message and any attachment from your computer.