generalelk

Debug ELK errors

Locate the log file

The Elasticsearch log file is created at /opt/bitnami/elasticsearch/logs/elasticsearch.log.

Troubleshoot startup errors

Elasticsearch has strict kernel requirements. You may find the issues below when starting Elasticsearch service:

ERROR: bootstrap checks failed
max file descriptors [XXX] for elasticsearch process is too low, increase to at least [65536]
max virtual memory areas vm.max_map_count [XXX] is too low, increase to at least [262144]

To avoid them, we strongly recommend you to apply these changes before installing:

  • Update the /etc/security/limits.conf file and add the lines below:

      * soft nofile 65536
      * hard nofile 65536
    
  • Update the /etc/sysctl.conf file and add this line below:

      vm.max_map_count=262144
      fs.file-max=65536
    
  • Reboot your system

Last modification December 21, 2022