We are going to setup a fully redundant and highly available elasticsearch cluster on kubernetes.
| Role | IP | DNS name | OS | RAM | CPU |
|---|---|---|---|---|---|
| Load Balancer | 10.132.132.100 | - | Ubuntu server 20.04 LTS | 8G | 8 |
| Master | 10.132.132.101 | kmaster1 | Ubuntu server 20.04 LTS | 8G | 8 |
| Master | 10.132.132.102 | kmaster2 | Ubuntu server 20.04 LTS | 8G | 8 |
| Worker | 10.132.132.103 | kworker1 | Ubuntu server 20.04 LTS | 8G | 8 |
| Worker | 10.132.132.104 | kworker2 | Ubuntu server 20.04 LTS | 8G | 8 |
| Nignx Load Balancer | 10.132.160.227 | Ubuntu server 20.04 LTS |
- This Implementation is based on multiple Virtual Machines
- Deploying elasticsearch using kubernetes statefulset
- Persistent Volumes : LOCAL
- Recommended Persistent Volume in cloud environment: awsElasticBlockStore
- Recommended Persistent Volume in on-premise environment: glusterfs
- NFS is not recommended for elasticsearch due to performance issues !
Set up load balancer node
apt update && apt install -y haproxyConfigure haproxy
Append the below lines to /etc/haproxy/haproxy.cfg
frontend kubernetes-frontend
bind 10.132.132.100:6443
mode tcp
option tcplog
default_backend kubernetes-backend
backend kubernetes-backend
mode tcp
option tcp-check
balance roundrobin
server kmaster1 10.132.132.101:6443 check fall 3 rise 2
server kmaster2 10.132.132.102:6443 check fall 3 rise 2
Update sysctl settings for Kubernetes networking
cat >>/etc/sysctl.d/kubernetes.conf<<EOF
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1
EOF
sysctl --system
Install docker engine
{
apt install -y apt-transport-https ca-certificates curl gnupg-agent software-properties-common
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | apt-key add -
add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable"
apt update && apt install -y docker-ce=5:19.03.10~3-0~ubuntu-focal containerd.io
}
Add Apt repository
{
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | apt-key add -
echo "deb https://apt.kubernetes.io/ kubernetes-xenial main" > /etc/apt/sources.list.d/kubernetes.list
}
Install Kubernetes components
apt update && apt install -y kubeadm=1.19.2-00 kubelet=1.19.2-00 kubectl=1.19.2-00
Initialize Kubernetes Cluster
kubeadm init --control-plane-endpoint="10.132.132.100:6443" --upload-certs --apiserver-advertise-address=10.132.132.101 --pod-network-cidr=192.168.0.0/16
Deploy Calico network
kubectl --kubeconfig=/etc/kubernetes/admin.conf create -f https://docs.projectcalico.org/v3.15/manifests/calico.yaml
Join other nodes to the cluster (kmaster2 & kworker1 & kworker2)
mkdir ~/.kube
scp [email protected]:/etc/kubernetes/admin.conf ~/.kube/config
Download and install Nginx
apt install nginx
create a site in nginx
vi /etc/ngin/sites-available/mysite
upstream elasticsearch {
server 10.132.132.101:30000;
server 10.132.132.102:30000;
server 10.132.132.103:30000;
server 10.132.132.104:30000;
}
server {
listen 9200 ssl;
server_name domain_name;
ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;
ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
location / {
proxy_pass http://elasticsearch;
auth_basic "Restricted Content";
auth_basic_user_file /etc/nginx/.htpasswd;
}
}
First install helm and then download elasticsearch helm package
wget https://helm.elastic.co/helm/elasticsearch/elasticsearch-7.5.2.tgz
unzip the downloaded package
tar -xvf elasticsearch-7.5.2.tgz
Edit the "values.yaml" file
>> clusterName: "picnic"
>> replicas: 2
>> minimumMasterNodes: 1
>> resources:
requests:
cpu: "1000m"
memory: "2Gi"
limits:
cpu: "1000m"
memory: "2Gi"
>> volumeClaimTemplate:
accessModes: [ "ReadWriteOnce" ]
storageClassName: local-storage
resources:
requests:
storage: 5Gi
>> persistence:
enabled: true
>> service:
labels: {}
labelsHeadless: {}
type: LoadBalancer
nodePort: "30000"
annotations: {}
httpPortName: http
transportPortName: transport
-
download the manifest from the provided files
-
deploy the Persistent Volume manifest
kubectl apply -f elasticsearch-pv.yaml
helm install els elaelasticsearch-7.5.2.tgz -f values.yaml
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent