SweetSecurity icon indicating copy to clipboard operation
SweetSecurity copied to clipboard

Published 20 hours ago verified publisher icon TravisFSmith

Waiting for Elasticsearch to start...

Open mtk54101 opened this issue 8 years ago • 7 comments

Hi sir,

 then i install the server by  "sudo python setup.py".  it always blocking in "Waiting for Elasticsearch to start..." as below.
 i do not know how to do the next? how to start Elasticsearch? it has been installed?
 thanks

Elasticsearch already installed Creating elasticsearch credentials Kibana already installed Importing Kibana Index Patterns Importing /root/Documents/github/SweetSecurity/kibana/patterns/logstash.json Importing /root/Documents/github/SweetSecurity/kibana/patterns/sweet_security_alerts.json Importing /root/Documents/github/SweetSecurity/kibana/patterns/sweet_security.json Importing /root/Documents/github/SweetSecurity/kibana/patterns/tardis.json Importing Dashboards Importing /root/Documents/github/SweetSecurity/kibana/dashboards/geoip.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/SweetSecurityAlerts.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/logstash.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/sweet_security.json Importing /root/Documents/github/SweetSecurity/kibana/dashboards/baselines.json Waiting for Elasticsearch to start... Waiting for Elasticsearch to start...

mtk54101 avatar Aug 09 '17 08:08 mtk54101

There appears to be an error in communicating with Elasticsearch to update the kibana instance. If there is a specific exception being thrown, the current installer does not log it. You can modify the installer to print out the exception by performing the following.

  • Edit install/kibana.py
  • Modify line 99 from except: to except Exception,e:
  • Add a line in the exception block below on line 100: print(e)

Paste the results here.

TravisFSmith avatar Aug 18 '17 21:08 TravisFSmith

Are you getting issues regarding the curl of localhost:9200? If so, you can kill the install, run sudo service elasticsearch start, check the status and review the error code. I was having like issues and it was complaining java-v8 was not installed. Purged all old java and installed 8. Re-ran the install and everything is working fine now.

darkmatter91 avatar Aug 25 '17 14:08 darkmatter91

I am trying to install a server (Role 3) on an Ubuntu 17.10 64 bit and I am having the same issue Starting Kibana Importing Kibana Index Pattern Importing /home/user/sweetsecurity/kibana/patterns/tardis.json Importing /home/user/sweetsecurity/kibana/patterns/logstash.json Importing /home/user/sweetsecurity/kibana/patterns/sweet_security_alerts.json Importing /home/user/sweetsecurity/kibana/patterns/sweet_security.json Importing Dashboards Importing /home/user/sweetsecurity/kibana/dashboards/SweetSecurityAlerts.json Importing /home/user/sweetsecurity/kibana/dashboards/logstash.json Importing /home/user/sweetsecurity/kibana/dashboards/geoip.json Importing /home/user/sweetsecurity/kibana/dashboards/baselines.json Importing /home/user/sweetsecurity/kibana/dashboards/sweet_security.json Waiting for Elasticsearch to start...

The exception for me is: TransportError(404, u'document_missing_exception', u'[config][5.5.1]: document missing') the elasticsearch service is running and responds on port 9200 but the installer does not see it.

ghost avatar Oct 26 '17 11:10 ghost

Same issue, my errors just show unable to connect over and over saying connection refused.

Restarting Apache
Installing Logstash
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (7) Failed to connect to localhost port 9201: Connection refused
Error: Waiting for Elasticsearch to start...try 1 of 10
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (7) Failed to connect to localhost port 9201: Connection refused
Error: Waiting for Elasticsearch to start...try 2 of 10
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0curl: (7) Failed to connect to localhost port 9201: Connection refused
Error: Waiting for Elasticsearch to start...try 3 of 10

Dulanic avatar Nov 02 '17 13:11 Dulanic

I had a similar problem, but discovered it was the password I used on my elastic stack. I built the web half in a VM and used a non-alphanumeric in the password, but the Raspberry Pi was set to En-GB keyboard, so when I typed in the password on the Raspberry Pi it was submitting the wrong character.

VernMcC avatar Nov 05 '17 15:11 VernMcC

In case the setup script wait on elastic search run the following command: /etic/init.d/elasticsearch status

it will most probably say that the service did not start correctly, and most probably it will be due to the Java Runtime Env. run the following commands and it will fix your issue in case its the java: apt-get update apt-get install default-jre

s3luX avatar Sep 07 '18 17:09 s3luX

Having same problem with error NotFoundError(404, u'document_missing_exception', u'[config][5.5.1]: document missing')

Lanroc avatar Oct 21 '19 18:10 Lanroc