Halaman utama Jelajahi Bantuan
Daftar Masuk
lqb
/
elasticsearch
cermin dari https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Berkas Masalah 0 Wiki
Pohon: 0c500e5264
Ranting Tag
elasticsearch
/
docs
/
reference
/
modules
/
remote-clusters.asciidoc

remote-clusters.asciidoc 4.4 KB
Riwayat Mentahan

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105 
  1. [[remote-clusters]]
    2. 

  2. == Remote clusters
    3. 

  3. You can connect a local cluster to other {es} clusters, known as _remote
    4. 

  4. clusters_. Remote clusters can be located in different datacenters or 
    5. 

  5. geographic regions, and contain indices or data streams that can be replicated
    6. 

  6. with {ccr} or searched by a local cluster using {ccs}.
    7. 

  7. 

  8. [[remote-clusters-ccr]]
    9. 

  9. [discrete]
    10. 

  10. === {ccr-cap}
    11. 

  11. 

  12. With <<xpack-ccr,{ccr}>>, you ingest data to an index on a remote cluster. This
    13. 

  13. _leader_ index is replicated to one or more read-only _follower_ indices on your
    14. 

  14. local cluster. Creating a multi-cluster architecture with {ccr} enables you to
    15. 

  15. configure disaster recovery, bring data closer to your users, or establish a
    16. 

  16. centralized reporting cluster to process reports locally.
    17. 

  17. 

  18. [[remote-clusters-ccs]]
    19. 

  19. [discrete]
    20. 

  20. === {ccs-cap}
    21. 

  21. 

  22. <<modules-cross-cluster-search,{ccs-cap}>> enables you to run a search request
    23. 

  23. against one or more remote clusters. This capability provides each region with a
    24. 

  24. global view of all clusters, allowing you to send a search request from a local
    25. 

  25. cluster and return results from all connected remote clusters. For full {ccs}
    26. 

  26. capabilities, the local and remote cluster must be on the same
    27. 

  27. {subscriptions}[subscription level].
    28. 

  28. 

  29. [[add-remote-clusters]]
    30. 

  30. [discrete]
    31. 

  31. === Add remote clusters
    32. 

  32. 

  33. NOTE: The instructions that follow describe how to create a remote connection from a 
    34. 

  34. self-managed cluster. You can also set up {ccs} and {ccr} from an 
    35. 

  35. link:https://www.elastic.co/guide/en/cloud/current/ec-enable-ccs.html[{ess} deployment] 
    36. 

  36. or from an link:https://www.elastic.co/guide/en/cloud-enterprise/current/ece-enable-ccs.html[{ece} deployment].
    37. 

  37. 

  38. To add remote clusters, you can choose between
    39. 

  39. <<remote-clusters-security-models,two security models>> and
    40. 

  40. <<sniff-proxy-modes,two connection modes>>. Both security models are compatible
    41. 

  41. with either of the connection modes.
    42. 

  42. 

  43. [[remote-clusters-security-models]]
    44. 

  44. [discrete]
    45. 

  45. ==== Security models
    46. 

  46. 

  47. API key based security model::
    48. 

  48. For clusters on version 8.14 or later, you can use an API key to authenticate
    49. 

  49. and authorize cross-cluster operations to a remote cluster. This model offers
    50. 

  50. administrators of both the local and the remote cluster fine-grained access
    51. 

  51. controls. <<remote-clusters-api-key>>.
    52. 

  52. 

  53. Certificate based security model::
    54. 

  54. Uses mutual TLS authentication for cross-cluster operations. User authentication
    55. 

  55. is performed on the local cluster and a user's role names are passed to the 
    56. 

  56. remote cluster. In this model, a superuser on the local cluster gains total read
    57. 

  57. access to the remote cluster, so it is only suitable for clusters that are in
    58. 

  58. the same security domain. <<remote-clusters-cert>>.
    59. 

  59. 

  60. [[sniff-proxy-modes]]
    61. 

  61. [discrete]
    62. 

  62. ==== Connection modes
    63. 

  63. 

  64. [[sniff-mode]]
    65. 

  65. Sniff mode::
    66. 

  66. In sniff mode, a cluster is created using a name and a list of seed nodes. When
    67. 

  67. a remote cluster is registered, its cluster state is retrieved from one of the
    68. 

  68. seed nodes and up to three _gateway nodes_ are selected as part of remote
    69. 

  69. cluster requests. This mode requires that the gateway node's publish addresses
    70. 

  70. are accessible by the local cluster.
    71. 

  71. +
    72. 

  72. Sniff mode is the default connection mode.
    73. 

  73. +
    74. 

  74. [[gateway-nodes-selection]]
    75. 

  75. The _gateway nodes_ selection depends on the following criteria:
    76. 

  76. +
    77. 

  77. * *version*: Remote nodes must be compatible with the cluster they are
    78. 

  78. registered to.
    79. 

  79. * *role*: By default, any non-<<master-node,master-eligible>> node can act as a
    80. 

  80. gateway node. Dedicated master nodes are never selected as gateway nodes.
    81. 

  81. * *attributes*: You can define the gateway nodes for a cluster by setting
    82. 

  82. <<cluster-remote-node-attr,`cluster.remote.node.attr.gateway`>> to `true`.
    83. 

  83. However, such nodes still have to satisfy the two above requirements.
    84. 

  84. 

  85. [[proxy-mode]]
    86. 

  86. Proxy mode::
    87. 

  87. In proxy mode, a cluster is created using a name and a single proxy address.
    88. 

  88. When you register a remote cluster, a configurable number of socket connections
    89. 

  89. are opened to the proxy address. The proxy is required to route those
    90. 

  90. connections to the remote cluster. Proxy mode does not require remote cluster
    91. 

  91. nodes to have accessible publish addresses.
    92. 

  92. +
    93. 

  93. The proxy mode is not the default connection mode and must be configured.
    94. 

  94. Proxy mode has the same <<gateway-nodes-selection, version compatibility
    95. 

  95. requirements>> as sniff mode.
    96. 

  96. 

  97. include::cluster/remote-clusters-api-key.asciidoc[]
    98. 

  98. 

  99. include::cluster/remote-clusters-cert.asciidoc[]
    100. 

  100. 

  101. include::cluster/remote-clusters-migration.asciidoc[]
    102. 

  102. 

  103. include::cluster/remote-clusters-settings.asciidoc[]
    104. 

  104. 

  105. include::cluster/remote-clusters-troubleshooting.asciidoc[]
    106.