Home Explore Help
Sign In
lqb
/
elasticsearch
mirror of https://gitee.com/mirrors/elasticsearch.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 20df933e6b
Branches Tags
elasticsearch
/
docs
/
reference
/
modules
/
network.asciidoc

network.asciidoc 10 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248 
  1. [[modules-network]]
    2. 

  2. === Networking
    3. 

  3. 

  4. Each {es} node has two different network interfaces. Clients send requests to
    5. 

  5. {es}'s REST APIs using its <<http-settings,HTTP interface>>, but nodes
    6. 

  6. communicate with other nodes using the <<transport-settings,transport
    7. 

  7. interface>>. The transport interface is also used for communication with
    8. 

  8. <<modules-remote-clusters,remote clusters>>.
    9. 

  9. 

  10. You can configure both of these interfaces at the same time using the
    11. 

  11. `network.*` settings. If you have a more complicated network, you might need to
    12. 

  12. configure the interfaces independently using the `http.*` and `transport.*`
    13. 

  13. settings. Where possible, use the `network.*` settings that apply to both
    14. 

  14. interfaces to simplify your configuration and reduce duplication.
    15. 

  15. 

  16. By default {es} binds only to `localhost` which means it cannot be accessed
    17. 

  17. remotely. This configuration is sufficient for a local development cluster made
    18. 

  18. of one or more nodes all running on the same host. To form a cluster across
    19. 

  19. multiple hosts, or which is accessible to remote clients, you must adjust some
    20. 

  20. <<common-network-settings,network settings>> such as `network.host`.
    21. 

  21. 

  22. [WARNING]
    23. 

  23. .Be careful with the network configuration!
    24. 

  24. =============================
    25. 

  25. Never expose an unprotected node to the public internet. If you do, you are
    26. 

  26. permitting anyone in the world to download, modify, or delete any of the data
    27. 

  27. in your cluster.
    28. 

  28. =============================
    29. 

  29. 

  30. Configuring {es} to bind to a non-local address will <<dev-vs-prod,convert some
    31. 

  31. warnings into fatal exceptions>>. If a node refuses to start after configuring
    32. 

  32. its network settings then you must address the logged exceptions before
    33. 

  33. proceeding.
    34. 

  34. 

  35. [[common-network-settings]]
    36. 

  36. ==== Commonly used network settings
    37. 

  37. 

  38. Most users will need to configure only the following network settings.
    39. 

  39. 

  40. `network.host`::
    41. 

  41. (<<static-cluster-setting,Static>>)
    42. 

  42. Sets the address of this node for both HTTP and transport traffic. The node
    43. 

  43. will bind to this address and will also use it as its publish address. Accepts
    44. 

  44. an IP address, a hostname, or a <<network-interface-values,special value>>.
    45. 

  45. +
    46. 

  46. Defaults to `_local_`.
    47. 

  47. 

  48. `http.port`::
    49. 

  49. (<<static-cluster-setting,Static>>)
    50. 

  50. The port to bind for HTTP client communication. Accepts a single value or a
    51. 

  51. range. If a range is specified, the node will bind to the first available port
    52. 

  52. in the range.
    53. 

  53. +
    54. 

  54. Defaults to `9200-9300`.
    55. 

  55. 

  56. `transport.port`::
    57. 

  57. (<<static-cluster-setting,Static>>)
    58. 

  58. The port to bind for communication between nodes. Accepts a single value or a
    59. 

  59. range. If a range is specified, the node will bind to the first available port
    60. 

  60. in the range. Set this setting to a single port, not a range, on every
    61. 

  61. master-eligible node.
    62. 

  62. +
    63. 

  63. Defaults to `9300-9400`.
    64. 

  64. 

  65. [[network-interface-values]]
    66. 

  66. ==== Special values for network addresses
    67. 

  67. 

  68. You can configure {es} to automatically determine its addresses by using the
    69. 

  69. following special values. Use these values when configuring
    70. 

  70. `network.host`, `network.bind_host`, `network.publish_host`, and the
    71. 

  71. corresponding settings for the HTTP and transport interfaces.
    72. 

  72. 

  73. `_local_`::
    74. 

  74.   Any loopback addresses on the system, for example `127.0.0.1`.
    75. 

  75. 

  76. `_site_`::
    77. 

  77.   Any site-local addresses on the system, for example `192.168.0.1`.
    78. 

  78. 

  79. `_global_`::
    80. 

  80.   Any globally-scoped addresses on the system, for example `8.8.8.8`.
    81. 

  81. 

  82. `_[networkInterface]_`::
    83. 

  83.   Use the addresses of the network interface called `[networkInterface]`. For
    84. 

  84.   example if you wish to use the addresses of an interface called `en0` then
    85. 

  85.   set `network.host: _en0_`.
    86. 

  86. 

  87. `0.0.0.0`::
    88. 

  88.   The addresses of all available network interfaces.
    89. 

  89. 

  90. NOTE: Any values containing a `:` (e.g. an IPv6 address or some of the
    91. 

  91. <<network-interface-values,special values>>) must be quoted because `:` is a
    92. 

  92. special character in YAML.
    93. 

  93. 

  94. [[network-interface-values-ipv4-vs-ipv6]]
    95. 

  95. ===== IPv4 vs IPv6
    96. 

  96. 

  97. These special values yield both IPv4 and IPv6 addresses by default, but you can
    98. 

  98. also add an `:ipv4` or `:ipv6` suffix to limit them to just IPv4 or IPv6
    99. 

  99. addresses respectively. For example, `network.host: _en0:ipv4_` would set this
    100. 

  100. node's addresses to the IPv4 addresses of interface `en0`.
    101. 

  101. 

  102. [TIP]
    103. 

  103. .Discovery in the Cloud
    104. 

  104. ================================
    105. 

  105. 

  106. More special settings are available when running in the Cloud with either the
    107. 

  107. {plugins}/discovery-ec2.html[EC2 discovery plugin] or the
    108. 

  108. {plugins}/discovery-gce-network-host.html#discovery-gce-network-host[Google Compute Engine discovery plugin]
    109. 

  109. installed.
    110. 

  110. 

  111. ================================
    112. 

  112. 

  113. [[modules-network-binding-publishing]]
    114. 

  114. ==== Binding and publishing
    115. 

  115. 

  116. {es} uses network addresses for two distinct purposes known as binding and
    117. 

  117. publishing. Most nodes will use the same address for everything, but more
    118. 

  118. complicated setups may need to configure different addresses for different
    119. 

  119. purposes.
    120. 

  120. 

  121. When an application such as {es} wishes to receive network communications, it
    122. 

  122. must indicate to the operating system the address or addresses whose traffic it
    123. 

  123. should receive. This is known as _binding_ to those addresses. {es} can bind to
    124. 

  124. more than one address if needed, but most nodes only bind to a single address.
    125. 

  125. {es} can only bind to an address if it is running on a host that has a network
    126. 

  126. interface with that address. If necessary, you can configure the transport and
    127. 

  127. HTTP interfaces to bind to different addresses.
    128. 

  128. 

  129. Each {es} node has an address at which clients and other nodes can contact it,
    130. 

  130. known as its _publish address_. Each node has one publish address for its HTTP
    131. 

  131. interface and one for its transport interface. These two addresses can be
    132. 

  132. anything, and don't need to be addresses of the network interfaces on the host.
    133. 

  133. The only requirements are that each node must be:
    134. 

  134. 

  135. * Accessible at its transport publish address by all other
    136. 

  136.   nodes in its cluster, and by any remote clusters that will discover it using
    137. 

  137.   <<sniff-mode>>.
    138. 

  138. 

  139. * Accessible at its HTTP publish address by all clients
    140. 

  140.   that will discover it using sniffing.
    141. 

  141. 

  142. ===== Using a single address
    143. 

  143. 

  144. The most common configuration is for {es} to bind to a single address at which
    145. 

  145. it is accessible to clients and other nodes. In this configuration you should
    146. 

  146. just set `network.host` to that address. You should not separately set any bind
    147. 

  147. or publish addresses, nor should you separately configure the addresses for the
    148. 

  148. HTTP or transport interfaces.
    149. 

  149. 

  150. ===== Using multiple addresses
    151. 

  151. 

  152. Use the <<advanced-network-settings, advanced network settings>> if you wish to
    153. 

  153. bind {es} to multiple addresses, or to publish a different address from the
    154. 

  154. addresses to which you are binding. Set `network.bind_host` to the bind
    155. 

  155. addresses, and `network.publish_host` to the address at which this node is
    156. 

  156. exposed. In complex configurations, you can configure these addresses
    157. 

  157. differently for the HTTP and transport interfaces.
    158. 

  158. 

  159. [[advanced-network-settings]]
    160. 

  160. ==== Advanced network settings
    161. 

  161. 

  162. These advanced settings let you bind to multiple addresses, or to use different
    163. 

  163. addresses for binding and publishing. They are not required in most cases and
    164. 

  164. you should not use them if you can use the <<common-network-settings,commonly
    165. 

  165. used settings>> instead.
    166. 

  166. 

  167. `network.bind_host`::
    168. 

  168. (<<static-cluster-setting,Static>>)
    169. 

  169. The network address(es) to which the node should bind in order to listen for
    170. 

  170. incoming connections. Accepts a list of IP addresses, hostnames, and
    171. 

  171. <<network-interface-values,special values>>. Defaults to the address given by
    172. 

  172. `network.host`. Use this setting only if binding to multiple addresses or using
    173. 

  173. different addresses for publishing and binding.
    174. 

  174. 

  175. `network.publish_host`::
    176. 

  176. (<<static-cluster-setting,Static>>)
    177. 

  177. The network address that clients and other nodes can use to contact this node.
    178. 

  178. Accepts an IP address, a hostname, or a <<network-interface-values,special
    179. 

  179. value>>. Defaults to the address given by `network.host`. Use this setting only
    180. 

  180. if bindiing to multiple addresses or using different addresses for publishing
    181. 

  181. and binding.
    182. 

  182. 

  183. NOTE: You can specify a list of addresses for `network.host` and
    184. 

  184. `network.publish_host`. You can also specify a single hostname which resolves
    185. 

  185. to multiple addresses. If you do this then {es} chooses one of the addresses
    186. 

  186. for its publish address. This choice uses heuristics based on IPv4/IPv6 stack
    187. 

  187. preference and reachability and may change when the node restarts. You must
    188. 

  188. make sure that each node is accessible at all possible publish addresses.
    189. 

  189. 

  190. [[tcp-settings]]
    191. 

  191. ===== Advanced TCP settings
    192. 

  192. 

  193. Use the following settings to control the low-level parameters of the TCP
    194. 

  194. connections used by the HTTP and transport interfaces.
    195. 

  195. 

  196. `network.tcp.no_delay`::
    197. 

  197. (<<static-cluster-setting,Static>>)
    198. 

  198. Enable or disable the {wikipedia}/Nagle%27s_algorithm[TCP no delay]
    199. 

  199. setting. Defaults to `true`.
    200. 

  200. 

  201. `network.tcp.keep_alive`::
    202. 

  202. (<<static-cluster-setting,Static>>)
    203. 

  203. Configures the `SO_KEEPALIVE` option for this socket, which
    204. 

  204. determines whether it sends TCP keepalive probes.
    205. 

  205. 

  206. `network.tcp.keep_idle`::
    207. 

  207. (<<static-cluster-setting,Static>>)
    208. 

  208. Configures the `TCP_KEEPIDLE` option for this socket, which
    209. 

  209. determines the time in seconds that a connection must be idle before
    210. 

  210. starting to send TCP keepalive probes. Defaults to `-1`, which uses
    211. 

  211. the system default. This value cannot exceed `300` seconds. Only applicable on Linux and macOS,
    212. 

  212. and requires Java 11 or newer.
    213. 

  213. 

  214. `network.tcp.keep_interval`::
    215. 

  215. (<<static-cluster-setting,Static>>)
    216. 

  216. Configures the `TCP_KEEPINTVL` option for this socket,
    217. 

  217. which determines the time in seconds between sending TCP keepalive probes.
    218. 

  218. Defaults to `-1`, which uses the system default. This value cannot exceed `300` seconds.
    219. 

  219. Only applicable on Linux and macOS, and requires Java 11 or newer.
    220. 

  220. 

  221. `network.tcp.keep_count`::
    222. 

  222. (<<static-cluster-setting,Static>>)
    223. 

  223. Configures the `TCP_KEEPCNT` option for this socket, which
    224. 

  224. determines the number of unacknowledged TCP keepalive probes that may be
    225. 

  225. sent on a connection before it is dropped. Defaults to `-1`,
    226. 

  226. which uses the system default. Only applicable on Linux and macOS, and requires
    227. 

  227. Java 11 or newer.
    228. 

  228. 

  229. `network.tcp.reuse_address`::
    230. 

  230. (<<static-cluster-setting,Static>>)
    231. 

  231. Should an address be reused or not. Defaults to `true` on non-windows
    232. 

  232. machines.
    233. 

  233. 

  234. `network.tcp.send_buffer_size`::
    235. 

  235. (<<static-cluster-setting,Static>>)
    236. 

  236. The size of the TCP send buffer (specified with <<size-units,size units>>).
    237. 

  237. By default not explicitly set.
    238. 

  238. 

  239. `network.tcp.receive_buffer_size`::
    240. 

  240. (<<static-cluster-setting,Static>>)
    241. 

  241. The size of the TCP receive buffer (specified with <<size-units,size units>>).
    242. 

  242. By default not explicitly set.
    243. 

  243. 

  244. include::http.asciidoc[]
    245. 

  245. 

  246. include::transport.asciidoc[]
    247. 

  247. 

  248. include::network/tracers.asciidoc[]
    249.