eatthedata/docker-sarccom-workshop-elk

SARCCOM Workshop ELK Stack

docker-sarccom-workshop-elk

This source forking from blacktop and adding other docker package for workshop purpose

Alpine Linux based Elasticsearch Docker Image

Table of Contents

• Dependencies

• Image Tags

• Getting Started

• Documentation

  • To create an elasticsearch cluster
  • To increase the HEAP_SIZE to 2GB
  • To monitor the clusters metrics using dockerbeat
  • To run in production

• Issues

• Credits

• CHANGELOG

• Contributing

• License

Why?

Compare Image Sizes:

• official elasticsearch = 574 MB
• blacktop/elasticsearch = 119 MB

blacktop version is 455 MB smaller !

Dependencies

• alpine:3.8

Image Tags

REPOSITORY               TAG                 SIZE
blacktop/elasticsearch   latest              127MB
blacktop/elasticsearch   6.4                 127MB
blacktop/elasticsearch   6.3                 120MB
blacktop/elasticsearch   6.2                 119MB
blacktop/elasticsearch   6.1                 119MB
blacktop/elasticsearch   6.0                 117MB
blacktop/elasticsearch   5.6                 124MB
blacktop/elasticsearch   5.5                 123MB
blacktop/elasticsearch   5.4                 123MB
blacktop/elasticsearch   5.3                 123MB
blacktop/elasticsearch   x-pack              760MB
blacktop/elasticsearch   geoip               150MB
blacktop/elasticsearch   5.2                 150MB
blacktop/elasticsearch   5.1                 149MB
blacktop/elasticsearch   5.0                 148.4MB
blacktop/elasticsearch   2.4                 116MB
blacktop/elasticsearch   kopf                122MB
blacktop/elasticsearch   2.3                 139.1MB
blacktop/elasticsearch   1.7                 142.7MB

NOTE: - tag x-pack is the same as tag latest, but includes the x-pack, the ingest-geoip and the ingest-user-agent plugin. - tag geoip is the same as tag latest, but includes the ingest-geoip and the ingest-user-agent plugin. - tag kopf is the same as tag 2.4, but includes the kopf plugin.

Getting Started

$ docker run -d --name elastic -p 9200:9200 blacktop/elasticsearch

Documentation

• To create an elasticsearch cluster
• To increase the HEAP_SIZE to 2GB
• To monitor the clusters metrics using dockerbeat
• To run in production

Known Issues ⚠️

I have noticed when running the new 5.0+ version on a linux host you need to increase the memory map areas with the following command

sudo sysctl -w vm.max_map_count=262144

Issues

Find a bug? Want more features? Find something missing in the documentation? Let me know! Please don't hesitate to file an issue

Credits

Heavily (if not entirely) influenced by https://github.com/docker-library/elasticsearch
Production docs from https://stefanprodan.com/2016/elasticsearch-cluster-with-docker/

CHANGELOG

See CHANGELOG.md

Contributing

See all contributors on GitHub.

Please update the CHANGELOG.md and submit a Pull Request on GitHub.

License

MIT Copyright (c) 2016-2018 blacktop