'%3e%3cpath%20d='M9%2021H15'%20stroke='black'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3cpath%20d='M5.25001%209.75C5.25001%207.95979%205.96116%206.2429%207.22703%204.97703C8.4929%203.71116%2010.2098%203%2012%203C13.7902%203%2015.5071%203.71116%2016.773%204.97703C18.0388%206.2429%2018.75%207.95979%2018.75%209.75C18.75%2013.1081%2019.5281%2015.8063%2020.1469%2016.875C20.2126%2016.9888%2020.2472%2017.1179%2020.2474%2017.2493C20.2475%2017.3808%2020.2131%2017.5099%2020.1475%2017.6239C20.082%2017.7378%2019.9877%2017.8325%2019.8741%2017.8985C19.7604%2017.9645%2019.6314%2017.9995%2019.5%2018H4.50001C4.36874%2017.9992%204.23997%2017.964%204.12659%2017.8978C4.0132%2017.8317%203.91916%2017.7369%203.85387%2017.6231C3.78858%2017.5092%203.75432%2017.3801%203.75452%2017.2489C3.75472%2017.1176%203.78937%2016.9887%203.85501%2016.875C4.47282%2015.8063%205.25001%2013.1072%205.25001%209.75Z'%20stroke='black'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_4762_133'%3e%3crect%20width='24'%20height='24'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
'%3e%3cpath%20d='M24%200H0V24H24V0Z'%20fill='white'%20fill-opacity='0.01'/%3e%3cpath%20d='M12%2011C14.2091%2011%2016%209.20914%2016%207C16%204.79086%2014.2091%203%2012%203C9.79086%203%208%204.79086%208%207C8%209.20914%209.79086%2011%2012%2011Z'%20stroke='black'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3cpath%20d='M4%2021V20.4857C4%2018.5655%204%2017.6055%204.38753%2016.872C4.72841%2016.2269%205.27235%2015.7024%205.94138%2015.3737C6.70196%2015%207.6976%2015%209.68889%2015H14.3111C16.3024%2015%2017.298%2015%2018.0586%2015.3737C18.7276%2015.7024%2019.2716%2016.2269%2019.6125%2016.872C20%2017.6055%2020%2018.5655%2020%2020.4857V21'%20stroke='black'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_4762_139'%3e%3crect%20width='24'%20height='24'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
Elasticsearch服务昨天还好好的,为什么今天突然访问不了了?
忘机山人
发布于257天前博客图片修整中,看不了可以先搜索公众号“忘机山人”看。
在使用 Elasticsearch 搭建本地或云端搜索服务时,难免会遇到服务偶发性或持续性无法访问的问题。本文将从服务状态、端口监听、网络配置、安全组等五个维度,系统梳理排查思路,帮助大家快速定位并解决访问失败的原因s https://appstore.lazycat.cloud/#/shop/detail/xu.deploy.elasticsearch ## 🚢 一、Docker 部署场景下的排查方法 如果你是通过官方的 Docker Compose 部署 EasySearch,一般不会出现太大问题。但如果你像我一样在群晖或 NAS 上做过自定义配置,以下通用排查方法可以帮助你快速定位问题: --- ### 1️⃣ 容器是否正常运行? ```bash docker ps -a | grep easysearch ``` 若容器状态为 `Exited`,说明启动失败。请查看容器日志进一步排查: ```bash docker logs ``` 如果你看到了如下错误信息,而你使用的是自签证书,可以暂时忽略: ``` javax.net.ssl.SSLHandshakeException: Empty client certificate chain javax.net.ssl.SSLHandshakeException: Received fatal alert: certificate_unknown ``` --- ### 2️⃣ 容器是否监听端口? 进入容器内部查看: ```bash docker exec -it bash netstat -tlnp ``` 期望看到监听地址为 `0.0.0.0:9200` 和 `0.0.0.0:9300`,说明服务对外暴露成功。例如: ``` tcp 0 0 0.0.0.0:9200 0.0.0.0:* LISTEN 7/java tcp 0 0 0.0.0.0:9300 0.0.0.0:* LISTEN 7/java ``` --- ### 3️⃣ Docker 端口映射是否配置正确? 检查 `docker-compose.yml` 中 `ports` 映射是否正确,或者用以下命令查看实际映射情况: ```bash docker ps ``` 确认是否已将容器内部端口映射到宿主机。 宿主机上也可以通过 `netstat` 或 `ss` 命令查看端口监听: ```bash netstat -tlnp | grep 9200 ``` 确保监听地址是 `0.0.0.0:9200`,而非 `127.0.0.1`。 - `-t`:显示 TCP 连接 - `-l`:仅显示监听状态(Listening)的端口 - `-n`:以数字方式显示地址和端口(避免 DNS 解析) - `-p`:显示监听端口的程序 PID 和名称 --- ### 4️⃣ 网络配置是否连通? 使用 `curl` 测试: ```bash curl http://yourhost:9200 ``` 如需远程访问,需确认: - 容器监听的是 `0.0.0.0` - 映射端口已开放 - 网络桥接配置正常 --- ## 🧩 二、非 Docker 部署场景的排查方法 ### 1️⃣ 服务是否启动? ```bash ps aux | grep search ``` 也可查看 `nohup.out` 或 logs 目录中的日志文件,看是否存在环境变量、路径错误、权限不足等问题。 --- ### 2️⃣ 是否监听了正确的地址? ```bash netstat -tulnp | grep java ``` EasySearch 默认只监听本地,建议修改配置文件: ```yml # config/Elasticsearch.yml network.host: 0.0.0.0 http.port: 9200 ``` --- ### 3️⃣ 防火墙是否放行? 确认 Linux 主机的防火墙设置: ```bash sudo ufw status sudo iptables -L -n ``` 确保目标端口(如 9200、9300)已允许外部访问。 --- ## 🌐 三、通用排查项(适用于所有部署方式) ### ✅ 云服务器:检查安全组 云服务商(如 AWS、阿里云)通常还需配置安全组或防火墙规则,确保目标端口对外开放。 ### ✅ DNS 设置是否正确 使用 `dig` 和 `ping` 测试域名解析与连通性: ```bash dig +short yourdomain.com ping yourdomain.com ``` 可用 `traceroute` 进一步分析路径:(我在 MacOS 下测试的) ```bash sudo traceroute -P TCP -p 9200 192.168.X.X traceroute to 192.168.X.X (192.168.X.X), 64 hops max, 40 byte packets 1 192.168.X.X (192.168.X.X) 3.756 ms 3.208 ms 3.142 ms ``` ## ✅ 总结:排查 Elasticsearch 的四步法 ```markdown 1. 服务是否启动? 2. 端口是否监听? 3. 网络是否打通? 4. 安全组是否放行? ``` 无论是本地部署还是云端部署,掌握上述排查方法,你就能迅速定位并解决 Elasticsearch 无法访问的问题。 
评论
0暂无评论