Elasticsearch host error

[success4us]

Hi, I have an elk setup on GKE and I'm trying to use elastalert for sending notifications on error logs. I'm new to elastalert, I just followed your README doc on this URL https://github.com/jertel/elastalert2/tree/master/chart/elastalert2. after deploying the elastalert2 helm chart, elastalert pod is failing to connect with the existing elasticsearch deployment.

I did not change any of the values from values.yaml except for rules, because the existing elasticsearch deployment's service name is elasticsearch itself and the port is 9200 which are same as values.yaml .

the error log from elastalert pod is:

Traceback (most recent call last):
File "/usr/local/bin/elastalert-create-index", line 8, in
sys.exit(main())
File "/usr/local/lib/python3.9/site-packages/elastalert/create_index.py", line 218, in main
host = args.host if args.host else input('Enter Elasticsearch host: ')
EOFError: EOF when reading a line
Enter Elasticsearch host:

Could you tell me what I'm doing wrong here?

thanks in advance.

[jertel]

It appears that the pod didn't get the config file mapped correctly. Use kubectl to exec into the elastalert2 pod and inspect the /opt structure. There should be a file located at /opt/elastalert/config.yaml with the Elastic host/port etc.

PS, I moved this to a discussion since it doesn't follow the definition of an Elastalert2 issue.

[success4us]

Yeah, It is working now with the latest tag. Thanks

[Raks2110]

Hi all i am facing the same error , i dint use helm it was manual deployment and there is no scope of using helm in our organisation ...how to rectify it any help

[ferozsalam]

Hey @Raksniru if you aren't using Helm then your issue is unrelated, and probably means you're not setting the es_host config value or the ES_HOST environment variable correctly. Check the documentation here and here to confirm you're running ElastAlert as expected.

If you're still having issues this is potentially something for a new discussion topic.

[Raks2110]

I have set the Host variable now , the issue is when i exec into the container there i could not find "config.yaml" this file thats why my pod is crashing

[ferozsalam]

Have you mounted a configuration file into your container? See the README instructions here. In any case, could you open a new discussion topic for this? This thread shouldn't become the go-to point for all issues with setting the host variable.