Elasticsearch 安装与配置完全指南<\/h1>

一、Elasticsearch 简介<\/h2>
Elasticsearch 是一个基于 Lucene 的分布式搜索和分析引擎，具有以下特点：<\/p>
提供分布式多用户能力的全文搜索引擎<\/li>
基于 RESTful web 接口<\/li>
使用 Java 开发，开源<\/li>
设计用于云计算环境，实时搜索，稳定可靠<\/li>
安装使用方便<\/li> <\/ul>
二、安装准备<\/h2>

环境要求<\/h3>
操作系统：支持多种平台（Linux, Windows, Mac）<\/li>
Java 环境：需要安装 JVM<\/li>
注意 Elasticsearch 与操作系统、Java 版本的对应关系<\/li> <\/ul>
示例环境<\/h3>
Ubuntu 14.04<\/li>
JVM 18.0_171<\/li>
Elasticsearch 6.3.1<\/li> <\/ul>
三、安装步骤<\/h2>

1. Ubuntu\/Debian 系统安装<\/h3>
sudo curl -L -O https:\/\/artifacts.elastic.co\/downloads\/elasticsearch\/elasticsearch-6.3.1.deb
<\/span><\/span>sudo dpkg -i elasticsearch-6.3.1.deb
<\/span><\/span>sudo \/etc\/init.d\/elasticsearch start
<\/span><\/span><\/code><\/pre>安装目录：\/etc\/elasticsearch<\/code><\/p>
2. CentOS\/RHEL 系统安装<\/h3>
curl -L -O https:\/\/artifacts.elastic.co\/downloads\/elasticsearch\/elasticsearch-6.3.1.rpm
<\/span><\/span>sudo rpm -i elasticsearch-6.3.1.rpm
<\/span><\/span>sudo service elasticsearch start
<\/span><\/span><\/code><\/pre>3. Mac OS 安装<\/h3>
curl -L -O https:\/\/artifacts.elastic.co\/downloads\/elasticsearch\/elasticsearch-6.3.1.tar.gz
<\/span><\/span>tar -xzvf elasticsearch-6.3.1.tar.gz
<\/span><\/span>cd elasticsearch-6.3.1
<\/span><\/span>.\/bin\/elasticsearch
<\/span><\/span><\/code><\/pre>4. Windows 安装<\/h3>

从 Elasticsearch 官网下载 Windows zip 文件<\/li>
解压到目录（如 C:\Program Files）<\/li>
以管理员身份打开命令行，切换到解压目录<\/li>
运行：<\/li>
<\/ol>
cd<\/span> C:\Program Files\elasticsearch-6.3.1
<\/span><\/span>bin\elasticsearch.bat
<\/span><\/span><\/code><\/pre>四、运行测试<\/h2>
测试 Elasticsearch 是否正常运行：<\/p>
curl http:\/\/127.0.0.1:9200
<\/span><\/span><\/code><\/pre>或直接在浏览器中访问 http:\/\/127.0.0.1:9200<\/code><\/p>
成功响应示例：<\/p>
{
<\/span><\/span>  "name"<\/span> : "QtI5dUu"<\/span>,
<\/span><\/span>  "cluster_name"<\/span> : "elasticsearch"<\/span>,
<\/span><\/span>  "cluster_uuid"<\/span> : "DMXhqzzjTGqEtDlkaMOzlA"<\/span>,
<\/span><\/span>  "version"<\/span> : {
<\/span><\/span>    "number"<\/span> : "6.3.1"<\/span>,
<\/span><\/span>    "build_flavor"<\/span> : "default"<\/span>,
<\/span><\/span>    "build_type"<\/span> : "tar"<\/span>,
<\/span><\/span>    "build_hash"<\/span> : "00d8bc1"<\/span>,
<\/span><\/span>    "build_date"<\/span> : "2018-06-06T16:48:02.249996Z"<\/span>,
<\/span><\/span>    "build_snapshot"<\/span> : false<\/span>,
<\/span><\/span>    "lucene_version"<\/span> : "7.3.1"<\/span>,
<\/span><\/span>    "minimum_wire_compatibility_version"<\/span> : "5.6.0"<\/span>,
<\/span><\/span>    "minimum_index_compatibility_version"<\/span> : "5.0.0"<\/span>
<\/span><\/span>  },
<\/span><\/span>  "tagline"<\/span> : "You Know, for Search"<\/span>
<\/span><\/span>}
<\/span><\/span><\/code><\/pre>五、配置外部访问<\/h2>
默认 Elasticsearch 只绑定 127.0.0.1，要允许外部访问：<\/p>

编辑 elasticsearch.yml<\/code> 文件<\/li>
修改 network.host<\/code> 为 0.0.0.0<\/code><\/li>
重启服务<\/li>
<\/ol>
配置文件位置：<\/p>

默认安装：\/etc\/elasticsearch\/elasticsearch.yml<\/code><\/li>
手动安装：在安装目录的 config 文件夹下<\/li>
可使用 find \/ -name elasticsearch.yml<\/code> 查找<\/li>
<\/ul>
六、Elasticsearch 常用操作<\/h2>
1. 查看集群健康状态<\/h3>
GET \/_cat\/health?v
<\/span><\/span><\/code><\/pre>或浏览器访问：<\/p>
http:\/\/[your-ip]:9200\/_cat\/health?v
<\/code><\/pre>
状态说明：<\/p>

green：所有数据可用<\/li>
yellow：所有数据可用，但部分副本不可用<\/li>
red：部分数据不可用<\/li>
<\/ul>
2. 查看节点情况<\/h3>
GET \/_cat\/nodes?v
<\/span><\/span><\/code><\/pre>3. 索引操作<\/h3>
创建索引<\/h4>
curl -X PUT "localhost:9200\/customer?pretty"<\/span>
<\/span><\/span><\/code><\/pre>查看索引列表<\/h4>
GET \/_cat\/indices?v
<\/span><\/span><\/code><\/pre>删除索引<\/h4>
curl -X DELETE "localhost:9200\/customer?pretty"<\/span>
<\/span><\/span><\/code><\/pre>4. 文档操作<\/h3>
创建文档（指定ID）<\/h4>
curl -X PUT "localhost:9200\/customer\/_doc\/1?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{
<\/span><\/span><\/span>  "name": "John Doe"
<\/span><\/span><\/span>}
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>创建文档（自动生成ID）<\/h4>
curl -X POST "localhost:9200\/customer\/_doc?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{
<\/span><\/span><\/span>  "name": "Jane Doe"
<\/span><\/span><\/span>}
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>获取文档<\/h4>
curl -X GET "localhost:9200\/customer\/_doc\/1?pretty"<\/span>
<\/span><\/span><\/code><\/pre>更新文档（覆盖）<\/h4>
curl -X PUT "localhost:9200\/customer\/_doc\/1?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{
<\/span><\/span><\/span>  "name": "Jane Doe"
<\/span><\/span><\/span>}
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>更新文档（部分更新）<\/h4>
curl -X POST "localhost:9200\/customer\/_doc\/1\/_update?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{
<\/span><\/span><\/span>  "doc": { "name": "Jane Doe", "age": 20 }
<\/span><\/span><\/span>}
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>使用脚本更新<\/h4>
curl -X POST "localhost:9200\/customer\/_doc\/1\/_update?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{
<\/span><\/span><\/span>  "script" : "ctx._source.age += 5"
<\/span><\/span><\/span>}
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>删除文档<\/h4>
curl -X DELETE "localhost:9200\/customer\/_doc\/2?pretty"<\/span>
<\/span><\/span><\/code><\/pre>5. 批量操作<\/h3>
批量创建<\/h4>
curl -X POST "localhost:9200\/customer\/_doc\/_bulk?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{"index":{"_id":"1"}}
<\/span><\/span><\/span>{"name": "John Doe" }
<\/span><\/span><\/span>{"index":{"_id":"2"}}
<\/span><\/span><\/span>{"name": "Jane Doe" }
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>批量更新和删除<\/h4>
curl -X POST "localhost:9200\/customer\/_doc\/_bulk?pretty"<\/span> -H 'Content-Type: application\/json'<\/span> -d'
<\/span><\/span><\/span>{"update":{"_id":"1"}}
<\/span><\/span><\/span>{"doc": { "name": "John Doe becomes Jane Doe" } }
<\/span><\/span><\/span>{"delete":{"_id":"2"}}
<\/span><\/span><\/span>'<\/span>
<\/span><\/span><\/code><\/pre>6. 加载样本数据<\/h3>

下载样本数据：<\/li>
<\/ol>
https:\/\/download.elastic.co\/demos\/kibana\/gettingstarted\/accounts.zip
<\/code><\/pre>

加载数据：<\/li>
<\/ol>
curl -H "Content-Type: application\/json"<\/span> -X POST "localhost:9200\/bank\/_doc\/_bulk?pretty&refresh"<\/span> --data-binary "@accounts.json"<\/span>
<\/span><\/span><\/code><\/pre>7. 查询API<\/h3>
简单查询示例（按 account_number 升序）：<\/p>
http:\/\/[your-ip]:9200\/bank\/_search?q=*&sort=account_number:asc&pretty
<\/code><\/pre>
七、常见错误及解决方法<\/h2>
1. BootstrapChecks failed<\/h3>
错误信息：<\/p>
max file descriptors [4096] for elasticsearch process is too low, increase to at least [65536]
max virtual memory areas vm.max_map_count [65530] is too low, increase to at least [262144]
<\/code><\/pre>
解决方法：<\/p>

编辑 \/etc\/security\/limits.conf<\/code>，追加：<\/li>
<\/ol>
* soft nofile 65536
* hard nofile 65536
<\/code><\/pre>
修改后需要重新登录用户<\/p>

编辑 \/etc\/sysctl.conf<\/code>，追加：<\/li>
<\/ol>
vm.max_map_count=655360
<\/code><\/pre>
执行 sysctl -p<\/code> 使配置生效<\/p>
2. system call filters failed to install<\/h3>
错误信息：<\/p>
system call filters failed to install; check the logs and fix your configuration or disable system call filters at your own risk
<\/code><\/pre>
解决方法：

在 elasticsearch.yml<\/code> 中添加：<\/p>
bootstrap.memory_lock: false
bootstrap.system_call_filter: false
<\/code><\/pre>
3. JNA 相关错误<\/h3>
错误信息：<\/p>
java.lang.UnsatisfiedLinkError: Native library (com\/sun\/jna\/linux-x86\/libjnidispatch.so) not found in resource path
<\/code><\/pre>
解决方法：

从 JNA GitHub<\/a> 下载最新 JNA jar 包替换 elasticsearch\/lib\/jna-4.4.0.jar<\/code><\/p>
4. X-Pack 机器学习错误<\/h3>
错误信息：<\/p>
ElasticsearchException[X-Pack is not supported and Machine Learning is not available for [linux-x86]; you can use the other X-Pack features (unsupported) by setting xpack.ml.enabled: false in elasticsearch.yml]
<\/code><\/pre>
解决方法：

在 config\/elasticsearch.yml<\/code> 中添加：<\/p>
xpack.ml.enabled: false
<\/code><\/pre>
八、总结<\/h2>
本指南详细介绍了 Elasticsearch 6.3.1 的安装、配置和基本操作，包括：<\/p>

各平台安装方法<\/li>
基本配置调整<\/li>
索引和文档的CRUD操作<\/li>
批量操作<\/li>
常见错误解决方法<\/li>
<\/ul>
后续可继续学习 Kibana 的安装和配置，以更好地可视化和分析 Elasticsearch 中的数据。<\/p>