Release 1.8.1 of monitoring plugin check_es_system fixes bug in readonly check

Written by - 0 comments

Published on - Listed in Monitoring Elasticsearch

A new version of check_es_system, a monitoring plugin to monitor Elasticsearch, is available!

Version 1.8.1 is a bugfix release and fixes a bug in the readonly check type. When the plugin ran through all indices (_all), which is the default, it silently failed in the background and did not warn about discovered read only indices:

# Create a new index in Elasticsearch
root@elasticsearch:~# curl -u elastic:secret -XPUT 'localhost:9200/claudiotest'
{"acknowledged":true,"shards_acknowledged":true,"index":"claudiotest"}

# Set the new index to read_only
root@elasticsearch:~# curl -u elastic:secret -XPUT 'localhost:9200/claudiotest/_settings' -H 'Content-Type: application/json' -d '{ "index": { "blocks.read_only": true } }'

# Read the index' settings and confirm it has been set to read only
root@elasticsearch:~# curl -u elastic:secret 'localhost:9200/claudiotest/_settings'
{"claudiotest":{"settings":{"index":{"number_of_shards":"5","blocks":{"read_only":"true"},"provided_name":"claudiotest","creation_date":"1591628119713","number_of_replicas":"1","uuid":"5tQFbnlXTV2iy3u_WEDwYw","version":{"created":"6080699"}}}}}

# Run the plugin
root@elasticsearch:~# /usr/lib/nagios/plugins/check_es_system.sh -H localhost -u elastic -p secret -t readonly
ES SYSTEM OK - Elasticsearch Indexes (_all) are writeable

This bug only occurs when jshon is used as json parser by the plugin. jshon however is the default parser of the plugin.

Furthermore before 1.8.1, the plugin would only check for indices which had the "read_only_allow_delete" flag in the settings (read Elasticsearch ignored disk watermark settings and enforced read only index for more information). The flag "read_only" however was ignored.

With 1.8.1 the plugin now checks for both "read_only" and "read_only_allow_delete" flags in the index' settings and also shows a warning accordingly:

root@elasticsearch:~# /usr/lib/nagios/plugins/check_es_system.sh -H localhost -u elastic -p secret -t readonly
ES SYSTEM CRITICAL -  1 index(es) found read-only - 1 index(es) found read-only (allow delete) -

More information can be found in issue #26 on GitHub.


Add a comment

Show form to leave a comment

Comments (newest first)

No comments yet.

RSS feed

Blog Tags:

  AWS   Android   Ansible   Apache   Apple   Atlassian   BSD   Backup   Bash   Bluecoat   CMS   Chef   Cloud   Coding   Consul   Containers   CouchDB   DB   DNS   Database   Databases   Docker   ELK   Elasticsearch   Filebeat   FreeBSD   Galera   Git   GlusterFS   Grafana   Graphics   HAProxy   HTML   Hacks   Hardware   Icinga   Icingaweb   Icingaweb2   Influx   Internet   Java   KVM   Kibana   Kodi   Kubernetes   LVM   LXC   Linux   Logstash   Mac   Macintosh   Mail   MariaDB   Minio   MongoDB   Monitoring   Multimedia   MySQL   NFS   Nagios   Network   Nginx   OSSEC   OTRS   Office   PGSQL   PHP   Perl   Personal   PostgreSQL   Postgres   PowerDNS   Proxmox   Proxy   Python   Rancher   Rant   Redis   Roundcube   SSL   Samba   Seafile   Security   Shell   SmartOS   Solaris   Surveillance   Systemd   TLS   Tomcat   Ubuntu   Unix   VMWare   VMware   Varnish   Virtualization   Windows   Wireless   Wordpress   Wyse   ZFS   Zoneminder   

Update cookies preferences