elastalert-server docker logs - ERROR elastalert: elastalert: Error finding recent pending alerts: NotFoundError 404 #75
Comments
Questions related to ElastAlert2 please send directly to its github project: https://github.com/jertel/elastalert2/discussions But here is the problem:
Probably something went wrong while executing create index script. Best regards, |
|
Thank you @Karql for your reply i will post the query in jertel discussions forum. also i am not able to find the issue where is even the create index script clue i am not getting how to check |
|
When you use https://elastalert2.readthedocs.io/en/latest/elastalert_status.html btw. You should use |
|
Hello @Karql Yes also the elastalert indexes are getting created too i verified them through kibnaa & through curl too curl localhost:9201/_cat/indices/elastalert* Oh is it, but i followed the elastalert-server docker installation method where it also requires the elatalert configuration so accordingly i installed elastalert docker run -d -p 3030:3030 -p 3333:3333 my end goal is to manage the email alert rules using kibana plugin |
|
Here you can find working example: https://github.com/Karql/elastalert-kibana-plugin/tree/master/dev/test-env This also can be useful: https://github.com/Karql/elastalert-kibana-plugin/blob/master/CONTRIBUTING.md |
Hi,
I have installed the elastalert-server2 and it is running too but in error log i can frequently see below message which is blocking to work elastalert-server & elastalert together.
Installed Python
python 3.9
https://github.com/jertel/elastalert2/
https://github.com/Karql/elastalert2-server
Error log as below:
17:16:42.012Z WARN elastalert: elasticsearch: POST http://localhost:9201/elastalert_status/_search?size=1000 [status:404 request:0.003s]
17:16:42.012Z ERROR elastalert: elasticsearch: POST http://localhost:9201/elastalert_status/_search?size=1000 [status:404 request:0.003s]
17:16:42.013Z ERROR elastalert: elastalert: Error finding recent pending alerts: NotFoundError(404, 'index_not_found_exception', 'no such index [elastalert_status]', elastalert_status, index_or_alias) {'query': {'bool': {'must': {'query_string': {'query': '!exists:aggregate_id AND alert_sent:false'}}, 'filter': {'range': {'alert_time': {'from': '2023-04-09T17:16:42.008720Z', 'to': '2023-04-11T17:16:42.008752Z'}}}}}, 'sort': {'alert_time': {'order': 'asc'}}} Traceback (most recent call last): File "/opt/elastalert/elastalert/elastalert.py", line 1476, in find_recent_pending_alerts res = self.writeback_es.search(index=self.writeback_index, body=query, size=1000) File "/usr/lib/python3.10/site-packages/elasticsearch-7.10.1-py3.10.egg/elasticsearch/client/utils.py", line 152, in _wrapped return func(*args, params=params, headers=headers, **kwargs) File "/usr/lib/python3.10/site-packages/elasticsearch-7.10.1-py3.10.egg/elasticsearch/client/init.py", line 1658, in search return self.transport.perform_request( File "/usr/lib/python3.10/site-packages/elasticsearch-7.10.1-py3.10.egg/elasticsearch/transport.py", line 392, in perform_request raise e File "/usr/lib/python3.10/site-packages/elasticsearch-7.10.1-py3.10.egg/elasticsearch/transport.py", line 358, in perform_request status, headers_response, data = connection.perform_request( File "/usr/lib/python3.10/site-packages/elasticsearch-7.10.1-py3.10.egg/elasticsearch/connection/http_requests.py", line 199, in perform_request self._raise_error(response.status_code, raw_data) File "/usr/lib/python3.10/site-packages/elasticsearch-7.10.1-py3.10.egg/elasticsearch/connection/base.py", line 315, in _raise_error raise HTTP_EXCEPTIONS.get(status_code, TransportError)( elasticsearch.exceptions.NotFoundError: NotFoundError(404, 'index_not_found_exception', 'no such index [elastalert_status]', elastalert_status, index_or_alias)
The text was updated successfully, but these errors were encountered: