Prerequisites

Supported operating systems:

• RHEL 7.4 and later, RHEL 8.x
• SUSE SLES 12, SUSE SLES 15

Hardware:

Each machine requires a minimum of:

• 16 GB RAM
• 4 CPUs

Software:

• Docker engine (minimum version 18.09.0) and docker-compose tool (minimum version 1.22.0)

Firewall:

• The following ports must be available:
  • TCP port 2377 for Manager node.
  • TCP and UDP port 7946 for all nodes.
  • UDP port 4789 for all nodes.

  Any firewall should be configured correctly. On the Manager machine, the firewall must allow either default SSL port 443, or a custom port you provide during setup, as well as port 6566.

Enhanced security features:

Enhanced security features should be turned off.

Certificates:

If you intend to replace the supplied self-signed certificates in the cert directory, you must prepare your own certificates.

Virtual memory for Elasticsearch node

By default, Elasticsearch uses a mmapfs directory to store its indexes. The default operating system limits on mmap counts is likely to be too low, which may result in out of memory exceptions. On Linux, you can increase the limits by running the following command as root on the node where Elasticsearch is going to be installed:

sysctl -w vm.max_map_count=262144

To set this value permanently, update the vm.max_map_count setting in the /etc/sysctl.conf file. To verify after rebooting, run sysctl vm.max_map_count.

Memory lock limits for Elasticsearch node

Elasticsearch tries to lock memory to improve performance. We recommend removing memory lock limits to enable this. To remove the limit for docker on the Elasticsearch node:

1. Add the line LimitMEMLOCK=infinity to the [Service] section of the /usr/lib/systemd/system/docker.service file and containerd.service (if it exists).
2. Run systemctl daemon-reload.
3. Run systemctl restart docker and containerd (if it exists).
4. Restart HAA by running ./stop.sh and ./start.sh if was already running.