Member since
02-09-2016
559
Posts
422
Kudos Received
98
Solutions
My Accepted Solutions
| Title | Views | Posted |
|---|---|---|
| 2136 | 03-02-2018 01:19 AM | |
| 3526 | 03-02-2018 01:04 AM | |
| 2367 | 08-02-2017 05:40 PM | |
| 2344 | 07-17-2017 05:35 PM | |
| 1720 | 07-10-2017 02:49 PM |
10-08-2016
04:17 PM
19 Kudos
Objective This tutorial walks you through the process of installing the Docker version of the HDP 2.5 Hortonworks Sandbox on a Mac. This tutorial is part one of a two part series. The second article can be found here:HCC Article Prerequisites You should already have installed Docker for Mac. (Read more here Docker for Mac) You should already have downloaded the Docker version of the Hortonworks Sandbox (Read more here Hortonworks Sandbox) Scope This tutorial was tested using the following environment and components: Mac OS X 10.11.6 HDP 2.5 on Hortonworks Sandbox (Docker Version) Docker for Mac 1.12.1 NOTE: You should adjust your Docker configuration to provide at least 8GB of RAM. I personally find things are better with 10-12GB of RAM. You can follow this article for more information: https://hortonworks.com/tutorial/sandbox-deployment-and-install-guide/section/3/#for-mac Steps 1. Ensure the Docker daemon is running. You can verify by typing:
$ docker images You should see something similar to this:
$ docker images
REPOSITORY TAG IMAGE ID CREATED SIZE If your Docker daemon is not running, you may see the following:
$ docker images
Error response from daemon: Bad response from Docker engine 2. Load the Hortonworks sandbox image into Docker: $ docker load < HDP_2.5_docker.tar.gz You should see something similar to this:
$ docker load < HDP_2.5_docker.tar.gz
b1b065555b8a: Loading layer [==================================================>] 202.2 MB/202.2 MB
0b547722f59f: Loading layer [==================================================>] 13.84 GB/13.84 GB
99d7327952e0: Loading layer [==================================================>] 234.8 MB/234.8 MB
294b1c0e07bd: Loading layer [==================================================>] 207.5 MB/207.5 MB
fd5c10f2f1a1: Loading layer [==================================================>] 387.6 kB/387.6 kB
6852ef70321d: Loading layer [==================================================>] 163 MB/163 MB
517f170bbf7f: Loading layer [==================================================>] 20.98 MB/20.98 MB
665edb80fc91: Loading layer [==================================================>] 337.4 kB/337.4 kB
Loaded image: sandbox:latest 3. Verify the image was successfully imported:
$ docker images You should see something similar to this:
$ docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
sandbox latest fc813bdc4bdd 3 days ago 14.57 GB 4. Start the container: The first time you start the container, you need to create it via the run command. The run command both creates and starts the container.
$ docker run -v hadoop:/hadoop --name sandbox --hostname "sandbox.hortonworks.com" --privileged -d \
-p 6080:6080 \
-p 9090:9090 \
-p 9000:9000 \
-p 8000:8000 \
-p 8020:8020 \
-p 42111:42111 \
-p 10500:10500 \
-p 16030:16030 \
-p 8042:8042 \
-p 8040:8040 \
-p 2100:2100 \
-p 4200:4200 \
-p 4040:4040 \
-p 8050:8050 \
-p 9996:9996 \
-p 9995:9995 \
-p 8080:8080 \
-p 8088:8088 \
-p 8886:8886 \
-p 8889:8889 \
-p 8443:8443 \
-p 8744:8744 \
-p 8888:8888 \
-p 8188:8188 \
-p 8983:8983 \
-p 1000:1000 \
-p 1100:1100 \
-p 11000:11000 \
-p 10001:10001 \
-p 15000:15000 \
-p 10000:10000 \
-p 8993:8993 \
-p 1988:1988 \
-p 5007:5007 \
-p 50070:50070 \
-p 19888:19888 \
-p 16010:16010 \
-p 50111:50111 \
-p 50075:50075 \
-p 50095:50095 \
-p 18080:18080 \
-p 60000:60000 \
-p 8090:8090 \
-p 8091:8091 \
-p 8005:8005 \
-p 8086:8086 \
-p 8082:8082 \
-p 60080:60080 \
-p 8765:8765 \
-p 5011:5011 \
-p 6001:6001 \
-p 6003:6003 \
-p 6008:6008 \
-p 1220:1220 \
-p 21000:21000 \
-p 6188:6188 \
-p 61888:61888 \
-p 2181:2181 \
-p 2222:22 \
sandbox /usr/sbin/sshd -D Note: Mounting local drives to the sandbox If you would like to mount local drives on the host to your sandbox, you need to add another -v option to the command above. I typically recommend creating working directories for each of your docker containers, such as /Users/<username>/Development/sandbox or /Users/<username>/Development/hdp25-demo-sandbox. In doing this, you can copy the docker run command above into a script called create_container.sh and you simply change the --name option to be unique and correspond to the directory the script is in. Lets look at an example. In this scenario I'm going to create a directory called /Users/<username>/Development/hdp25-demo-sandbox where I will create my create_container.sh script. Inside of that script I will have as the first line: $ docker run -v `pwd`:`pwd` -v hadoop:/hadoop --name hdp25-demo-sandbox --hostname "sandbox.hortonworks.com" --privileged -d \ Once the container is running you will notice the container has /Users/<username>/Development/hdp25-demo-sandbox as a mount. This is similar in nature/concept to the /vagrant mount when using Vagrant. This allows you to easily share data between the container and your host without having to copy the data around. Once the container is created and running, Docker will display a CONTAINER ID for the container. You should see something similar to this:
fe57fe79f795905daa50191f92ad1f589c91043a30f7153899213a0cadaa5631 For all future container starts, you only need to run the docker start command:
$ docker start sandbox Notice that sandbox is the name of the container in the run command used above. If you name the container the same name as the container project directory, like hdp25-demo-sandbox above, it will make it easier to remember what the container name is. However, you can always create a start_container.sh script that includes the above start command. Similarly you can create a stop_container.sh script that stops the container. 5. Verify the container is running:
$ docker ps You should see something similar to this:
$ docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
85d7ec7201d8 sandbox "/usr/sbin/sshd -D" 31 seconds ago Up 27 seconds 0.0.0.0:1000->1000/tcp, 0.0.0.0:1100->1100/tcp, 0.0.0.0:1220->1220/tcp, 0.0.0.0:1988->1988/tcp, 0.0.0.0:2100->2100/tcp, 0.0.0.0:4040->4040/tcp, 0.0.0.0:4200->4200/tcp, 0.0.0.0:5007->5007/tcp, 0.0.0.0:5011->5011/tcp, 0.0.0.0:6001->6001/tcp, 0.0.0.0:6003->6003/tcp, 0.0.0.0:6008->6008/tcp, 0.0.0.0:6080->6080/tcp, 0.0.0.0:6188->6188/tcp, 0.0.0.0:8000->8000/tcp, 0.0.0.0:8005->8005/tcp, 0.0.0.0:8020->8020/tcp, 0.0.0.0:8040->8040/tcp, 0.0.0.0:8042->8042/tcp, 0.0.0.0:8050->8050/tcp, 0.0.0.0:8080->8080/tcp, 0.0.0.0:8082->8082/tcp, 0.0.0.0:8086->8086/tcp, 0.0.0.0:8088->8088/tcp, 0.0.0.0:8090-8091->8090-8091/tcp, 0.0.0.0:8188->8188/tcp, 0.0.0.0:8443->8443/tcp, 0.0.0.0:8744->8744/tcp, 0.0.0.0:8765->8765/tcp, 0.0.0.0:8886->8886/tcp, 0.0.0.0:8888-8889->8888-8889/tcp, 0.0.0.0:8983->8983/tcp, 0.0.0.0:8993->8993/tcp, 0.0.0.0:9000->9000/tcp, 0.0.0.0:9090->9090/tcp, 0.0.0.0:9995-9996->9995-9996/tcp, 0.0.0.0:10000-10001->10000-10001/tcp, 0.0.0.0:10500->10500/tcp, 0.0.0.0:11000->11000/tcp, 0.0.0.0:15000->15000/tcp, 0.0.0.0:16010->16010/tcp, 0.0.0.0:16030->16030/tcp, 0.0.0.0:18080->18080/tcp, 0.0.0.0:19888->19888/tcp, 0.0.0.0:21000->21000/tcp, 0.0.0.0:42111->42111/tcp, 0.0.0.0:50070->50070/tcp, 0.0.0.0:50075->50075/tcp, 0.0.0.0:50095->50095/tcp, 0.0.0.0:50111->50111/tcp, 0.0.0.0:60000->60000/tcp, 0.0.0.0:60080->60080/tcp, 0.0.0.0:61888->61888/tcp, 0.0.0.0:2222->22/tcp sandbox Notice the CONTAINER ID is the shortened version of the ID displayed when you ran the run command. 6. To stop the container Once the container is running, you stop it using the following command:
$ docker stop sandbox 7. To connect to the container You connect to the container via ssh using the following command:
$ ssh -p 2222 root@localhost The first time you log into the container, you will be prompted to change the root password. The root password for the container is hadoop . 8. Start sandbox services The Ambari and HDP services do not start automatically when you start the Docker container. You need to start the processes with a script.
$ ssh -p 2222 root@localhost
$ /etc/init.d/startup_script start You should see something similar to this (you can ignore any warnings):
# /etc/init.d/startup_script start
Starting tutorials... [ Ok ]
Starting startup_script...
Starting HDP ...
Starting mysql [ OK ]
Starting Flume [ OK ]
Starting Postgre SQL [ OK ]
Starting Ranger-admin [ OK ]
Starting name node [ OK ]
Starting Ranger-usersync [ OK ]
Starting data node [ OK ]
Starting Zookeeper nodes [ OK ]
Starting Oozie [ OK ]
Starting Ambari server [ OK ]
Starting NFS portmap [ OK ]
Starting Hdfs nfs [ OK ]
Starting Hive server [ OK ]
Starting Hiveserver2 [ OK ]
Starting Ambari agent [ OK ]
Starting Node manager [ OK ]
Starting Yarn history server [ OK ]
Starting Resource manager [ OK ]
Starting Webhcat server [ OK ]
Starting Spark [ OK ]
Starting Mapred history server [ OK ]
Starting Zeppelin [ OK ]
Safe mode is OFF
Starting sandbox...
./startup_script: line 97: /proc/sys/kernel/hung_task_timeout_secs: No such file or directory
Starting shellinaboxd: [ OK ] 9. You can now connect to your HDP instance via a web browser at http://localhost:8888
... View more
10-08-2016
01:14 AM
1 Kudo
I wasn't able to use the local mac directory for the /hadoop mount. The /etc/init.d/startup_script run in the container attempt to chown the users/groups to things that don't exist on my Mac. So I found an alternative approach that I think is working well. I wrote an article that addresses the shared directory issue: https://community.hortonworks.com/articles/60584/how-to-manage-multiple-copies-of-the-hdp-docker-sa.html
... View more
10-07-2016
05:30 PM
1 Kudo
@Ayub Pathan This was very helpful information. I was thinking in the lines of VMs, which is wrong for Docker containers. I assumed that if I copied the base image and created a container from it, then the data would not be shared between the two. What I found out is the container for the sandbox is mounting the /hadoop directory on the "host", which is actually the Hyperkit linux VM (on Mac). So even though I used different images and containers, they were sharing a common directory on the VM. I'm going to try working around this by mapping my container's /hadoop directory to my local mac project working directory, not the hyperkit vm, to see if that keeps the data separate. Thank you!
... View more
10-07-2016
02:18 PM
1 Kudo
I like to have multiple copies of the Hortonworks Sandbox for HDP. Typically these sandbox copies are used for specific demo scenarios. This has worked well with the previous VirtualBox-based sandbox. However, I'm wondering if there are problems when doing this with the Docker-based sandbox. Is there anything shared between docker containers based on a similar image?
I installed the Docker Sandbox using my HCC article here: https://community.hortonworks.com/content/kbentry/58458/installing-docker-version-of-sandbox-on-mac.html
I was working through some of the sandbox tutorials and everything was working ok with Atlas.
At some point, but Docker container crashed.
When I restarted the sandbox, the Atlas UI would not load. See the problem here: https://community.hortonworks.com/questions/60125/atlas-ui-not-working-on-docker-hdp-25-sandbox-afte.html#answer-60449
To get around the problem before I knew the fix, I figured I would start with a completely new sandbox. So I repeated the installation procedure above, but gave the image a new name. Here is the output of docker images:
$ docker images
REPOSITORY TAG IMAGE ID CREATED SIZE
sandbox-atlas latest 1ade17087a83 34 hours ago 15.34 GB
sandbox latest fc813bdc4bdd 2 weeks ago 14.57 GB
There are two images. The sandbox image is the original import. The sandbox-atlas image is the new import. So I create a new sandbox container using the sandbox-atlas image, which is a clean image. I start up the container and try to load the Atlas UI and I'm surprised to find the exact same error! I tried creating several different containers and they all behaved the same. Here is the output of docker ps -a: $ docker ps -a
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
cc74035a2d71 sandbox-atlas "/usr/sbin/sshd -D" 24 hours ago Exited (255) 4 seconds ago hdp25-atlas-demo
381ff4de9d9c sandbox "/usr/sbin/sshd -D" 42 hours ago Exited (0) 35 hours ago atlas-demo
You should notice that each container is using a different image. Is there anything shared between docker containers based on a similar, but different image?
... View more
Labels:
- Labels:
-
Docker
10-07-2016
01:44 PM
@Ayub Pathan You are a life saver! This worked like a charm!
... View more
10-07-2016
01:45 AM
2 Kudos
@Sreejith Surendran You must have a CPU with the VT-x features enabled, which is typically done via the BIOS. Also, you need at least 8GB of ram to run the sandbox properly.
... View more
10-06-2016
01:27 AM
3 Kudos
I'm using the Docker version of the HDP 2.5 Sandbox. The Atlas UI was working fine as I completed this tutorial http://hortonworks.com/hadoop-tutorial/tag-based-policies-atlas-ranger/ and this tutorial http://hortonworks.com/hadoop-tutorial/cross-component-lineage-apache-atlas/. However my Docker container crashed unexpectedly while I was doing some things in Hive. I restarted my Sandbox and now the Atlas UI won't come back up. This is what I see: Looking at /var/log/atlas/application.log I see this: 7) Error injecting constructor, org.apache.atlas.typesystem.exception.TypeExistsException: Cannot redefine type TaxonomyTerm
at org.apache.atlas.services.DefaultMetadataService.<init>(DefaultMetadataService.java:117)
at org.apache.atlas.services.DefaultMetadataService.class(DefaultMetadataService.java:93)
while locating org.apache.atlas.services.DefaultMetadataService
at org.apache.atlas.RepositoryMetadataModule.configure(RepositoryMetadataModule.java:83)
while locating org.apache.atlas.services.MetadataService
for parameter 0 at org.apache.atlas.web.resources.EntityResource.<init>(EntityResource.java:97)
at org.apache.atlas.web.resources.EntityResource.class(EntityResource.java:80)
while locating org.apache.atlas.web.resources.EntityResource
for parameter 1 at org.apache.atlas.LocalAtlasClient.<init>(LocalAtlasClient.java:55)
while locating org.apache.atlas.LocalAtlasClient
for parameter 1 at org.apache.atlas.notification.NotificationHookConsumer.<init>(NotificationHookConsumer.java:72)
at org.apache.atlas.notification.NotificationHookConsumer.class(NotificationHookConsumer.java:48)
while locating org.apache.atlas.notification.NotificationHookConsumer
Caused by: org.apache.atlas.typesystem.exception.TypeExistsException: Cannot redefine type TaxonomyTerm
at org.apache.atlas.typesystem.types.TypeSystem$TransientTypeSystem.validateAndSetupShallowTypes(TypeSystem.java:428)
at org.apache.atlas.typesystem.types.TypeSystem$TransientTypeSystem.verifyTypes(TypeSystem.java:705)
at org.apache.atlas.typesystem.types.TypeSystem$TransientTypeSystem.defineTypes(TypeSystem.java:622)
at org.apache.atlas.typesystem.types.TypeSystem.defineTypes(TypeSystem.java:284)
at org.apache.atlas.typesystem.types.TypeSystem.defineTypes(TypeSystem.java:276)
at org.apache.atlas.services.DefaultMetadataService.restoreTypeSystem(DefaultMetadataService.java:163)
at org.apache.atlas.services.DefaultMetadataService.<init>(DefaultMetadataService.java:152)
at org.apache.atlas.services.DefaultMetadataService.<init>(DefaultMetadataService.java:117)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:57)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at java.lang.reflect.Constructor.newInstance(Constructor.java:526)
at com.google.inject.internal.DefaultConstructionProxyFactory$2.newInstance(DefaultConstructionProxyFactory.java:86)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:105)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:85)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:267)
at com.google.inject.internal.ProviderToInternalFactoryAdapter$1.call(ProviderToInternalFactoryAdapter.java:46)
at com.google.inject.internal.InjectorImpl.callInContext(InjectorImpl.java:1103)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:145)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:41)
at com.google.inject.internal.FactoryProxy.get(FactoryProxy.java:56)
at com.google.inject.internal.ProviderToInternalFactoryAdapter$1.call(ProviderToInternalFactoryAdapter.java:46)
at com.google.inject.internal.InjectorImpl.callInContext(InjectorImpl.java:1103)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:145)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:41)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:38)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:62)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:104)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:85)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:267)
at com.google.inject.internal.ProviderToInternalFactoryAdapter$1.call(ProviderToInternalFactoryAdapter.java:46)
at com.google.inject.internal.InjectorImpl.callInContext(InjectorImpl.java:1103)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:145)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:41)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:38)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:62)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:104)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:85)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:267)
at com.google.inject.internal.SingleParameterInjector.inject(SingleParameterInjector.java:38)
at com.google.inject.internal.SingleParameterInjector.getAll(SingleParameterInjector.java:62)
at com.google.inject.internal.ConstructorInjector.provision(ConstructorInjector.java:104)
at com.google.inject.internal.ConstructorInjector.construct(ConstructorInjector.java:85)
at com.google.inject.internal.ConstructorBindingImpl$Factory.get(ConstructorBindingImpl.java:267)
at com.google.inject.internal.ProviderToInternalFactoryAdapter$1.call(ProviderToInternalFactoryAdapter.java:46)
at com.google.inject.internal.InjectorImpl.callInContext(InjectorImpl.java:1103)
at com.google.inject.internal.ProviderToInternalFactoryAdapter.get(ProviderToInternalFactoryAdapter.java:40)
at com.google.inject.internal.SingletonScope$1.get(SingletonScope.java:145)
at com.google.inject.internal.InternalFactoryToProviderAdapter.get(InternalFactoryToProviderAdapter.java:41)
at com.google.inject.internal.InternalInjectorCreator$1.call(InternalInjectorCreator.java:205)
at com.google.inject.internal.InternalInjectorCreator$1.call(InternalInjectorCreator.java:199)
at com.google.inject.internal.InjectorImpl.callInContext(InjectorImpl.java:1092)
at com.google.inject.internal.InternalInjectorCreator.loadEagerSingletons(InternalInjectorCreator.java:199)
at com.google.inject.internal.InternalInjectorCreator.injectDynamically(InternalInjectorCreator.java:180)
at com.google.inject.internal.InternalInjectorCreator.build(InternalInjectorCreator.java:110)
at com.google.inject.Guice.createInjector(Guice.java:96)
at com.google.inject.Guice.createInjector(Guice.java:84)
at org.apache.atlas.web.listeners.GuiceServletConfig.getInjector(GuiceServletConfig.java:77)
at com.google.inject.servlet.GuiceServletContextListener.contextInitialized(GuiceServletContextListener.java:47)
at org.apache.atlas.web.listeners.GuiceServletConfig.contextInitialized(GuiceServletConfig.java:131)
at org.eclipse.jetty.server.handler.ContextHandler.callContextInitialized(ContextHandler.java:800)
at org.eclipse.jetty.servlet.ServletContextHandler.callContextInitialized(ServletContextHandler.java:444)
at org.eclipse.jetty.server.handler.ContextHandler.startContext(ContextHandler.java:791)
at org.eclipse.jetty.servlet.ServletContextHandler.startContext(ServletContextHandler.java:294)
at org.eclipse.jetty.webapp.WebAppContext.startWebapp(WebAppContext.java:1349)
at org.eclipse.jetty.webapp.WebAppContext.startContext(WebAppContext.java:1342)
at org.eclipse.jetty.server.handler.ContextHandler.doStart(ContextHandler.java:741)
at org.eclipse.jetty.webapp.WebAppContext.doStart(WebAppContext.java:505)
at org.eclipse.jetty.util.component.AbstractLifeCycle.start(AbstractLifeCycle.java:68)
at org.eclipse.jetty.util.component.ContainerLifeCycle.start(ContainerLifeCycle.java:132)
at org.eclipse.jetty.server.Server.start(Server.java:387)
at org.eclipse.jetty.util.component.ContainerLifeCycle.doStart(ContainerLifeCycle.java:114)
at org.eclipse.jetty.server.handler.AbstractHandler.doStart(AbstractHandler.java:61)
at org.eclipse.jetty.server.Server.doStart(Server.java:354)
at org.eclipse.jetty.util.component.AbstractLifeCycle.start(AbstractLifeCycle.java:68)
at org.apache.atlas.web.service.EmbeddedServer.start(EmbeddedServer.java:93)
at org.apache.atlas.Atlas.main(Atlas.java:113)
7 errors
at com.google.inject.internal.Errors.throwCreationExceptionIfErrorsExist(Errors.java:466)
at com.google.inject.internal.InternalInjectorCreator.injectDynamically(InternalInjectorCreator.java:184)
at com.google.inject.internal.InternalInjectorCreator.build(InternalInjectorCreator.java:110)
at com.google.inject.Guice.createInjector(Guice.java:96)
at com.google.inject.Guice.createInjector(Guice.java:84)
at org.apache.atlas.web.listeners.GuiceServletConfig.getInjector(GuiceServletConfig.java:77)
at com.google.inject.servlet.GuiceServletContextListener.contextInitialized(GuiceServletContextListener.java:47)
at org.apache.atlas.web.listeners.GuiceServletConfig.contextInitialized(GuiceServletConfig.java:131)
at org.eclipse.jetty.server.handler.ContextHandler.callContextInitialized(ContextHandler.java:800)
at org.eclipse.jetty.servlet.ServletContextHandler.callContextInitialized(ServletContextHandler.java:444)
at org.eclipse.jetty.server.handler.ContextHandler.startContext(ContextHandler.java:791)
at org.eclipse.jetty.servlet.ServletContextHandler.startContext(ServletContextHandler.java:294)
at org.eclipse.jetty.webapp.WebAppContext.startWebapp(WebAppContext.java:1349)
at org.eclipse.jetty.webapp.WebAppContext.startContext(WebAppContext.java:1342)
at org.eclipse.jetty.server.handler.ContextHandler.doStart(ContextHandler.java:741)
at org.eclipse.jetty.webapp.WebAppContext.doStart(WebAppContext.java:505)
at org.eclipse.jetty.util.component.AbstractLifeCycle.start(AbstractLifeCycle.java:68)
at org.eclipse.jetty.util.component.ContainerLifeCycle.start(ContainerLifeCycle.java:132)
at org.eclipse.jetty.server.Server.start(Server.java:387)
at org.eclipse.jetty.util.component.ContainerLifeCycle.doStart(ContainerLifeCycle.java:114)
at org.eclipse.jetty.server.handler.AbstractHandler.doStart(AbstractHandler.java:61)
at org.eclipse.jetty.server.Server.doStart(Server.java:354)
at org.eclipse.jetty.util.component.AbstractLifeCycle.start(AbstractLifeCycle.java:68)
at org.apache.atlas.web.service.EmbeddedServer.start(EmbeddedServer.java:93)
at org.apache.atlas.Atlas.main(Atlas.java:113) I have ensured all of the dependent services of Atlas are running (Ambari Infra, Storm, Kafka, etc). I started a brand new container and I'm seeing the same behavior on a clean install, so there must be something I'm missing. Any ideas?
... View more
Labels:
- Labels:
-
Apache Atlas
-
Docker
10-05-2016
08:17 PM
@Pavol Namer You can't get the "total_charge" per code because your select statement includes multiple columns that have different values for the the same code. To get the output you are looking for you would typically do: create table p_n.analysis_file_01a as
select code,
sum(charge_fixed) as total_charge
from p_n.analysis_file_00
where service_dt >= '20130728' and service_dt <= '20160728'
group by code An alternative approach would to use Pig or Spark against the Hive table to do what you are looking for.
... View more
10-05-2016
05:26 PM
1 Kudo
@Randy Gelhausen I believe Tibco JMS is supported as of NiFi 1.0.0. https://issues.apache.org/jira/browse/NIFI-1628
... View more
10-04-2016
07:07 PM
7 Kudos
Objective
This tutorial is intended to walk you through the process of troubleshooting why events are missing from the Metron Kibana dashboard when using the quick-dev-platform. Because of the constrained resources and added complexity of the virtualized environment, sometimes the vagrant instance doesn't come up in a healthy state.
Prerequisites
You should have already cloned the Metron git repo. Metron
You should have already deployed the Metron quick-dev-platform. quick-dev-platform
The expectation is you have already started Metron once and shut it down via a vagrant halt . Now you are trying to start Metron again via vagrant up , but things don't seem to be working properly. These troubleshooting steps are also be helpful during the initial start of the VM via the run.sh script.
Scope
Theses troubleshooting steps were performed in the following environment:
Mac OS X 10.11.6
Vagrant 1.8.6
VirtualBox 5.1.6
Python 2.7.12 (Anaconda distribution)
Steps
Start Metron quick-dev-platform
You should be in the /incubator-metron/metron-deployment/vagrant/quick-dev-platform directory.
$ cd <basedir>/incubator-metron/metron-deployment/vagrant/quick-dev-platform
Now you can run vagrant up to start the Metron virtual machine. You should see something similar to this:
$ vagrant up
Bringing machine 'node1' up with 'virtualbox' provider...
==> node1: Checking if box 'metron/hdp-base' is up to date...
==> node1: Clearing any previously set forwarded ports...
==> node1: Clearing any previously set network interfaces...
==> node1: Preparing network interfaces based on configuration...
node1: Adapter 1: nat
node1: Adapter 2: hostonly
==> node1: Forwarding ports...
node1: 22 (guest) => 2222 (host) (adapter 1)
==> node1: Running 'pre-boot' VM customizations...
==> node1: Booting VM...
==> node1: Waiting for machine to boot. This may take a few minutes...
node1: SSH address: 127.0.0.1:2222
node1: SSH username: vagrant
node1: SSH auth method: private key
node1: Warning: Remote connection disconnect. Retrying...
==> node1: Machine booted and ready!
[node1] GuestAdditions 5.1.6 running --- OK.
==> node1: Checking for guest additions in VM...
==> node1: Setting hostname...
==> node1: Configuring and enabling network interfaces...
==> node1: Mounting shared folders...
node1: /vagrant => /Volumes/Samsung/Development/incubator-metron/metron-deployment/vagrant/quick-dev-platform
==> node1: Updating /etc/hosts file on active guest machines...
==> node1: Updating /etc/hosts file on host machine (password may be required)...
==> node1: Machine already provisioned. Run `vagrant provision` or use the `--provision`
==> node1: flag to force provisioning. Provisioners marked to run always will still run.
Connect to Vagrant virtual machine
Now that the virtual machine is running, we can connect to it with vagrant ssh .
You should see something similar to this:
$ vagrant ssh
Last login: Tue Oct 4 14:54:04 2016 from 10.0.2.2
[vagrant@node1 ~]$
Check Ambari
The Ambari UI should be available at http://node1:8080 . Ambari should present you with a login screen.
NOTE: The vagrant hostmanager plugin should automatically update the /etc/hosts file on your local machine to add a node1 entry
You should see something similar to this:
You should be able to log into the interface using admin as the username and password. You should see something similar to this:
You should notice that all of the services are red. They do not auto start. Click the Actions button and then the Start All link. You should see something similar to this:
You should see a confirmation dialog similar to this:
Click the green confirm button. You should see an operations dialog showing you the status of the start all process. You should see something similar to this:
Click the green OK button and wait for the processes to finish starting. Once the startup process is complete, you should see something similar to this:
Check Kibana dashboard
Now that the cluster is running, we want to check our Kibana dashboard to see if there are any events. The Kibana dashboard should be available at http://node1:5000 .
The dashboard should present you with both bro and snort events. It may take a few minutes before events show up. If there are no events, then you should see something similar to this:
If you see only one type of events, such as snort , then you should see something like this:
Seeing either versions of these dashboards after 5-10 minutes indicates there is a problem with the data flow.
Check monit dashboard
The first thing you can do is check the monit dashboard. It should be available at 'http://node1:2812'. You should be presented with a login dialog. The username is admin and the password is monit . You should see something similar to this:
If you are unable to access the monit dashboard ui, try using the command-line. The monit command requires sudo.
You should see something similar to this:
$ sudo monit status
The Monit daemon 5.14 uptime: 25m
Process 'snort'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
Process 'snort-logs'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
Process 'pcap-service'
status Running
monitoring status Monitored
pid 3974
parent pid 1
uid 0
effective uid 0
gid 0
uptime 25m
children 0
memory 34.3 MB
memory total 34.3 MB
memory percent 0.4%
memory percent total 0.4%
cpu percent 0.0%
cpu percent total 0.0%
data collected Tue, 04 Oct 2016 15:47:25
Process 'pcap-replay'
status Running
monitoring status Monitored
pid 4024
parent pid 1
uid 0
effective uid 0
gid 0
uptime 25m
children 0
memory 856.0 kB
memory total 856.0 kB
memory percent 0.0%
memory percent total 0.0%
cpu percent 14.5%
cpu percent total 14.5%
data collected Tue, 04 Oct 2016 15:47:25
Program 'pcap-parser'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
Program 'yaf-parser'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
Program 'bro-parser'
status Status ok
monitoring status Monitored
last started Tue, 04 Oct 2016 15:47:25
last exit value 0
data collected Tue, 04 Oct 2016 15:47:25
Program 'snort-parser'
status Status ok
monitoring status Monitored
last started Tue, 04 Oct 2016 15:47:25
last exit value 0
data collected Tue, 04 Oct 2016 15:47:25
Process 'mysql'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
Process 'kibana'
status Running
monitoring status Monitored
pid 4052
parent pid 1
uid 496
effective uid 496
gid 0
uptime 25m
children 0
memory 99.0 MB
memory total 99.0 MB
memory percent 1.2%
memory percent total 1.2%
cpu percent 0.0%
cpu percent total 0.0%
data collected Tue, 04 Oct 2016 15:47:25
Program 'indexing'
status Status ok
monitoring status Monitored
last started Tue, 04 Oct 2016 15:47:25
last exit value 0
data collected Tue, 04 Oct 2016 15:47:25
Program 'enrichment'
status Status ok
monitoring status Monitored
last started Tue, 04 Oct 2016 15:47:25
last exit value 0
data collected Tue, 04 Oct 2016 15:47:25
Process 'elasticsearch'
status Running
monitoring status Monitored
pid 4180
parent pid 1
uid 497
effective uid 497
gid 491
uptime 25m
children 0
memory 210.7 MB
memory total 210.7 MB
memory percent 2.6%
memory percent total 2.6%
cpu percent 0.1%
cpu percent total 0.1%
data collected Tue, 04 Oct 2016 15:47:25
Process 'bro'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
System 'node1'
status Not monitored
monitoring status Not monitored
data collected Tue, 04 Oct 2016 15:22:12
If you see something like this:
$ sudo monit status
Cannot create socket to [node1]:2812 -- Connection refused
Then check to make sure that monit is running:
$ sudo service monit status
monit (pid 3981) is running...
If the service is running, but you can't access the web user interface or the command line, then you should restart the service.
$ sudo service monit restart
Shutting down monit: [ OK ]
Starting monit: [ OK ]
Now verify you can access the monit web ui. If you see any of the items under Process listed as Not Monitored , then we should start those processes.
Note: The vagrant image is using vagrant hostmanager to automatically update the the /etc/hosts file on both the host and the guest. If monit still does not restart properly, check the /etc/hosts file on node1. If you see:
127.0.0.1 node1 node1
on the first line of your /etc/hosts file, comment out or delete that line.
In my example, I can see that snort , snort-logs , bro processes are not running. I'm going to start them by clicking on the name of the process which will bring up a new view similar to this:
First click the Enable Monitoring button. The status should change to Not monitored - monitor pending . Click the Home link in the upper left of the monit dashboard. This takes you back to the main monit dashboard. You should see something similar to this:
Once the process has initialized, you should see something similar to this:
Repeat this process for the snort-logs and bro processes. Once that is complete, the monit dashboard should look similar to this:
Recheck the Kibana dashboard
Now recheck the Kibana dashboard to see if there are new events. You should see something similar to this:
If you do not see this, then we need to continue troubleshooting.
Check Kafka topics
First we need to make sure that all of our Kafka topics are up. You can verify by doing the following:
$ cd /usr/hdp/current/kafka-broker
$ ./bin/kafka-topics.sh --list --zookeeper localhost:2181
You should see something similar to this:
$ ./bin/kafka-topics.sh --list --zookeeper localhost:2181
bro
enrichments
indexing
indexing_error
parser_error
parser_invalid
pcap
snort
yaf
We have verified the topics exist. So let's see if any data is coming through the topics. First we'll check the bro topic.
$ ./bin/kafka-console-consumer.sh --topic bro --zookeeper localhost:2181
You should see something similar to this:
$ ./bin/kafka-console-consumer.sh --topic bro --zookeeper localhost:2181
{metadata.broker.list=node1:6667, request.timeout.ms=30000, client.id=console-consumer-21240, security.protocol=PLAINTEXT}
{"dns": {"ts":1475597283.245551,"uid":"CffpQZ36hz1gmVzj0a","id.orig_h":"192.168.66.1","id.orig_p":5353,"id.resp_h":"224.#.#.#","id.resp_p":5353,"proto":"udp","trans_id":0,"query":"hp envy 7640 series [c62abe]._uscan._tcp.local","qclass":32769,"qclass_name":"qclass-32769","qtype":33,"qtype_name":"SRV","AA":false,"TC":false,"RD":false,"RA":false,"Z":0,"rejected":false}}
It may take a few seconds before a message is shown. If you are seeing messages, then the bro topic is working ok. Press ctrl-c to exit.
Now let's check the snort topic.
$ ./bin/kafka-console-consumer.sh --topic snort --zookeeper localhost:2181
You should see something similar to this:
$ ./bin/kafka-console-consumer.sh --topic snort --zookeeper localhost:2181
{metadata.broker.list=node1:6667, request.timeout.ms=30000, client.id=console-consumer-73857, security.protocol=PLAINTEXT}
10/04-16:09:18.045368 ,1,999158,0,"'snort test alert'",TCP,192.168.138.158,49206,95.163.121.204,80,00:00:00:00:00:00,00:00:00:00:00:00,0x3C,***A****,0xA80DAF97,0xB93A1E6C,,0xFAF0,128,0,2556,40,40960,,,,
10/04-16:09:18.114314 ,1,999158,0,"'snort test alert'",TCP,95.#.#.#,80,192.168.138.158,49205,00:00:00:00:00:00,00:00:00:00:00:00,0x221,***AP***,0x628EE92,0xCA8D8698,,0xFAF0,128,0,2031,531,19464,,,,
10/04-16:09:18.185913 ,1,999158,0,"'snort test alert'",TCP,95.#.#.#,80,192.168.138.158,49210,00:00:00:00:00:00,00:00:00:00:00:00,0x21E,***AP***,0x9B7A5871,0x63626DD7,,0xFAF0,128,0,2032,528,16392,,,,
10/04-16:09:18.216988 ,1,999158,0,"'snort test alert'",TCP,192.168.138.158,49205,95.#.#.#,80,00:00:00:00:00:00,00:00:00:00:00:00,0x3C,***A****,0xCA8D8698,0x628F07D,,0xFAF0,128,0,2557,40,40960,,,,
10/04-16:09:18.292182 ,1,999158,0,"'snort test alert'",TCP,192.168.138.158,49210,95.#.#.#,80,00:00:00:00:00:00,00:00:00:00:00:00,0x3C,***A****,0x63626DD7,0x9B7A5A59,,0xF71F,128,0,2558,40,40960,,,,
10/04-16:09:18.310822 ,1,999158,0,"'snort test alert'",TCP,95.#.#.#,80.#.#.#.158,49208,00:00:00:00:00:00,00:00:00:00:00:00,0x21C,***AP***,0x8EF414C5,0xBE149917,,0xFAF0,128,0,2035,526,14344,,,,
It may take a few seconds before a message is shown. If you are seeing messages, then the snort topic is working ok. Press ctrl-c to exit.
Check MySQL
If MySQL is not running, then you will have issues seeing events in your Kibana dashboard. The first thing to do is see if it's running:
$ sudo service mysqld status
You should see something similar ot this:
$ sudo service mysqld status
mysqld (pid 1916) is running...
If it is not running, then you need to start it with:
$ sudo service mysqld start
Even if it is running, you may want to restart it.
$ sudo service mysqld restart
Stopping mysqld: [ OK ]
Starting mysqld: [ OK ]
Check Storm topologies
If there were issues with MySQL or you restarted it, you will need to reset the enrichment Storm topology. You may also want to reset the bro and snort typologies. From the Ambari user interface, click on the Storm service. You should see something similar to this:
In the quick links section, click on the Storm UI link. You should see something similar to this:
Under the Topology Summary section, there should be at least 4 topology entries: bro , enrichment , indexing , and snort
Click on the bro link. You should see something similar to this:
You should see events in the Topology stats section under the Acked column. Under the Spouts and Bolts sections, you should see events under the Acked column for the kafkaSpout and parserBolt respectively.
Under Topology actions, click on the kill button. This will kill the topology. The monit process should automatically restart the topology.
You should see a dialog asking you for a delay value in seconds, something similar to this:
The delay defaults to 30 seconds. You can set it to a smaller number, like 5. Then click the ok button.
Go back to the main Storm UI page. You should see something similar to this:
You should notice the bro topology is now missing. Now take a look at the monit dashboard. You should see something similar to this:
You may notice several programs listed as Status:failed . After a few seconds, monit will restart the topologies. You should see something similar to this:
Now go back to the Storm UI. You should see something similar to this:
You should notice the bro topology is back and it has an uptime less than the other topologies.
You can repeat this process for each of the topologies.
Recheck Kibana dashboard
Now we can recheck our Kibana dashboard. You should see something similar to this:
Now you events running through the Metron stack.
Review
We walked through some common troubleshooting steps in Metron when replay events are not being displayed in the Kibana dashboard. More often than not, the MySQL server is the culprit because it doesn't always come up cleanly when you do a vagrant up . That will impact the Storm topologies, particularly the enrichment topology.
... View more
Labels: