Connect two Elasticsearch clusters - Elasticsearch Instances Management| Alibaba Cloud Documentation Center

This topic describes how to connect two Alibaba Cloud Elasticsearch clusters. After the clusters are connected, you can search for data across these clusters. Elasticsearch clusters are isolated from each other by default, which ensures data security.

Prerequisites

The two Elasticsearch clusters are of the same Elasticsearch version.
The two Elasticsearch clusters belong to the same Alibaba Cloud account.
The two Elasticsearch clusters are deployed in the same Virtual Private Cloud (VPC).
The two Elasticsearch clusters use the same deployment method.

Configure the connection between two Elasticsearch clusters

Log on to the Alibaba Cloud Elasticsearch console.
In the top navigation bar, select the region where your Alibaba Cloud Elasticsearch cluster resides.
Find the target cluster and click its ID.
In the left-side navigation pane of the cluster details page, click Security.
On the page that appears, click Edit on the right side of Cluster Interconnection.
In the Edit Configuration pane, click Add Cluster.
In the Add Cluster dialog box, select the ID of the remote Elasticsearch cluster that you want to connect.
If one or more Elasticsearch clusters meet the prerequisites, you can select these clusters in the Add Cluster dialog box.
Notice
- RAM users of an Alibaba Cloud account can query all Elasticsearch clusters that belong to the Alibaba Cloud account only when RAM users are granted the ListInstance permission. For more information, see Types of resources that can be authorized.
- After you connect the current Elasticsearch cluster to a remote cluster, you can view the ID of the current cluster on the Cluster Interconnection page of the remote cluster. This indicates that the communication between the two clusters is bidirectional.
Click OK.
After you add a cluster, you can find the added cluster in the Connected Clusters section of the Edit Configuration pane.

Note If you no longer require the added cluster, click Remove to remove the cluster.

After you complete the configuration, you must perform the operations described in Configure the cross-cluster search feature to search for data of the remote Elasticsearch cluster in the current Elasticsearch cluster.

Configure the cross-cluster search feature

Log on to the Kibana console of the remote Elasticsearch cluster.
For more information, see Log on to the Kibana console.

Create an index, add a document to the index, and insert data into the document in the remote Elasticsearch cluster.

Create an index

PUT /twitter
{
    "settings" : {
        "index" : {
            "number_of_shards" : 3, 
            "number_of_replicas" : 2 
        }
    }
}

Create a document and insert data

POST twitter/doc/
{
    "user" : "kimchy",
    "post_date" : "2009-11-15T14:12:12",
    "message" : "trying out Elasticsearch"
}

Note The index and document are used to test the cross-cluster search feature.

Log on to the Kibana console of the current Elasticsearch cluster.
For more information, see Log on to the Kibana console.
Use one of the following methods to configure the cross-cluster search feature in the current Elasticsearch cluster.
The following methods use an Elasticsearch V6.7 cluster as an example. The methods that are used to configure the cross-cluster search in other Elasticsearch versions are similar. For more information, see Cross-cluster search in open-source Elasticsearch 7.X, Cross-cluster search in open-source Elasticsearch 6.3, and Cross-cluster search in open-source Elasticsearch 5.5.
- Method 1: Use the internal endpoint of the remote Elasticsearch cluster
```
PUT _cluster/settings
{
  "persistent": {
    "cluster": {
      "remote": {
        "cluster_one": {
          "seeds": [
            "es-cn-o4xxxxxxxxxxxx4f1.elasticsearch.aliyuncs.com:9300"
          ]
        }
      }
    }
  }
}
```
- Method 2: Use the IP addresses of the nodes in the remote Elasticsearch cluster
```
PUT _cluster/settings
{
  "persistent": {
    "cluster": {
      "remote": {
        "cluster_one": {
          "seeds": [
            "10.8.xx.xx:9300",
            "10.8.xx.xx:9300",
            "10.8.xx.xx:9300"
          ]
        }
      }
    }
  }
}
```
Notice
- If the Elasticsearch cluster is deployed in a single zone, you can use both Method 1 and Method 2. If the Elasticsearch cluster is deployed across zones, you can use only Method 2. Multiple remote Elasticsearch clusters can be connected to the current Elasticsearch cluster.
- You can query the index data of the remote Elasticsearch cluster in the current Elasticsearch cluster. This only applies if you have configured the domain name or node IP addresses of the remote Elasticsearch cluster in the current Elasticsearch cluster for cross-cluster search. You cannot run similar commands in the remote Elasticsearch cluster to search for data of the current Elasticsearch cluster. To search for data of the current Elasticsearch cluster in the remote Elasticsearch cluster, you must add the domain name or node IP addresses of the current cluster in the remote cluster.

Run the following command to check whether the cross-cluster search feature is successfully configured:

POST /cluster_one:twitter/doc/_search
{
  "query": {
    "match_all": {}
  }
}

If the cross-cluster search feature is successfully configured, the following result is returned:

{
  "took" : 78,
  "timed_out" : false,
  "_shards" : {
    "total" : 3,
    "successful" : 3,
    "skipped" : 0,
    "failed" : 0
  },
  "_clusters" : {
    "total" : 1,
    "successful" : 1,
    "skipped" : 0
  },
  "hits" : {
    "total" : 1,
    "max_score" : 1.0,
    "hits" : [
      {
        "_index" : "cluster_one:twitter",
        "_type" : "doc",
        "_id" : "qudxxxxxxxxxx_7ie6J",
        "_score" : 1.0,
        "_source" : {
          "user" : "kimchy",
          "post_date" : "2009-11-15T14:12:12",
          "message" : "trying out Elasticsearch"
        }
      }
    ]
  }
}