Repository

A few specific Elasticsearch security points below.

  • XPack is mandatory, all traffic will be encrypted and password protected.

  • Each Elasticsearch server needs to communicate with each other. Firewall ports will need to be open for 9300 (the default transport port).

  • Kibana needs to communicate with the Elasticsearch nodes that are processing Kibana requests.

  • The agents and web server (gateway) need to access the Elasticsearch servers as described in the firewall section. This will be over port 9200.

Review the full Elasticsearch comprehensive security guide.