This tutorial shows you how to deploy an Elasticsearch vector database cluster on Google Kubernetes Engine (GKE).
Vector databases are data stores specifically designed to manage and search through large collections of high-dimensional vectors. These vectors represent data like text, images, audio, video or any data that can be numerically encoded. Unlike relational databases that rely on exact matches, vector databases specialize in finding similar items or identifying patterns within massive datasets.
Elasticsearch is a vector database that combines search and analytics functionalities. It comes with an open REST API for managing your cluster, and supports structured queries, full-text queries, and complex queries. Elasticsearch lets you perform phrase, similarity, and prefix searches, with autocomplete suggestions.
This tutorial is intended for cloud platform administrators and architects , ML engineers , and MLOps (DevOps) professionals interested in deploying Elasticsearch database clusters on GKE.
Benefits
Elasticsearch offers the following benefits:
- Wide range of libraries for various programming languages and open API to integrate with other services.
- Horizontal scaling, and support for sharding and replication that simplifies scaling and high availability.
- Multi-node cluster balancing for optimal resource utilization.
- Container and Kubernetes support for seamless integration into modern cloud-native environments.
Objectives
In this tutorial, you learn how to:
- Plan and deploy GKE infrastructure for Elasticsearch.
- Deploy and configure Elasticsearch in a GKE cluster.
- Deploy the StatefulHA operator to ensure Elasticsearch high availability.
- Run a notebook to generate and store example vector embeddings within your database, and perform vector-based search queries.
- Collect and visualize metrics on a dashboard.
Deployment architecture
In this tutorial, you deploy a highly available regional GKE cluster for Elasticsearch, with multiple Kubernetes nodes spread across several availability zones. This setup helps ensure fault tolerance, scalability, and geographic redundancy. It allows for rolling updates and maintenance while providing SLAs for uptime and availability. For more information, see Regional clusters .
When a node becomes unreachable, a Pod on that node is not rescheduled immediately. With Pods using a StatefulSet, it can take more than eight minutes for application Pods to be deleted and rescheduled to new nodes.
To address this issue, the StatefulHA operator does the following:
- Solves rescheduling lag, handles failover settings and shortens recovery time by using
.forceDeleteStrategy:AfterNodeUnreachablesettings. - Ensures that the StatefulSet application is using RePD.
- Extends GKE with a custom HighAvailabilityApplication resource that's deployed in the same namespace as Elasticsearch. This enables the StatefulHA operator to monitor and respond to failover events.
The following diagram shows an Elasticsearch cluster running on multiple nodes and zones in a GKE cluster:
Costs
In this document, you use the following billable components of Google Cloud:
To generate a cost estimate based on your projected usage, use the pricing calculator .
When you finish the tasks that are described in this document, you can avoid continued billing by deleting the resources that you created. For more information, see Clean up .
Elasticsearch usage is free under the Server Side Public License (SSPL).
Before you begin
In this tutorial, you use Cloud Shell to run commands. Cloud Shell is a shell environment for managing resources hosted on Google Cloud. It comes preinstalled with the Google Cloud CLI , kubectl , Helm and Terraform command-line tools. If you don't use Cloud Shell, you must install the Google Cloud CLI.
- Sign in to your Google Cloud account. If you're new to Google Cloud, create an account to evaluate how our products perform in real-world scenarios. New customers also get $300 in free credits to run, test, and deploy workloads.
-
Install the Google Cloud CLI.
-
If you're using an external identity provider (IdP), you must first sign in to the gcloud CLI with your federated identity .
-
To initialize the gcloud CLI, run the following command:
gcloud init
-
Create or select a Google Cloud project .
Roles required to select or create a project
- Select a project : Selecting a project doesn't require a specific IAM role—you can select any project that you've been granted a role on.
- Create a project
: To create a project, you need the Project Creator role
(
roles/resourcemanager.projectCreator), which contains theresourcemanager.projects.createpermission. Learn how to grant roles .
-
Create a Google Cloud project:
gcloud projects create PROJECT_IDReplace
PROJECT_IDwith a name for the Google Cloud project you are creating. -
Select the Google Cloud project that you created:
gcloud config set project PROJECT_IDReplace
PROJECT_IDwith your Google Cloud project name.
-
Verify that billing is enabled for your Google Cloud project .
-
Enable the Cloud Resource Manager, Compute Engine, GKE, IAM Service Account Credentials, and Backup for GKE APIs:
Roles required to enable APIs
To enable APIs, you need the Service Usage Admin IAM role (
roles/serviceusage.serviceUsageAdmin), which contains theserviceusage.services.enablepermission. Learn how to grant roles .gcloud services enable cloudresourcemanager.googleapis.com
compute.googleapis.com container.googleapis.com iamcredentials.googleapis.com gkebackup.googleapis.com -
Install the Google Cloud CLI.
-
If you're using an external identity provider (IdP), you must first sign in to the gcloud CLI with your federated identity .
-
To initialize the gcloud CLI, run the following command:
gcloud init
-
Create or select a Google Cloud project .
Roles required to select or create a project
- Select a project : Selecting a project doesn't require a specific IAM role—you can select any project that you've been granted a role on.
- Create a project
: To create a project, you need the Project Creator role
(
roles/resourcemanager.projectCreator), which contains theresourcemanager.projects.createpermission. Learn how to grant roles .
-
Create a Google Cloud project:
gcloud projects create PROJECT_IDReplace
PROJECT_IDwith a name for the Google Cloud project you are creating. -
Select the Google Cloud project that you created:
gcloud config set project PROJECT_IDReplace
PROJECT_IDwith your Google Cloud project name.
-
Verify that billing is enabled for your Google Cloud project .
-
Enable the Cloud Resource Manager, Compute Engine, GKE, IAM Service Account Credentials, and Backup for GKE APIs:
Roles required to enable APIs
To enable APIs, you need the Service Usage Admin IAM role (
roles/serviceusage.serviceUsageAdmin), which contains theserviceusage.services.enablepermission. Learn how to grant roles .gcloud services enable cloudresourcemanager.googleapis.com
compute.googleapis.com container.googleapis.com iamcredentials.googleapis.com gkebackup.googleapis.com -
Grant roles to your user account. Run the following command once for each of the following IAM roles:
roles/storage.objectViewer, roles/container.admin, roles/iam.serviceAccountAdmin, roles/compute.admin, roles/gkebackup.admin, roles/monitoring.viewergcloud projects add-iam-policy-binding PROJECT_ID --member = "user: USER_IDENTIFIER " --role = ROLE
Replace the following:
-
PROJECT_ID: Your project ID. -
USER_IDENTIFIER: The identifier for your user account. For example,myemail@example.com. -
ROLE: The IAM role that you grant to your user account.
-
Set up your environment
To set up your environment with Cloud Shell, follow these steps:
-
Set environment variables for your project, region, and a Kubernetes cluster resource prefix:
export PROJECT_ID = PROJECT_ID export KUBERNETES_CLUSTER_PREFIX = elasticsearch export REGION = us-central1- Replace
PROJECT_IDwith your Google Cloud project ID.
This tutorial uses
us-central1region to create your deployment resources. - Replace
-
Check the version of Helm:
helm versionUpdate the version if it's older than 3.13:
curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash -
Clone the sample code repository from GitHub:
git clone https://github.com/GoogleCloudPlatform/kubernetes-engine-samples -
Navigate to the
elasticsearchdirectory to start creating deployment resources:cd kubernetes-engine-samples/databases/elasticsearch
Create your cluster infrastructure
In this section, you run a Terraform script to create a private, highly-available, regional GKE cluster to deploy your Elasticsearch database.
You can choose to deploy Elasticsearch using a Standard or Autopilot cluster . Each has its own advantages and different pricing models.
Autopilot
The following diagram shows an Autopilot GKE cluster deployed in the project.
To deploy the cluster infrastructure, run the following commands in the Cloud Shell:
export
GOOGLE_OAUTH_ACCESS_TOKEN
=
$(
gcloud
auth
print-access-token )
terraform
-chdir =
terraform/gke-autopilot
init
terraform
-chdir =
terraform/gke-autopilot
apply
\
-var
project_id
=
${
PROJECT_ID
}
\
-var
region
=
${
REGION
}
\
-var
cluster_prefix
=
${
KUBERNETES_CLUSTER_PREFIX
}
GKE replaces the following variables at runtime:
-
GOOGLE_OAUTH_ACCESS_TOKENuses thegcloud auth print-access-tokencommand to retrieve an access token that authenticates interactions with various Google Cloud APIs -
PROJECT_ID,REGION, andKUBERNETES_CLUSTER_PREFIXare the environment variables defined in the Set up your environment section and assigned to the new relevant variables for the Autopilot cluster you are creating.
When prompted, type yes
.
The output is similar to the following:
...
Apply complete! Resources: 9 added, 0 changed, 0 destroyed.
Outputs:
kubectl_connection_command = "gcloud container clusters get-credentials elasticsearch-cluster --region us-central1"
Terraform creates the following resources:
- A custom VPC network and private subnet for the Kubernetes nodes.
- A Cloud Router to access the internet through Network Address Translation (NAT).
- A private GKE cluster in the
us-central1region. - A
ServiceAccountwith logging and monitoring permissions for the cluster. - Google Cloud Managed Service for Prometheus configuration for cluster monitoring and alerting.
Standard
The following diagram shows a Standard private regional GKE cluster deployed across three different zones.
To deploy the cluster infrastructure, run the following commands in the Cloud Shell:
export
GOOGLE_OAUTH_ACCESS_TOKEN
=
$(
gcloud
auth
print-access-token )
terraform
-chdir =
terraform/gke-standard
init
terraform
-chdir =
terraform/gke-standard
apply
\
-var
project_id
=
${
PROJECT_ID
}
\
-var
region
=
${
REGION
}
\
-var
cluster_prefix
=
${
KUBERNETES_CLUSTER_PREFIX
}
GKE replaces the following variables at runtime:
-
GOOGLE_OAUTH_ACCESS_TOKENuses thegcloud auth print-access-tokencommand to retrieve an access token that authenticates interactions with various Google Cloud APIs. -
PROJECT_ID,REGION, andKUBERNETES_CLUSTER_PREFIXare the environment variables defined in Set up your environment section and assigned to the new relevant variables for the Standard cluster that you are creating.
When prompted, type yes
. It might take several minutes for these commands to
complete and for the cluster to show a ready status.
The output is similar to the following:
...
Apply complete! Resources: 10 added, 0 changed, 0 destroyed.
Outputs:
kubectl_connection_command = "gcloud container clusters get-credentials elasticsearch-cluster --region us-central1"
Terraform creates the following resources:
- A custom VPC network and private subnet for the Kubernetes nodes.
- A Cloud Router to access the internet through Network Address Translation (NAT).
- A private GKE cluster in the
us-central1region with autoscaling enabled (one to two nodes per zone). - A
ServiceAccountwith logging and monitoring permissions for the cluster. - Google Cloud Managed Service for Prometheus configuration for cluster monitoring and alerting.
Connect to the cluster
Configure kubectl
to fetch credentials and communicate with your new GKE cluster:
gcloud
container
clusters
get-credentials
\
${
KUBERNETES_CLUSTER_PREFIX
}
-cluster
--location
${
REGION
}
Deploy the Elasticsearch database and StatefulHA operator
In this section, you deploy the Elasticsearch database (in cluster mode) and StatefulHA operator to your GKE cluster using the ECK Operator Helm Chart .
The Deployment creates a GKE cluster with the following configuration:
- Three replicas of the Elasticsearch nodes.
- DaemonSet to change virtual memory settings, for optimal Elasticsearch performance. A DaemonSet is a Kubernetes controller that ensures that a copy of a Pod runs on each node in a cluster.
- Configuration of NodeAffinity and PodAntiAffinity to ensure proper distribution across Kubernetes nodes, optimizing the use of node pools and maximizing availability across different zones.
- A Stateful HA operator that manages failover processes and ensures high availability. A StatefulSet is a Kubernetes controller that maintains a persistent unique identity for each of its Pods.
- For authentication, the database creates Kubernetes Secrets with authentication credentials, passwords, and certificates.
To use the Helm chart to deploy the Elasticsearch database, follow these steps:
-
Enable the StatefulHA add-on :
Autopilot
GKE automatically enables the
StatefulHAadd-on at cluster creation.Standard
Run the following command:
gcloud container clusters update ${ KUBERNETES_CLUSTER_PREFIX } -cluster \ --project = ${ PROJECT_ID } \ --location = ${ REGION } \ --update-addons = StatefulHA = ENABLEDIt might take 15 minutes for this command to complete and for the cluster to show a ready status.
-
Create an Elastic Cloud on Kubernetes (ECK) Custom Resource Definition (CRD):
kubectl apply -f https://download.elastic.co/downloads/eck/2.11.1/crds.yaml -
Deploy the ECK operator:
kubectl apply -f https://download.elastic.co/downloads/eck/2.11.1/operator.yaml -
Create the namespace
elasticfor the database:kubectl create ns elastic -
Install the
HighAvailabilityApplication(HAA) resource, which defines failover rules for Elasticsearch..kubectl apply -n elastic -f manifests/01-regional-pd/ha-app.yamlThe
ha-app.yamlmanifest describes theHighAvailabilityApplicationresource: -
Apply the manifest to create a regional persistent SSD disk
StorageClass:kubectl apply -n elastic -f manifests/01-regional-pd/regional-pd.yamlThe
regional-pd.yamlmanifest describes the persistent SSD diskStorageClass: -
Deploy the DaemonSet resource to set virtual memory in each node:
kubectl apply -n elastic -f manifests/02-elasticsearch/mmap-count.yamlThe
mmap-count.yamlmanifest describes theDaemonSet: -
Apply the manifest to deploy Elasticsearch cluster:
kubectl apply -n elastic -f manifests/02-elasticsearch/elasticsearch.yamlThe
elasticsearch.yamlmanifest describes the Deployment:Wait for a few minutes for the Elasticsearch cluster to fully start.
-
Check the deployment status:
kubectl get elasticsearch -n elastic --watchThe output is similar to following, if the
elasticsearchdatabase is successfully deployed:NAME HEALTH NODES VERSION PHASE AGE elasticsearch-ha green 3 8.11.4 Ready 2m30sWait for
HEALTHto show asgreen. Press Ctrl+C to exit the command if needed. -
Deploy an internal load balancer to access your Elasticsearch database that's running in the same VPC as your GKE cluster:
kubectl apply -n elastic -f manifests/02-elasticsearch/ilb.yamlThe
ilb.yamlmanifest describes theLoadBalancerService: -
To check if the failover rules are applied, describe the resource and confirm
Status: Message: Application is protected.kubectl describe highavailabilityapplication elasticsearch-ha-es-main -n elasticThe output is similar to following
Status: Conditions: Last Transition Time: 2024-02-01T13:27:50Z Message: Application is protected Observed Generation: 1 Reason: ApplicationProtected Status: True Type: Protected Events: <none> -
Once GKE starts the workloads, verify that GKE has created the Elasticsearch workloads:
kubectl get pod,svc,statefulset,pdb,secret,daemonset -n elasticThe output is similar to the following:
NAME READY STATUS RESTARTS AGE pod/elasticsearch-ha-es-main-0 2/2 Running 0 7m16s pod/elasticsearch-ha-es-main-1 2/2 Running 0 7m16s pod/elasticsearch-ha-es-main-2 2/2 Running 0 7m16s pod/max-map-count-setter-28wt9 1/1 Running 0 7m27s pod/max-map-count-setter-cflsw 1/1 Running 0 7m27s pod/max-map-count-setter-gzq9k 1/1 Running 0 7m27s NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE service/elasticsearch-ha-es-http ClusterIP 10.52.8.28 <none> 9200/TCP 7m18s service/elasticsearch-ha-es-internal-http ClusterIP 10.52.3.48 <none> 9200/TCP 7m18s service/elasticsearch-ha-es-main ClusterIP None <none> 9200/TCP 7m16s service/elasticsearch-ha-es-transport ClusterIP None <none> 9300/TCP 7m18s NAME READY AGE statefulset.apps/elasticsearch-ha-es-main 3/3 7m16s NAME MIN AVAILABLE MAX UNAVAILABLE ALLOWED DISRUPTIONS AGE poddisruptionbudget.policy/elasticsearch-ha-es-default 2 N/A 1 7m16s NAME TYPE DATA AGE secret/elasticsearch-ha-es-elastic-user Opaque 1 7m18s secret/elasticsearch-ha-es-file-settings Opaque 1 7m16s secret/elasticsearch-ha-es-http-ca-internal Opaque 2 7m17s secret/elasticsearch-ha-es-http-certs-internal Opaque 3 7m17s secret/elasticsearch-ha-es-http-certs-public Opaque 2 7m17s secret/elasticsearch-ha-es-internal-users Opaque 4 7m18s secret/elasticsearch-ha-es-main-es-config Opaque 1 7m16s secret/elasticsearch-ha-es-main-es-transport-certs Opaque 7 7m16s secret/elasticsearch-ha-es-remote-ca Opaque 1 7m16s secret/elasticsearch-ha-es-transport-ca-internal Opaque 2 7m16s secret/elasticsearch-ha-es-transport-certs-public Opaque 1 7m16s secret/elasticsearch-ha-es-xpack-file-realm Opaque 4 7m18s NAME DESIRED CURRENT READY UP-TO-DATE AVAILABLE NODE SELECTOR AGE daemonset.apps/max-map-count-setter 6 6 6 6 6 <none> 13m
The following GKE resources are created for the Elasticsearch cluster:
- The Elasticsearch
StatefulSetthat controls three Pod replicas. - A DaemonSet to configure virtual memory settings.
- Services to connect to Elasticsearch.
- Secrets with superuser credentials and service-related certificates.
- Stateful HA operator Pod and
HighlyAvailableApplicationresource, actively monitoring the Elasticsearch application.
Run queries with Vertex AI Colab Enterprise notebook
This section explains how to generate embeddings into Elasticsearch documents and perform semantic search queries using the official Elasticsearch Python client in Colab Enterprise notebook. A document in Elasticsearch is composed of various fields, each paired with its corresponding value.
For more information about Vertex AI Colab Enterprise, see Colab Enterprise documentation .
To effectively utilize Elasticsearch, we recommend that you structure your data into these documents, which are then indexed for search purposes.
In this example, you use a dataset from a CSV file that contains a list of books in different genres. Elasticsearch serves as a search engine, and the Pod you create serves as a client querying the Elasticsearch database.
You can use a dedicated runtime template to deploy to the elasticsearch-vpc
VPC
(Virtual Private Cloud), so the
notebook can communicate with resources in your GKE cluster.
Create a runtime template
To create a Colab Enterprise runtime template:
-
In the Google Cloud console, go to the Colab Enterprise Runtime Templatespage and make sure your project is selected:
-
Click add_box New Template. The Create new runtime templatepage appears.
-
In the Runtime basicssection:
- In the Display namefield, enter
elastic-connect. - In the Regiondrop-down list, select
us-central1. It's the same region as your GKE cluster.
- In the Display namefield, enter
-
In the Configure computesection:
- In the Machine typedrop-down list, select
e2-standard-2. - In the Disk sizefield, enter
30.
- In the Machine typedrop-down list, select
-
In the Networking and securitysection:
- In the Networkdrop-down list, select the network where your GKE cluster resides.
- In the Subnetworkdrop-down list, select a corresponding subnetwork.
- Clear the Enable public internet accesscheckbox.
-
To finish creating the runtime template, click Create. Your runtime template appears in the list on the Runtime templatestab.
Create a runtime
To create a Colab Enterprise runtime:
-
In the runtime templates list for the template you just created, in the Actionscolumn, click more_vert and then click Create runtime. The Create Vertex AI Runtimepane appears.
-
To create a runtime based on your template, click Create.
-
On the Runtimestab that opens, wait for the status to transition to Healthy.
Import the notebook
To import the notebook in Colab Enterprise:
-
Go to the My Notebookstab and click Import. The Import notebookspane appears.
-
In Import source, select URL.
-
Under Notebook URLs, enter the following link:
https://raw.githubusercontent.com/GoogleCloudPlatform/kubernetes-engine-samples/main/databases/elasticsearch/manifests/03-notebook/vector-database.ipynb -
Click Import.
Connect to the runtime and run queries
To connect to the runtime and run queries:
-
In the notebook, next to the Connectbutton, click arrow_drop_down Additional connection options. The Connect to Vertex AI Runtimepane appears.
-
Select Connect to a runtimeand then select Connect to an existing Runtime.
-
Select the runtime that you launched and click Connect.
-
To run the notebook cells, click the Run cellbutton next to each code cell.
Run cellThe notebook contains both code cells and text that describes each code block. Running a code cell executes its commands and displays an output. You can run the cells in order, or run individual cells as needed.
View Prometheus metrics for your cluster
The GKE cluster is configured with Google Cloud Managed Service for Prometheus , which enables collection of metrics in the Prometheus format. This service provides a fully managed solution for monitoring and alerting, allowing for collection, storage, and analysis of metrics from the cluster and its applications.
The following diagram shows how Prometheus collects metrics for your cluster:
The GKE private cluster in the diagram contains the following components:
- Elasticsearch Pods that expose metrics on the path
/and port9114. These metrics are provided by the sidecar container namedmetricsthat contains the elasticsearch_exporter . - Prometheus-based collectors that process the metrics from the Elasticsearch Pod.
- A PodMonitoring resource that sends the metrics to Cloud Monitoring.
The cluster configuration defines a sidecar container with metrics exporter in the Prometheus format:
apiVersion: elasticsearch.k8s.elastic.co/v1
kind: Elasticsearch
metadata:
name: elasticsearch-ha
spec:
...
nodeSets:
- name: main
...
podTemplate:
spec:
containers:
...
- name: metrics
image: quay.io/prometheuscommunity/elasticsearch-exporter:v1.7.0
command:
- /bin/elasticsearch_exporter
- --es.ssl-skip-verify
- --es.uri=https://$(ES_USER):$(ES_PASSWORD)@localhost:9200
...
env:
- name: ES_USER
value: "elastic"
- name: ES_PASSWORD
valueFrom:
secretKeyRef:
name: elasticsearch-ha-es-elastic-user
key: elastic
To export and view the metrics, follow these steps:
-
Create the
PodMonitoringresource to scrape metrics bylabelSelector:kubectl apply -n elastic -f manifests/04-prometheus-metrics/pod-monitoring.yamlThe
pod-monitoring.yamlmanifest describes thePodMonitoringresource:After a few minutes, the built-in dashboard "Elasticsearch Prometheus Overview" displays.
-
To view more data-related graphs, import a custom Cloud Monitoring dashboard with the configurations defined in
dashboard.json:gcloud --project " ${ PROJECT_ID } " monitoring dashboards create --config-from-file monitoring/dashboard.json -
After the command runs successfully, go to the Cloud Monitoring Dashboards :
-
From the list of dashboards, open the
ElasticSearch Overviewdashboard. It might take 1-2 minutes to collect and display metrics.The dashboard shows a count of key metrics:
- Indexes
- Documents and Shards
- Pending operations
- Running nodes with their health statuses
Back up your cluster configuration
The Backup for GKE feature lets you schedule regular backups of your entire GKE cluster configuration, including the deployed workloads and their data.
In this tutorial, you configure a backup plan for your GKE cluster to perform backups of all workloads, including Secrets and Volumes, every day at 3 AM. To ensure efficient storage management, backups older than three days are automatically deleted.
-
Enable the Backup for GKE feature for your cluster:
gcloud container clusters update ${ KUBERNETES_CLUSTER_PREFIX } -cluster \ --project = ${ PROJECT_ID } \ --location = ${ REGION } \ --update-addons = BackupRestore = ENABLED -
Create a backup plan with a daily schedule for all namespaces within the cluster:
gcloud beta container backup-restore backup-plans create ${ KUBERNETES_CLUSTER_PREFIX } -cluster-backup \ --project = ${ PROJECT_ID } \ --location = ${ REGION } \ --cluster = "projects/ ${ PROJECT_ID } /locations/ ${ REGION } /clusters/ ${ KUBERNETES_CLUSTER_PREFIX } -cluster" \ --all-namespaces \ --include-secrets \ --include-volume-data \ --cron-schedule = "0 3 * * *" \ --backup-retain-days = 3The command uses the relevant environment variables at runtime.
The cluster name's format is relative to your project and region as follows:
projects/ PROJECT_ID /locations/ REGION /clusters/ CLUSTER_NAMEWhen prompted, type
y.The output is similar to the following:Create request issued for: [elasticsearch-cluster-backup] Waiting for operation [projects/PROJECT_ID/locations/us-central1/operations/operation-1706528750815-610142ffdc9ac-71be4a05-f61c99fc] to complete...⠹This operation might take a few minutes to complete successfully. After the execution is complete, the output is similar to the following:
Created backup plan [elasticsearch-cluster-backup]. -
You can see your newly created backup plan
elasticsearch-cluster-backuplisted on the Backup for GKE console.
If you want to restore the saved backup configurations, see Restore a backup .
Clean up
To avoid incurring charges to your Google Cloud account for the resources used in this tutorial, either delete the project that contains the resources, or keep the project and delete the individual resources.
Delete the project
The easiest way to avoid billing is to delete the project you created for this tutorial.
Delete a Google Cloud project:
gcloud projects delete PROJECT_ID
If you deleted the project, your clean up is complete. If you didn't delete the project, proceed to delete the individual resources.
Delete individual resources
-
Set environment variables.
export PROJECT_ID = ${ PROJECT_ID } export KUBERNETES_CLUSTER_PREFIX = elasticsearch export REGION = us-central1 -
Run the
terraform destroycommand:export GOOGLE_OAUTH_ACCESS_TOKEN = $( gcloud auth print-access-token ) terraform -chdir = terraform/ FOLDER destroy \ -var project_id = ${ PROJECT_ID } \ -var region = ${ REGION } \ -var cluster_prefix = ${ KUBERNETES_CLUSTER_PREFIX }Replace
FOLDERwith eithergke-autopilotorgke-standard, depending on the type of GKE cluster you created .When prompted, type
yes. -
Find all unattached disks:
export disk_list = $( gcloud compute disks list --filter = "-users:* AND labels.name= ${ KUBERNETES_CLUSTER_PREFIX } -cluster" --format "value[separator=|](name,region)" ) -
Delete the disks:
for i in $disk_list ; do disk_name = $( echo $i | cut -d '|' -f1 ) disk_region = $( echo $i | cut -d '|' -f2 | sed 's|.*/||' ) echo "Deleting $disk_name " gcloud compute disks delete $disk_name --region $disk_region --quiet done -
Delete the GitHub repository:
rm -r ~/kubernetes-engine-samples/
What's next
- Explore Elasticsearch open source software.
- Learn about the best practices for deploying databases on GKE .
- Discover solutions for running data-intensive workloads with GKE .
