Updating ELK Stack for LME

If you find you need to update the ELK (Elastic, Logstash, Kibana)  Stack for LME you have come to the right place.

At time of writing had just update to 8.15.0 due to Critical Vulnerability with Kibana..  Important point to note, for this all to hang together all 3 components of the ELK stack need to be on the same version

Step 1 identify current version you are running

Step 2 Edit the Docker compose file and Pull the images

Edit the docker compose file, in the case of LME, it can be found at  /opt/lme/Chapter 3 Files/docker-compose-stack-live.yml

Copy of this file is attached to this artickle and can be accessed here docker-compose-stack.yml

You need to edit the 3 lines that specify the image

the image name needs to be the same name as the image you have downloaded in previous step

once updated and saved run the following command

 sudo docker compose -f /opt/lme/Chapter\ 3\ Files/docker-compose-stack-live.yml pull

Step 3 Update the docker service with the image

sudo docker service ls - will display the services and importantly names & versions running in docker

sudo docker service update --image docker.elastic.co/elasticsearch/elasticsearch:8.15.0 lme_elasticsearch

where docker.elastic.co/elasticsearch/elasticsearch:8.15.0 is the new image and lme_elasticsearch is the service name 

you need to do this for all 3 services 

• lme_elasticsearch 
  • sudo docker service update --image docker.elastic.co/elasticsearch/elasticsearch:8.15.0 lme_elasticsearch
• lme_kibana
  • sudo docker service update --image docker.elastic.co/kibana/kibana:8.15.0 lme_kibana
    
• lme_logstash
  • sudo docker service update --image docker.elastic.co/logstash/logstash:8.15.0 lme_logstash