Bird
Raised Fist0
Elasticsearchquery~20 mins

Infrastructure monitoring in Elasticsearch - Practice Problems & Coding Challenges

Choose your learning style10 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime

Start learning this pattern below

Jump into concepts and practice - no test required

or
Recommended
Test this pattern10 questions across easy, medium, and hard to know if this pattern is strong
Challenge - 5 Problems
🎖️
Infrastructure Monitoring Master
Get all challenges correct to earn this badge!
Test your skills under time pressure!
💻 Command Output
intermediate
2:00remaining
Elasticsearch cluster health status output
What is the output of the following command when the cluster is fully operational with no issues?
Elasticsearch
curl -X GET "localhost:9200/_cluster/health?pretty"
A
{
  "cluster_name" : "my_cluster",
  "status" : "green",
  "number_of_nodes" : 3,
  "active_primary_shards" : 10
}
B
{
  "cluster_name" : "my_cluster",
  "status" : "red",
  "number_of_nodes" : 3,
  "active_primary_shards" : 10
}
C
{
  "cluster_name" : "my_cluster",
  "status" : "yellow",
  "number_of_nodes" : 3,
  "active_primary_shards" : 10
}
Dcurl: (7) Failed to connect to localhost port 9200: Connection refused
Attempts:
2 left
💡 Hint
The cluster health status 'green' means all primary and replica shards are active.
🧠 Conceptual
intermediate
1:30remaining
Purpose of Elasticsearch node stats API
What is the main purpose of the Elasticsearch /_nodes/stats API in infrastructure monitoring?
ATo create new indices in the cluster.
BTo retrieve detailed statistics about nodes such as CPU, memory, and disk usage.
CTo delete documents from an index.
DTo update cluster settings dynamically.
Attempts:
2 left
💡 Hint
Think about what kind of node information helps monitor resource usage.
Troubleshoot
advanced
2:00remaining
Diagnosing Elasticsearch cluster yellow status
You run curl -X GET "localhost:9200/_cluster/health?pretty" and see the status is 'yellow'. What is the most likely cause?
AThe cluster has lost primary shards and is not functional.
BThe Elasticsearch service is not running on the node.
CThe cluster is fully healthy with no issues.
DSome replica shards are not allocated, but all primary shards are active.
Attempts:
2 left
💡 Hint
Yellow means partial issues, not complete failure.
🔀 Workflow
advanced
2:30remaining
Steps to monitor Elasticsearch disk usage
Which sequence correctly describes the steps to monitor disk usage of Elasticsearch nodes using the API?
A1,3,2,4
B2,1,3,4
C1,2,3,4
D3,1,2,4
Attempts:
2 left
💡 Hint
Think about the logical order: get data, analyze, alert, then review.
Best Practice
expert
3:00remaining
Best practice for alerting on Elasticsearch node failures
Which option describes the best practice for setting up alerts to detect Elasticsearch node failures promptly?
AConfigure alerts on node availability using heartbeat monitoring and cluster health status changes.
BOnly check disk usage once a month and alert if above 90%.
CIgnore node failures if the cluster status is green.
DManually check logs daily without automated alerts.
Attempts:
2 left
💡 Hint
Effective alerting combines availability checks and cluster health monitoring.

Practice

(1/5)
1. What is the primary purpose of infrastructure monitoring in Elasticsearch?
easy
A. To create user accounts and manage permissions
B. To store large amounts of data permanently
C. To watch system health and detect issues early
D. To design the user interface of Kibana dashboards

Solution

  1. Step 1: Understand infrastructure monitoring

    Infrastructure monitoring means watching your systems to keep them healthy and catch problems early.

  2. Step 2: Relate to Elasticsearch context

    Elasticsearch provides APIs to check cluster and node status, which helps monitor system health.

  3. Final Answer:

    To watch system health and detect issues early -> Option C

  4. Quick Check:

    Infrastructure monitoring = watch health early [OK]
Hint: Monitoring means watching system health regularly [OK]
Common Mistakes:
  • Confusing monitoring with data storage
  • Thinking monitoring manages user accounts
  • Mixing monitoring with UI design
2. Which Elasticsearch API command correctly checks the cluster health status?
easy
A. GET /_cluster/health
B. POST /_cluster/status
C. GET /_nodes/stats
D. PUT /_cluster/health

Solution

  1. Step 1: Identify the correct HTTP method and endpoint

    The cluster health API uses GET method and the endpoint is /_cluster/health.

  2. Step 2: Eliminate incorrect options

    POST and PUT are not used for checking health; /_nodes/stats gives node stats, not cluster health.

  3. Final Answer:

    GET /_cluster/health -> Option A

  4. Quick Check:

    Cluster health API = GET /_cluster/health [OK]
Hint: Use GET method with /_cluster/health to check status [OK]
Common Mistakes:
  • Using POST or PUT instead of GET
  • Confusing node stats with cluster health
  • Using wrong endpoint paths
3. What will be the output status field when you run GET /_cluster/health on a healthy Elasticsearch cluster?
medium
A. { \"status\": \"red\" }
B. { \"status\": \"green\" }
C. { \"status\": \"yellow\" }
D. { \"status\": \"blue\" }

Solution

  1. Step 1: Understand cluster health status colors

    Green means all primary and replica shards are active, so cluster is healthy.

  2. Step 2: Match output with healthy cluster

    Healthy cluster returns status as "green" in the JSON response.

  3. Final Answer:

    { "status": "green" } -> Option B

  4. Quick Check:

    Healthy cluster status = green [OK]
Hint: Green status means cluster is fully healthy [OK]
Common Mistakes:
  • Confusing yellow or red as healthy
  • Expecting blue status which does not exist
  • Misreading JSON output format
4. You run GET /_nodes/stats but get a 404 error. What is the most likely cause?
medium
A. The API endpoint is incorrect or misspelled
B. You used POST instead of GET method
C. The cluster is down and unreachable
D. The node stats API requires authentication

Solution

  1. Step 1: Understand 404 error meaning

    404 means the requested URL or endpoint does not exist on the server.

  2. Step 2: Check API endpoint correctness

    If the endpoint is misspelled or wrong, 404 occurs. The correct endpoint is /_nodes/stats.

  3. Final Answer:

    The API endpoint is incorrect or misspelled -> Option A

  4. Quick Check:

    404 error = wrong endpoint [OK]
Hint: 404 means wrong URL or endpoint [OK]
Common Mistakes:
  • Assuming cluster down causes 404 (usually connection error)
  • Confusing 404 with authentication errors
  • Using wrong HTTP method but expecting 404
5. You want to monitor Elasticsearch nodes for CPU and memory usage continuously. Which approach is best?
hard
A. Restart nodes frequently to reset CPU and memory usage
B. Use GET /_cluster/health to check CPU and memory
C. Install Kibana and create dashboards without data collection
D. Run GET /_nodes/stats regularly and parse CPU/memory fields

Solution

  1. Step 1: Identify API for node resource stats

    The /_nodes/stats API provides detailed CPU and memory usage per node.

  2. Step 2: Understand monitoring approach

    Regularly running this API and parsing results allows continuous monitoring of resource usage.

  3. Final Answer:

    Run GET /_nodes/stats regularly and parse CPU/memory fields -> Option D

  4. Quick Check:

    Node stats API for CPU/memory monitoring [OK]
Hint: Use /_nodes/stats API for detailed resource monitoring [OK]
Common Mistakes:
  • Using cluster health API which lacks CPU/memory details
  • Assuming Kibana dashboards work without data
  • Restarting nodes does not monitor usage