...
# yum install epel-release -y
# yum update -y
# yum install vim tmux htop -y
- Set up passwordless SSH between our nodes:
...
# echo -e "elasticsearch - memlock unlimited\nstorm - nproc 257597" >> /etc/security/limits.conf
...
- Adjust limits to secure level ([link](https://docs.hortonworks.com/HDPDocuments/HDP2/HDP-2.3.0/bk_installing_manually_book/content/ref-729d1fb0-6d1b-459f-a18a-b5eba4540ab5.1.html)):
...
# ulimit -n 32768
# ulimit -u 65536
# echo -e "* - nofile 32768\n* - nproc 65536" >> /etc/security/limits.conf
``` -
- Disable IPv6, leaving it enabled may force service to bind to IPv6 addresses only and thus resulting in inability to connect to it ([source link](https://wiki.centos.org/FAQ/CentOS6#head-d47139912868bcb9d754441ecb6a8a10d41781df)):
Disable for the running system:
...
# sysctl -w net.ipv6.conf.all.disable_ipv6=1
# sysctl -w net.ipv6.conf.default.disable_ipv6=1
or
# echo 1 > /proc/sys/net/ipv6/conf/all/disable_ipv6
# echo 1 > /proc/sys/net/ipv6/conf/default/disable_ipv6
...
To survive a reboot
...
, you need to add "net.ipv6.conf.all.disable_ipv6 = 1
...
" and "net.ipv6.conf.default.disable_ipv6 = 1
...
" to "/etc/sysctl.conf
...
":
# echo -e "\n# Disable IPv6\nnet.ipv6.conf.all.disable_ipv6 = 1\nnet.ipv6.conf.default.disable_ipv6 = 1" >> /etc/sysctl.conf
...
- Disable Transparent Hugepage. Add "transparent_hugepage=never" to the end of the kernel line in /etc/default/grub and reboot. (Ambari demands it, do we need to comply?):
```
Change the line:
GRUB_CMDLINE_LINUX="crashkernel=auto rd.lvm.lv=cl/root rd.lvm.lv=cl/swap rhgb quiet"
To:
GRUB_CMDLINE_LINUX="crashkernel=auto rd.lvm.lv=cl/root rd.lvm.lv=cl/swap rhgb quiet
transparent_hugepage=never"
Afterwards, run:
# grub2-mkconfig -o /boot/grub2/grub.cfg
```
After reboot check that changes were applied (make sure that word "never" is selected in square-brackets):
```
# cat /sys/kernel/mm/transparent_hugepage/enabled
always madvise [never]
```
...