Photo by Marten Newhall on Unsplash

Elasticsearch Architecture

It is a distributed search engine based on the Lucene library. It supports quasi-real-time data retrieval NRT (near real-time), processing structured and unstructured data, and providing multitenant-capable full-text search engine capabilities with an HTTP web interface and schema-free JSON documents.

Geek Culture
Published in
11 min readDec 23, 2022

Please support me if you feel that I contribute value to you!

If If you feel my articles are valuable to you, please become my referred members to support me. It can bring some income for me.

What is Elasticsearch

  • It is a real-time distributed storage, searches, and analysis engine
  1. Real-time
  2. Distributed storage
  3. Search
  4. Analysis
  • Most of the data searched from Elasticsearch can be filtered out according to the score as long as the high score is returned to the user
  • Hence, relevant results can be found even with less accurate keywords

The Concept

Image Credit: Devopsideas
  1. Near real-time (NRT)
  • It is a slight delay (typically 1 second) from indexing a document until it is searchable

2. Node

  • It is an instance of a server that can run independently.
  • It is identified by a unique name. It determines which servers in the network correspond to which nodes in the Elasticsearch cluster
  • The unique name is important when you install multiple nodes in the same server although it is not recommended.
  • A node is also a service unit that makes up a cluster.
  • Its function is to store data and have indexing and searching capabilities.

Server: number of nodes = 1:N