Configuring NGINX Amplify Agent

F5 NGINX Amplify Agent keeps its configuration in /etc/amplify-agent/agent.conf. The NGINX Amplify Agent configuration is a text-based file.

Overriding the Effective User ID

NGINX Amplify Agent will drop root privileges on startup. By default, it will then use the user ID of the user nginx to set its effective user ID. The package install procedure will add the nginx user automatically unless it’s already found in the system. If the user directive appears in the NGINX configuration, NGINX Amplify Agent will pick up the user specified in the NGINX config for its effective user ID (e.g. www-data).

NGINX Amplify Agent and the running NGINX instances need to use the same user ID for NGINX Amplify Agent to collect all NGINX metrics properly.

If you would like to manually specify the user ID that NGINX Amplify Agent should use for its effective user ID, there’s a specialized section in /etc/amplify-agent/agent.conf for that:

[nginx]
user =
configfile = /etc/nginx/nginx.conf

The first option allows to explicitly set the real user ID, which NGINX Amplify Agent should pick for its effective user ID. If the user directive has a non-empty parameter, the NGINX Amplify Agent startup script will use it to look up the real user ID.

The second option explicitly tells NGINX Amplify Agent where to look for an NGINX configuration file suitable for detecting the real user ID, /etc/nginx/nginx.conf by default.

Changing the API Key

When you install NGINX Amplify Agent for the first time using the procedure above, your API key is written to the agent.conf file automatically. If you ever need to change the API key, please edit the following section in agent.conf accordingly:

[credentials]
api_key = YOUR_API_KEY

Changing the Hostname and UUID

To create unique objects for monitoring, NGINX Amplify Agent must be able to extract a valid hostname from the system. The hostname is also utilized as one of the components for generating a unique identifier. Essentially, the hostname and the UUID unambiguously identify a particular instance of NGINX Amplify Agent to the Amplify backend. If the hostname or the UUID are changed, NGINX Amplify Agent and the backend will register a new object for monitoring.

When first generated, the UUID is written to agent.conf. Typically this happens automatically when NGINX Amplify Agent starts and successfully detects the hostname for the first time. Normally you shouldn’t change the UUID in agent.conf.

NGINX Amplify Agent will try its best to determine the correct hostname. If it fails to determine the hostname, you can set the hostname manually in the agent.conf file. Check for the following section, and put the desired hostname in here:

[credentials]
..
hostname = myhostname1

NGINX Amplify Agent won’t start unless a valid hostname is defined. The following aren’t valid hostnames:

  • localhost
  • localhost.localdomain
  • localhost6.localdomain6
  • ip6-localhost
Note:
You can also use the above method to replace the system’s hostname with an arbitrary alias. Remember that if you redefine the hostname for a live object, the existing object will be marked as failed in the web interface. Redefining the hostname in NGINX Amplify Agent’s configuration creates a new UUID and a new system for monitoring.

Alternatively, you can define an “alias” for the host in the UI (see the Graphs section).

Configuring the URL for stub_status or Status API

When NGINX Amplify Agent finds a running NGINX instance, it automatically detects the stub_status or the NGINX Plus API module locations from the NGINX configuration.

To override the stub_status URI/URL, use the stub_status configuration option.

[nginx]
..
stub_status = http://127.0.0.1/nginx_status

To override the URI detection of the status API, use the plus_status option.

[nginx]
..
plus_status = /status
Note:
If only the URI part is specified with the options above, NGINX Amplify Agent will use http://127.0.0.1 to construct the full URL to access either the stub_status or the NGINX Plus status API metrics.

Configuring the Path to the NGINX Configuration File

NGINX Amplify Agent detects the NGINX configuration file automatically. You don’t need to explicitly point NGINX Amplify Agent to the NGINX conf file.

If NGINX Amplify Agent cannot find the NGINX configuration, use the following option in /etc/amplify-agent/agent.conf`:

[nginx]
configfile = /etc/nginx/nginx.conf
Note:
It is better to avoid using this option and only add it as a workaround. We’d appreciate it if you took some time to fill out a support ticket in case you had to manually add the path to the NGINX config file.

Configuring Host Tags

You can define arbitrary tags on a “per-host” basis. Tags can be configured in the UI (see the Graphs documentation), or set in the /etc/amplify-agent.conf file:

[tags]
tags = foo,bar,foo:bar

You can use tags to build custom graphs, configure alerts, and filter the systems on the Graphs page.

Configuring Syslog

NGINX Amplify Agent can collect the NGINX log files via syslog. This could be useful when you don’t keep the NGINX logs on disk or when monitoring a container environment such as Docker with NGINX Amplify.

To configure NGINX Amplify Agent for syslog, add the following to the /etc/amplify-agent/agent.conf file:

[listeners]
keys = syslog-default

[listener_syslog-default]
address = 127.0.0.1:12000

Restart NGINX Amplify Agent to have it reload the configuration and start listening on the specified IP address and port:

service amplify-agent restart

Make sure to add the syslog settings to your NGINX configuration as well.

Excluding Certain NGINX Log Files

By default, NGINX Amplify Agent will try to find and watch all the access.log files described in the NGINX configuration. If there are multiple log files where the same request is logged, the metrics may get counted more than once.

To exclude specific NGINX log files from the metric collection, add an exclusion to the /etc/amplify-agent/agent.conf as in the following example:

[nginx]
exclude_logs=/var/log/nginx/app1/*,access-app1-*.log,sender1-*.log

Setting Up a Proxy

If your system is in a DMZ environment without direct access to the Internet, the only way for NGINX Amplify Agent to report collected metrics to Amplify is through a proxy.

NGINX Amplify Agent will use the usual environment variables common on Linux systems (e.g. https_proxy or HTTP_PROXY). However, you can also define an HTTPS proxy manually in agent.conf file, as in the following example:

[proxies]
https = https://10.20.30.40:3030
..

Agent Logfile

NGINX Amplify Agent maintains its log file in /var/log/amplify-agent/agent.log

Upon installation, NGINX Amplify Agent’s log rotation schedule is added to /etc/logrotate.d/amplify-agent.

The default level of logging for NGINX Amplify Agent is INFO. If you ever need to debug NGINX Amplify Agent, change the level to DEBUG as described below. The log file size can grow fast when using the DEBUG level. After you change the log level, please restart NGINX Amplify Agent.

[logger_agent-default]
level = DEBUG
..

[handler_agent-default]
class = logging.handlers.WatchedFileHandler
level = DEBUG
..
Last modified August 22, 2024