Use this README for technical requirements and CLI-based commands and troubleshooting.
For pre-container setup, account prerequisites, and UI-based support, see our article Getting Started with Private Location Monitoring.
Added support for vault credentials
- 1GB RAM (2-4 GB is recommended for the container to successfully run multiple transaction checks)
- 15 GB of free disk space (uncompressed image size is ~2 GB)
- 2 CPU cores
- Write permissions to the machine’s drive
-
Docker v18+
-
Linux Ubuntu 20.04+ / PhotonOS 5.x
a. Please note: Linux kernel 4.x or 5.x required; Windows Hosts (Docker host, WSL, or VirtualBox) are not officially supported.
-
Access to Uptime.com private Docker repository (requested via Support, see article).
-
API Token for each probe server (supplied via Support, see article).
Linux Ubuntu 20.04+
-
Retrieve latest stable image version here.
-
Pull latest image via
docker pull uptimecom/uptime-private-location:latest -
Start the container via
docker run --detach \ --env UPTIME_API_TOKEN="<YOUR_UPTIME_API_TOKEN>" \ --restart unless-stopped \ --shm-size=2048m \ --mount type=volume,dst=/usr/local/nagios/var,src=uptime-nagios-var \ --mount type=volume,dst=/home/uptime/var,src=uptime-var \ --mount type=volume,dst=/home/uptime/logs,src=uptime-logs \ --tmpfs /home/uptime/run:uid=1000,gid=1000 \ --hostname localhost \ uptimecom/uptime-private-location:latest -
If you need to stop and remove the container (e.g. to reset it):
# Find the container's ID docker ps # Stop & remove the container & any related anonymous volumes docker rm -fv <container-id>
PhotonOS 5.x
Vmware provides an official docker image of Photon OS
docker pull photon
sudo docker run --rm -it -v /var/run/docker.sock:/var/run/docker.sock photon:latest
tdnf install -y docker
systemctl start docker
systemctl enable docker
docker run --detach \
--env UPTIME_API_TOKEN="<YOUR_UPTIME_API_TOKEN>" \
--restart unless-stopped \
--shm-size=2048m \
--mount type=volume,dst=/usr/local/nagios/var,src=uptime-nagios-var \
--mount type=volume,dst=/home/uptime/var,src=uptime-var \
--mount type=volume,dst=/home/uptime/logs,src=uptime-logs \
--tmpfs /home/uptime/run:uid=1000,gid=1000 \
--hostname localhost \
uptimecom/uptime-private-location:latest
Please note: Directly following container start, some tasks need time to settle. Some reconfiguration or stalled check detection errors may occur, but these should correct within ~1 hour after container start/restart.
If you're running a Docker version older than 20.03 (check with docker --version),
you'll need to add the following parameter to the docker run command above:
--sysctl net.ipv4.ip_unprivileged_port_start=0
Kubernetes on Azure AKS also requires a similar configuration at this time. Please see the
k8s-sample.yaml file and Kubernetes section below for details.
Private Location Monitoring can also run in Podman, a Docker alternative.
- Podman v4.x.x+
- Linux Ubuntu 20.04+
Installing Podman on Linux Ubuntu 20.04+
Update your system and install Podman:
sudo apt-get update
sudo apt-get -y install podmanYou will be prompted to enter your Docker credentials.
Pull the latest Uptime.com private location image:
podman pull docker.io/uptimecom/uptime-private-location:latestOnce Podman is installed, you can run the Uptime.com private location container with the following script:
podman run --detach \
--env UPTIME_API_TOKEN="<YOUR_UPTIME_API_TOKEN>" \
--restart unless-stopped \
--shm-size=2048m \
--mount type=volume,dst=/usr/local/nagios/var,src=uptime-nagios-var \
--mount type=volume,dst=/home/uptime/var,src=uptime-var \
--mount type=volume,dst=/home/uptime/logs,src=uptime-logs \
--tmpfs /home/uptime/run \
--hostname localhost \
uptimecom/uptime-private-location:latestWhile Private Location Monitoring is not officially supported on Windows, you can run it through WSL 2 on Windows Server 2022. (Note: You will need a dedicated server or a Windows VM server that supports nested virtualization to enable WSL 2 or Hyper-V.)
To run Uptime.com Private Location Monitoring on Windows Server 2022, you need to enable WSL 2 and install a supported Linux distribution (e.g., Ubuntu 20.04):
- Install WSL 2: Open PowerShell as Administrator and run:
wsl --install- Install a Linux distribution: Choose Ubuntu 20.04 LTS:
wsl --install -d Ubuntu-20.04- Set up Docker: Inside the WSL 2 terminal (Ubuntu), follow the instructions to install Docker.
For Windows Server 2019, since WSL 2 is not supported, you can use a Hyper-V Ubuntu VM to run it following the same procedure for Docker.
Use --env for docker run or add as env in kubernetes yaml file
| Name | Default | Description |
|---|---|---|
| UPTIME_TXN_LIMIT_BROWSERS | 3 | The number of Chrome instances to run in this private location. Running more transaction checks will require more instances, and subsequently use more resources (CPU and Memory). A rough maximum for this is 3 Chrome instances per CPU core + 2GB RAM. |
| UPTIME_TXN_MAX_EXEC_TIME | 65000 | The maximum execution time of checks running in this private location. The default is usually sufficient unless you are running Extended Transaction checks whose runtime and timeout can exceed 60 seconds. |
| UPTIME_NAGIOS_SERVICE_CHECK_TIMEOUT | 92000 | The maximum execution time of any check running in this private location. The default is sufficient unless you have increased UPTIME_TXN_MAX_EXEC_TIME , in which case you should set this value slightly larger than that. |
| UPTIME_AVAILABLE_CPU_CORES | auto-detected | Specifies the number of CPU cores available to the Private Location container, auto-detected by default. This value is used for configuring check concurrency and internal status checks. We advise this value to be set accurately when running under Kubernetes or if the Private Location is reporting errors incorrectly (for example, reporting high load when the actual load is reasonable). |
External ports for outbout: 80 and 443.
External Port for inbound: 443 ** Optional: only for connection to Nagios UI **
Internal container pors: 8080, 8443 and 5666.
IMPORTANT! Please note the run command and k8s sample configuration both contain important changes compared to version 3.x and will need to be updated per this document and the corresponding example files.
If you're currently running the 2.x line of Private Locations, there are some significant changes in this version which should be taken in consideration:
-
IMPORTANT! The data format has changed, so you must delete any existing volumes from 2.x and start fresh when running 3.x for the first time.
-
The
https://localhost:8003/statusURL no longer exists in 3.x, as it is not suitable for monitoring whether a Private Location is fully functional. For monitoring, we recommend you use one or more Heartbeat checks on Uptime.com, combined with a HTTP/API/Transaction check running on the private location which hits the Heartbeat URL. It is still possible to run the status script via the CLI as described below. -
The new version runs as UID=1000, rather than UID=0 (
root) that the 2.x line ran as. Please refrain from running it as a different user as it will fail. Ideally it should not be necessary to specify which UID to run as, it will default to the correct user. -
It is no longer necessary or recommended to provide
--security-opt seccomp=./seccomp-config.jsonwhen running this new version. Please ensure you remove this from the startup command. -
Running Virus/Malware checks in a private location is no longer supported. This check does not require any access to internal resources, so there is no benefit from running it from a private location.
To connect to a proxy server, make sure that the proxy is configured in the Docker client as described in the Official Docker Guide.
Once configured, confirm that the container can access internal.uptime.com:443,
credentials.produs.upsentinel.net:443, and also https://sqs.us-east-2.amazonaws.com/.
- Get the PID of a running container via
docker ps - Run
docker stop <PID_OF_THE_RUNNING_CONTAINER>
Please note: Containers running outdated images may experience errors.
- Check for the latest version number at Dockerhub
- Login via
docker login - Run
docker pull uptimecom/uptime-private-location:latest
You can view the logs of the container's startup sequence to help diagnose errors.
- Get the PID of a running container via
docker ps - Run
docker logs -f <PID_OF_THE_RUNNING_CONTAINER>
You can view the application logs inside the container.
- Get the PID of a running container via
docker ps - sudo docker exec -it "container-id" /bin/bash
- Logs are located at /home/uptime/logs/ example command:
tail -f /home/uptime/logs/taskqueue.log
Check the status of a running container in a JSON payload via the CLI.
Note: It is expected that some of these checks may fail upon start/restart, and they should clear within 60 minutes.
-
Get the PID of a running container via
docker ps -
Run
docker exec <PID_OF_THE_RUNNING_CONTAINER> /home/uptime/status.shIf you have
jqinstalled, you can get pretty output as well:docker exec <PID_OF_THE_RUNNING_CONTAINER> /home/uptime/status.sh | jq
- Get the PID of a running container via
docker ps - Run
docker run --rm --volumes-from <RUNNING_CONTAINER_PID> -v $(pwd):/backup ubuntu:latest tar -zcvf /backup/backup.tgz /home/uptime/logs /usr/local/nagios/etc /usr/local/nagios/var - Send the log file tarball to Uptime.com support for analysis.
For further troubleshooting help, see our support article or contact [email protected]
It is possible to run the private location in Kubernetes, however please ensure you allocate sufficient CPU and memory resources to the deployment, otherwise Chrome-based tranaction checks will fail to run.
A sample kubernetes configuration for the private location is available in
k8s-sample.yaml for your reference.