Docker Guard Agent for Linux AMD64

Install Docker Guard Agent 1.0.0 on your server

Docker Guard Agent is a lightweight read only monitoring service for Docker servers. It collects server and container information and exposes it through a secure API port for the Docker Guard mobile app.

Install now Security details

Read only agent

The agent does not execute Docker commands, does not start containers, does not stop containers and does not change server settings.

No SSH exposure

Docker Guard does not require port 22 to be opened to the internet. This is safer than tools that depend on public SSH access.

Secure API access

The mobile app connects to the agent using a dedicated monitoring port and token based authentication.

Installation

Access your Linux server terminal and run the commands below as root or with sudo privileges.

Download the agent package

Use wget to download Docker Guard Agent version 1.0.0.

mkdir -p /tmp/docker-guard-install
cd /tmp/docker-guard-install

wget -O docker-guard-1.0.0-linux-amd64.tar.gz https://projy-ai.nyc3.digitaloceanspaces.com/projects/docker-guard-1.0.0-linux-amd64.tar.gz

Extract the package

Extract the downloaded file and check the files inside the folder.

tar -xzf docker-guard-1.0.0-linux-amd64.tar.gz

ls -la

Run the installer

Make the installer executable and start the installation.

chmod +x install.sh
chmod +x docker-guard

sudo ./install.sh

Save your access token

During installation, the agent will generate and show an access token. Copy this token and keep it safe. You will need it in the Docker Guard mobile app.

Example:

Server:  YOUR_SERVER_IP
Port:    9090
Token:   GENERATED_TOKEN

Firewall check

After the installation, confirm that the Docker Guard port is listening and reachable. The default port is 9090.

Check if the agent is listening locally

ss -ltnp | grep :9090

Test the local API

Replace YOUR_TOKEN with the token generated during installation.

curl -H "Authorization: Bearer YOUR_TOKEN" http://127.0.0.1:9090/v1/health

Allow the port on UFW if needed

sudo ufw allow 9090/tcp
sudo ufw status

Allow the port with iptables if needed

sudo iptables -I INPUT -p tcp --dport 9090 -j ACCEPT

Test from another machine

Replace YOUR_SERVER_IP with the public IP or DNS of your server.

nc -vz YOUR_SERVER_IP 9090

Cloud firewall: if your server is hosted on AWS, Google Cloud, DigitalOcean, Azure or another cloud provider, you may also need to allow TCP port 9090 in the provider firewall or security group.

Mobile app configuration

Open Docker Guard on your phone and add your server using the information below.

Server URL: http://YOUR_SERVER_IP:9090
Port:       9090
Token:      GENERATED_TOKEN

If TLS is enabled on your server, use HTTPS instead of HTTP.

Server URL: https://YOUR_DOMAIN_OR_IP:9090

Security details

Docker Guard Agent is read only. It only collects monitoring information such as server status, Docker containers, CPU usage, memory usage, disk usage, network usage and container health data.

It does not control your server. The agent does not execute shell commands, does not use SSH, does not expose port 22, does not run Docker actions and does not modify containers.

Do not open SSH to the world. Some monitoring tools require public SSH access on port 22. This can make the server less secure when exposed to the internet. Docker Guard uses a dedicated authenticated monitoring port instead.

Never share your Docker Guard token publicly.
Use a firewall to allow access only from trusted IPs when possible.
Use HTTPS when exposing the agent through the internet.
Keep the agent updated when new versions are released.

Uninstall or stop

If Docker Guard Agent was installed as a Linux service, you can check, stop or restart it with systemctl.

sudo systemctl status docker-guard
sudo systemctl restart docker-guard
sudo systemctl stop docker-guard