Container Discovery Management

Docs > Container Monitoring > Containers Guides > Container Discovery Management

By default, the Datadog Agent automatically discovers all containers available. To restrict its discovery perimeter and limit data collection to a subset of containers only, include or exclude them through a dedicated configuration.

Note: The kubernetes.containers.running, kubernetes.pods.running, docker.containers.running, .stopped, .running.total, and .stopped.total metrics are not affected by these settings and always count all containers.

Environment variables

If you are running the Agent as a container, use the Containerized Agent tab instructions. If you are running the Agent as a binary on a host, use the Host Agent tab instructions.

In Agent v7.20+, use the following environment variables to exclude containers by image, name, or Kubernetes namespace. Logs and metrics are not collected from excluded containers.

Env variable	Description
`DD_CONTAINER_EXCLUDE`	Blocklist of containers to exclude.
`DD_CONTAINER_EXCLUDE_METRICS`	Blocklist of containers whose metrics are excluded.
`DD_CONTAINER_EXCLUDE_LOGS`	Blocklist of containers whose logs are excluded.
`DD_CONTAINER_INCLUDE`	Allowlist of containers to include.
`DD_CONTAINER_INCLUDE_METRICS`	Allowlist of containers whose metrics are included.
`DD_CONTAINER_INCLUDE_LOGS`	Allowlist of containers whose logs are included.

In Agent <=v7.19, use the environment variables DD_AC_INCLUDE and DD_AC_EXCLUDE to include or exclude a container by image or name. These environment variables are deprecated in later Agent versions.

Env variable	Description
`container_exclude`	Blocklist of containers to exclude.
`container_exclude_metrics`	Blocklist of containers whose metrics are excluded. Supported in Agent v7.20+.
`container_exclude_logs`	Blocklist of containers whose logs are excluded. Supported in Agent v7.20+.
`container_include`	Blocklist of containers to include.
`container_include_metrics`	Blocklist of containers whose metrics are included. Supported in Agent v7.20+.
`container_include_logs`	Blocklist of containers whose logs are included. Supported in Agent v7.20+.

Usage

Define values

Each inclusion or exclusion is defined as a list of space-separated regex strings. You can include or exclude containers based on their name (name), image name (image), or Kubernetes namespace (kube_namespace).

Examples

To exclude the container with the name dd-agent:

DD_CONTAINER_EXCLUDE = "name:^dd-agent$"

To exclude two containers with the image names dockercloud/network-daemon and dockercloud/logrotate:

DD_CONTAINER_EXCLUDE = "image:^dockercloud/network-daemon$ image:^dockercloud/logrotate$"

To exclude every container:

DD_CONTAINER_EXCLUDE = "name:.*"

Alternatively, you can also use image:.* or kube_namespace:.*. Configuring .* without a name:, image:, or kube_namespace: prefix does not work.

Examples

To exclude the container with the name dd-agent:

container_exclude: [name:^dd-agent$]

To exclude two containers with the image names dockercloud/network-daemon and dockercloud/logrotate:

container_exclude: [image:^dockercloud/network-daemon$ image:^dockercloud/logrotate$]

To exclude every container:

container_exclude: [name:.*]

Alternatively, you can also use image:.* or kube_namespace:.*. Configuring .* without a name:, image:, or kube_namespace: prefix does not work.

Inclusion and exclusion behavior

Inclusion takes precedence over exclusion. For example, to only monitor ubuntu or debian images, first exclude all other images and then specify which images to include:

DD_CONTAINER_EXCLUDE = "image:.*"
DD_CONTAINER_INCLUDE = "image:ubuntu image:debian"

You cannot mix cross-category inclusion/exclusion rules. For instance, if you want to include a container with the image name foo and exclude only metrics from a container with the image name bar, the following is not sufficient:

DD_CONTAINER_EXCLUDE_METRICS = "image:^bar$"
DD_CONTAINER_INCLUDE = "image:^foo$"

Instead, use:

DD_CONTAINER_EXCLUDE_METRICS = "image:^bar$"
DD_CONTAINER_INCLUDE_METRICS = "image:^foo$"
DD_CONTAINER_INCLUDE_LOGS = "image:^foo$"

There is no interaction between the global lists and the selective (logs and metrics) lists. In other words, you cannot exclude a container globally (DD_CONTAINER_EXCLUDE) and then include it with DD_CONTAINER_INCLUDE_LOGS and DD_CONTAINER_INCLUDE_METRICS.

Inclusion takes precedence over exclusion. For example, to only monitor ubuntu or debian images, first exclude all other images and then specify which images to include:

container_exclude: [image:.*]
container_include: [image:ubuntu image:debian]

container_exclude_metrics: [image:^bar$]
container_include: [image:^foo$]

Instead, use:

container_exclude_metrics: [image:^bar$]
container_include_metrics: [image:^foo$]
container_include_logs: [image:^foo$]

There is no interaction between the global lists and the selective (logs and metrics) lists. In other words, you cannot exclude a container globally (container_exclude) and then include it with container_include_logs and container_include_metrics.

Setting environment variables

In Datadog Operator, set these environment variables under spec.override.nodeAgent.env.

Example

apiVersion: datadoghq.com/v2alpha1
kind: DatadogAgent
metadata:
  name: datadog
spec:
  global:
    credentials:
      apiKey: <DATADOG_API_KEY>
  override:
    nodeAgent:
    env:
      - name: DD_CONTAINER_EXCLUDE
        value: "image:<IMAGE_NAME>"

In your Helm chart, supply a space-separated string to datadog.containerExclude, datadog.containerInclude, datadog.containerExcludeLogs, datadog.containerIncludeLogs, datadog.containerExcludeMetrics, or datadog.containerIncludeMetrics. You can also set excludePauseContainer to true or false.

Example

datadog:
  containerExclude: "image:<IMAGE_NAME_1> image:<IMAGE_NAME_2>"
  containerInclude: "image:<IMAGE_NAME_3> image:<IMAGE_NAME_4>"
  excludePauseContainer: true