--- title: Setting up APM with Kubernetes Service description: >- Learn how to set up APM and distributed tracing in Kubernetes environments with proper service configuration and networking. breadcrumbs: Docs > APM > Tracing Guides > Setting up APM with Kubernetes Service --- # Setting up APM with Kubernetes Service ## Overview{% #overview %} In Kubernetes, Datadog tracers can send data to the Datadog Agent in three ways: Unix Domain Socket (UDS), host IP, or a Kubernetes service. Each option ensures that when an application pod sends APM data, the data arrives at a Datadog Agent pod on the same node. This strategy is meant to properly balance traffic and ensure the correct tagging of your data. Datadog recommends that you use UDS to send data. However, if the `hostPath` volumes required for UDS (and the `hostPort` ports required for using host IP) are not available, you can use a Kubernetes service as an alternative option. This guide describes how to configure using a Kubernetes service to send data to the Datadog Agent. ## Service setup{% #service-setup %} In Kubernetes 1.22, the [Internal Traffic Policy feature](https://kubernetes.io/docs/concepts/services-networking/service-traffic-policy/) provides the option to set the configuration `internalTrafficPolicy: Local` on a service. When set, traffic from an application pod is directed to the service's downstream pod *on the same node*. If you installed the Datadog Agent by using the Datadog [Helm chart](https://github.com/DataDog/helm-charts/blob/main/charts/datadog/values.yaml) or [Datadog Operator](https://docs.datadoghq.com/containers/datadog_operator) on clusters with Kubernetes v1.22.0+, a service for the Agent with `internalTrafficPolicy: Local` is automatically created for you. You additionally need to enable the APM port option for your Agent with the below configuration. ### Agent configuration{% #agent-configuration %} {% tab title="Datadog Operator" %} Update your `datadog-agent.yaml` to set `features.apm.enabled` to `true`. ```yaml apiVersion: datadoghq.com/v2alpha1 kind: DatadogAgent metadata: name: datadog spec: #(...) features: apm: enabled: true ``` After making your changes, apply the new configuration by using the following command: ```shell kubectl apply -n $DD_NAMESPACE -f datadog-agent.yaml ``` {% /tab %} {% tab title="Helm" %} Update your `datadog-values.yaml` to set `datadog.apm.portEnabled` to `true`. ```yaml datadog: apm: portEnabled: true ``` After making your changes, upgrade your Datadog Helm chart using the following command: ```shell helm upgrade -f datadog-values.yaml datadog/datadog ``` {% /tab %} ## Application configuration{% #application-configuration %} You can configure your application to use the Kubernetes service by using the Cluster Agent Admission Controller, or with a manual configuration. ### Cluster Agent Admission Controller{% #cluster-agent-admission-controller %} The [Cluster Agent's Admission Controller](https://docs.datadoghq.com/containers/cluster_agent/admission_controller) can inject the configuration for APM connectivity into your containers. The options are `hostip`, `socket`, or `service`. Choose the `service` mode to have the Admission Controller add the `DD_AGENT_HOST` environment variable for the DNS name of the service. {% tab title="Datadog Operator" %} Update your `datadog-agent.yaml` with the following: ```yaml apiVersion: datadoghq.com/v2alpha1 kind: DatadogAgent metadata: name: datadog spec: #(...) features: apm: enabled: true admissionController: enabled: true agentCommunicationMode: service ``` After making your changes, apply the new configuration by using the following command: ```shell kubectl apply -n $DD_NAMESPACE -f datadog-agent.yaml ``` {% /tab %} {% tab title="Helm" %} Update your `datadog-values.yaml` with the following: ```yaml clusterAgent: admissionController: enabled: true configMode: service ``` After making your changes, upgrade your Datadog Helm chart using the following command: ```shell helm upgrade -f datadog-values.yaml datadog/datadog ``` {% /tab %} **Note:** In mixed node (Linux/Windows) environments, the Cluster Agent and its Admission Controller are relative to the Linux deployment. This may inject the wrong environment variables for the service connectivity in the Windows pods. ### Manual configuration{% #manual-configuration %} For manual configuration, set the environment variable `DD_AGENT_HOST` within your pod manifest, with a value of `..svc.cluster.local`. ```yaml #(...) spec: containers: - name: "" image: "" env: - name: DD_AGENT_HOST value: ..svc.cluster.local ``` Replace `` with the service's name, and replace `` with the service's namespace. For example, if your service definition looks like the following: ```yaml apiVersion: v1 kind: Service metadata: name: datadog namespace: monitoring labels: #(...) spec: selector: app: datadog ports: - protocol: UDP port: 8125 targetPort: 8125 name: dogstatsdport - protocol: TCP port: 8126 targetPort: 8126 name: traceport internalTrafficPolicy: Local ``` Then set the value of `DD_AGENT_HOST` to `datadog.monitoring.svc.cluster.local`. ```yaml #(...) spec: containers: - name: "" image: "" env: - name: DD_AGENT_HOST value: datadog.monitoring.svc.cluster.local ``` ## Further reading{% #further-reading %} - [Set up trace collection](https://docs.datadoghq.com/containers/kubernetes/apm/) - [Admission Controller](https://docs.datadoghq.com/containers/cluster_agent/admission_controller)