The only agent that thinks for itself

Autonomous Monitoring with self-learning AI built-in, operating independently across your entire stack.

Unlimited Metrics & Logs
Machine learning & MCP
5% CPU, 150MB RAM
3GB disk, >1 year retention
800+ integrations, zero config
Dashboards, alerts out of the box
> Discover Netdata Agents
Try it now
Linux Docker Kubernetes Google Cloud macOS Windows
Open source
Github 76k
668M+ docker pulls
Centralized metrics streaming and storage

Aggregate metrics from multiple agents into centralized Parent nodes for unified monitoring across your infrastructure.

Stream from unlimited agents
Long-term data retention
High availability clustering
Data replication & backup
Scalable architecture
Enterprise-grade security
> Learn about Parents
Data Pipeline Infinite Scalability Streaming Docs
Fully managed cloud platform

Access your monitoring data from anywhere with our SaaS platform. No infrastructure to manage, automatic updates, and global availability.

Zero infrastructure management
99.9% uptime SLA
Global data centers
Automatic updates & patches
Enterprise SSO & RBAC
SOC2 & ISO certified
> Explore Netdata Cloud
Sign In Pricing Plans Data Sovereignty
Deploy Netdata Cloud in your infrastructure

Run the full Netdata Cloud platform on-premises for complete data sovereignty and compliance with your security policies.

Complete data sovereignty
Air-gapped deployment
Custom compliance controls
Private network integration
Dedicated support team
Kubernetes & Docker support
> Learn about Cloud On-Premises
Contact Sales Data Sovereignty Government Solutions
Powerful, intuitive monitoring interface

Modern, responsive UI built for real-time troubleshooting with customizable dashboards and advanced visualization capabilities.

Real-time chart updates
Customizable dashboards
Dark & light themes
Advanced filtering & search
Responsive on all devices
Collaboration features
> Explore Netdata UI
Custom Dashboards Algorithmic Dashboards Troubleshooting
Monitor on the go

Native iOS and Android apps bring full monitoring capabilities to your mobile device with real-time alerts and notifications.

iOS & Android apps
Push notifications
Touch-optimized interface
Offline data access
Biometric authentication
Widget support
> Download apps
App Store Google Play Alerts & Notifications

Best energy efficiency

True real-time per-second

100% automated zero config

Centralized observability

Multi-year retention

High availability built-in

Zero maintenance

Always up-to-date

Enterprise security

Complete data control

Air-gap ready

Compliance certified

Millisecond responsiveness

Infinite zoom & pan

Works on any device

Native performance

Instant alerts

Monitor anywhere

80% Faster Incident Resolution
AI-powered troubleshooting from detection, to root cause and blast radius identification, to reporting.
Learn & Detect
Correlate
Understand & Act
Unsupervised ML Anomaly Advisor AI Co-Engineer Anomaly Detection Root Cause Analysis AI Reporting
Blast Radius Detection AI Chat
AI-powered observability, always enabled, always running
True Real-Time and Simple, even at Scale
Linearly and infinitely scalable full-stack observability, that can be deployed even mid-crisis.
Automated
Distributed
Scalable
Zero Configuration Distributed Pipeline Real-Time at Scale Algorithmic Dashboards Edge Computing Infinite Scalability Zero Downtime Tiered Retention Extreme Cardinality
Linear scaling, zero single point of failure
90% Cost Reduction, Full Fidelity
Instead of centralizing the data, Netdata distributes the code, eliminating pipelines and complexity.
Metrics
Logs
Alerts
Metrics Management Logs Management Distributed Alerting eBPF Monitoring Zero Pipeline Logs Notifications Tiered Retention
Mobile Apps
Your data stays on-premises; only views stream to the cloud
Single Pane of Glass
Eliminate SSH access for monitoring and troubleshooting systems and applications.
Simple
Powerful
Intelligent
Zero Configuration Troubleshooting AI Co-Engineer Algorithmic Dashboards Top Consumers Anomaly Advisor No Query Language Custom Dashboards Root Cause Analysis
Turn junior engineers into experts with guided troubleshooting
Control Without Surrender
SOC 2 Type 2 certified with every metric kept on your infrastructure.
Access
Governance
Operations
Access Control Data Sovereignty Team Collaboration Zero Code Instrumentation Alerts & Notifications Cost Efficiency Zero Downtime
See the Architecture
Integrations

800+ collectors and notification channels, auto-discovered and ready out of the box.

800+ data collectors
Auto-discovery & zero config
Cloud, infra, app protocols
Notifications out of the box
> Explore integrations
AI Automation
Model Context Protocol

Connect any MCP-compatible AI to your observability data. Automate workflows, playbooks, and incident response.

Deploy Anywhere
Multi-Cloud

AWS, GCP, Azure—unified observability across all providers.

Hybrid Cloud

On-prem and cloud infrastructure in a single view.

Data Sovereignty

Your metrics stay on your infrastructure. Always.

Real Results
46% Cost Reduction

Reduced monitoring costs by 46% while cutting staff overhead by 67%.

— Leonardo Antunez, Codyas

Zero Pipeline

No data shipping. No central storage costs. Query at the edge.

From Our Users
"Out-of-the-Box"

So many out-of-the-box features! I mostly don't have to develop anything.

— Simon Beginn, LANCOM Systems

No Query Language

Point-and-click troubleshooting. No PromQL, no LogQL, no learning curve.

Enterprise Ready
67% Less Staff, 46% Cost Cut

Enterprise efficiency without enterprise complexity—real ROI from day one.

— Leonardo Antunez, Codyas

SOC 2 Type 2 Certified

Zero data egress. Only metadata reaches the cloud. Your metrics stay on your infrastructure.

Full Coverage
800+ Collectors

Auto-discovered and configured. No manual setup required.

Any Notification Channel

Slack, PagerDuty, Teams, email, webhooks—all built-in.

Built for the People Who Get Paged
Because 3am alerts deserve instant answers, not hour-long hunts.
DevOps SREs CISOs SysAdmins Platform Engineers Operations Centers Developers Freelancers MSPs
Ask AI about your next incident
Every Industry Has Rules. We Master Them.
See how healthcare, finance, and government teams cut monitoring costs 90% while staying audit-ready.
Retail Education Gaming Manufacturing Finance Government Telecom Healthcare AI & ML Technology
Built for Operation Centers
Monitor Any Technology. Configure Nothing.
Install the agent. It already knows your stack.
AWS Kubernetes Linux GCP Windows Red Hat Azure VMware Proxmox Hetzner Hybrid Cloud HPC
See all 800+ integrations
Complete Visibility. Total Control.
From install to "what broke and why" in under five minutes—no queries, no guesswork.
Infrastructure Monitoring Continuous Operations Unified Observability Application Performance Troubleshooting Database Monitoring Container Monitoring Docker Monitoring Web Server Monitoring Systemd Journal Logs Windows Event Logs Synthetic Checks IoT Monitoring LLM Monitoring Data Centers Service Mesh
See the live demo
Don't Take Our Word for It
From 99% less downtime to 30-second troubleshooting—see how they did it.
Falkland Islands Government

Government

Falkland Islands Government

99% less downtime, 30% cloud cost reduction

TMB Barcelona

Transportation

TMB Barcelona

"A rare unicorn that obeys the Pareto rule"

Nodecraft

Gaming

Nodecraft

Troubleshooting in 30 seconds, not 3 minutes

Codyas

Technology

Codyas

46% cost reduction, 67% less monitoring staff

Browse all case studies
From Our Users
"A Rare Unicorn"

Netdata gives more than you invest in it. A rare unicorn that obeys the Pareto rule.

— Eduard Porquet Mateu, TMB Barcelona

99% Downtime Reduction

Reduced website downtime by 99% and cloud bill by 30% using Netdata alerts.

— Falkland Islands Government

Real Savings
30% Cloud Cost Reduction

Optimized resource allocation based on Netdata alerts cut cloud spending by 30%.

— Falkland Islands Government

46% Cost Cut

Reduced monitoring staff by 67% while cutting operational costs by 46%.

— Codyas

Real Coverage
"Plugin for Everything"

Netdata has agent capacity or a plugin for everything, including Windows and Kubernetes.

— Eduard Porquet Mateu, TMB Barcelona

"Out-of-the-Box"

So many out-of-the-box features! I mostly don't have to develop anything.

— Simon Beginn, LANCOM Systems

Real Speed
Troubleshooting in 30 Seconds

From 2-3 minutes to 30 seconds—instant visibility into any node issue.

— Matthew Artist, Nodecraft

20% Downtime Reduction

20% less downtime and 40% budget optimization from out-of-the-box monitoring.

— Simon Beginn, LANCOM Systems

Pay per Node. Unlimited Everything Else.

One price per node. Unlimited metrics, logs, users, and retention. No per-GB surprises.

Free tier—forever
No metric limits or caps
Retention you control
Cancel anytime
> See pricing plans
> See pricing plans
What's Your Monitoring Really Costing You?

Most teams overpay by 40-60%. Let's find out why.

Expose hidden metric charges
Calculate tool consolidation
Customers report 30-67% savings
Results in under 60 seconds
> See what you're really paying
> See what you're really paying
Your Infrastructure Is Unique. Let's Talk.

Because monitoring 10 nodes is different from monitoring 10,000.

On-prem & air-gapped deployment
Volume pricing & agreements
Architecture review for your scale
Compliance & security support
> Start a conversation
> Start a conversation
Monitoring That Sells Itself

Deploy in minutes. Impress clients in hours. Earn recurring revenue for years.

30-second live demos close deals
Zero config = zero support burden
Competitive margins & deal protection
Response in 48 hours
> Apply to partner
> Apply to partner
Per-Second Metrics at Homelab Prices

Same engine, same dashboards, same ML. Just priced for tinkerers.

Community: Free forever · 5 nodes · non-commercial
Homelab: $90/yr · unlimited nodes · fair usage
> Start monitoring your lab—free
> Start monitoring your lab—free
$1,000 Per Referral. Unlimited Referrals.

Your colleagues get 10% off. You get 10% commission. Everyone wins.

10% of subscriptions, up to $1,000 each
Track earnings inside Netdata Cloud
PayPal/Venmo payouts in 3-4 weeks
No caps, no complexity
> Get your referral link
> Get your referral link
Cost Proof
40% Budget Optimization

"Netdata's significant positive impact" — LANCOM Systems

Calculate Your Savings

Compare vs Datadog, Grafana, Dynatrace

Savings Proof
46% Cost Reduction

"Cut costs by 46%, staff by 67%" — Codyas

30% Cloud Bill Savings

"Reduced cloud bill by 30%" — Falkland Islands Gov

Enterprise Proof
"Better Than Combined Alternatives"

"Better observability with Netdata than combining other tools." — TMB Barcelona

Real Engineers, <24h Response

DPA, SLAs, on-prem, volume pricing

Why Partners Win
Demo Live Infrastructure

One command, 30 seconds, real data—no sandbox needed

Zero Tickets, High Margins

Auto-config + per-node pricing = predictable profit

Homelab Ready
"Absolutely Incredible"

"We tested every monitoring system under the sun." — Benjamin Gabler, CEO Rocket.Net

76k+ GitHub Stars

3rd most starred monitoring project

Worth Recommending
Product That Delivers

Customers report 40-67% cost cuts, 99% downtime reduction

Zero Risk to Your Rep

Free tier lets them try before they buy

Engineering Insights & Product Updates
Deep dives into monitoring, infrastructure, and what's new in Netdata.
Monitor Everything is an Anti-Pattern!

Dec 2025

Monitor Everything is an Anti-Pattern!

Bullshit and nonsense. But let’s take …

Netdata at Gartner IOCS 2025: Tackling the Observability Overspend Problem

Nov 2025

Netdata at Gartner IOCS 2025: Tackling …

The observability market is facing a paradox. …

Streamline Incident Management with the New Netdata-ServiceNow Integration

Nov 2025

Streamline Incident Management with the …

When a critical alert fires at 2 AM, the last …

SOC 2 Type 2: Netdata's Security Controls Validated Over Time

Oct 2025

SOC 2 Type 2: Netdata's Security …

We’re excited to share that Netdata has …

Explore all articles
Never Fight Fires Alone

Docs, community, and expert help—pick your path to resolution.

Learn.netdata.cloud docs
Discord, Forums, GitHub
Premium support available
> Get answers now
> Get answers now
60 Seconds to First Dashboard

One command to install. Zero config. 850+ integrations documented.

Linux, Windows, K8s, Docker
Auto-discovers your stack
> Read our documentation
> Read our documentation
See Netdata in Action

Watch real-time monitoring in action—demos, tutorials, and engineering deep dives.

Product demos and walkthroughs
Real infrastructure, not staged
> Start with the 3-minute tour
> Start with the 3-minute tour
Level Up Your Monitoring
Real problems. Real solutions. 112+ guides from basic monitoring to AI observability.
Academy Monitoring 101 Webinars AI Observability Ebook Case Studies
> Explore all 112+ guides
76,000+ Engineers Strong
615+ contributors. 1.5M daily downloads. One mission: simplify observability.
GitHub Discussions Discord Forums Reddit X / Twitter Open Source
See where 76K+ engineers connect
Per-Second. 90% Cheaper. Data Stays Home.
Side-by-side comparisons: costs, real-time granularity, and data sovereignty for every major tool.

See why teams switch from Datadog, Prometheus, Grafana, and more.

> Browse all comparisons
> Browse all comparisons
Speed Proof
30 Seconds to Resolution

"Troubleshooting in 30 seconds instead of 2–3 minutes" — Nodecraft

Discord Community

2k+ members, real-time help

Quick Start
One-Command Install

Copy, paste, monitoring in 60 seconds

850+ Integrations

Every collector documented

Start Here
3-Minute Overview

Full platform in one video

Getting Started

Install to dashboard in 2 minutes

Learn Path
112+ Technical Guides

PostgreSQL, NGINX, K8s, and more

AI Observability Ebook

Maturity model and implementation

Built in the Open
Star Us on GitHub

76k+ stars and growing daily

Active Discussions

Engineers helping engineers

Migration Program
Migrating from SolarWinds?

Netdata is modern, fast, full-stack observability with per-second metrics, AI-powered troubleshooting, and predictable pricing.

> See migration program
Edge-Native Observability, Born Open Source
Per-second visibility, ML on every metric, and data that never leaves your infrastructure.
Founded in 2016
615+ contributors worldwide
Remote-first, engineering-driven
Open source first
> Read our story
> Read our story
Promises We Publish—and Prove
12 principles backed by open code, independent validation, and measurable outcomes.
Open source, peer-reviewed
Zero config, instant value
Data sovereignty by design
Aligned pricing, no surprises
> See all 12 principles
> See all 12 principles
Edge-Native, AI-Ready, 100% Open
76k+ stars. Full ML, AI, and automation—GPLv3+, not premium add-ons.
76,000+ GitHub stars
GPLv3+ licensed forever
ML on every metric, included
Zero vendor lock-in
> Explore our open source
> Explore our open source
Build Real-Time Observability for the World
Remote-first team shipping per-second monitoring with ML on every metric.
Remote-first, fully distributed
Open source (76k+ stars)
Challenging technical problems
Your code on millions of systems
> See open roles
> See open roles
Talk to a Netdata Human in <24 Hours
Sales, partnerships, press, or professional services—real engineers, fast answers.
Discuss your observability needs
Pricing and volume discounts
Partnership opportunities
Media and press inquiries
> Book a conversation
> Book a conversation
Your Data. Your Rules.
On-prem data, cloud control plane, transparent terms.
Terms of Use Terms of Service Privacy Policy Fair Usage Policy
Request a DPA or security package
Trust & Scale
76,000+ GitHub Stars

One of the most popular open-source monitoring projects

SOC 2 Type 2 Certified

Enterprise-grade security and compliance

Data Sovereignty

Your metrics stay on your infrastructure

Validated
University of Amsterdam

"Most energy-efficient monitoring solution" — ICSOC 2023, peer-reviewed

ADASTEC (Autonomous Driving)

"Doesn't miss alerts—mission-critical trust for safety software"

Community Stats
615+ Contributors

Global community improving monitoring for everyone

1.5M+ Downloads/Day

Trusted by teams worldwide

GPLv3+ Licensed

Free forever, fully open source agent

Why Join?
Remote-First

Work from anywhere, async-friendly culture

Impact at Scale

Your work helps millions of systems

Gartner IOCS 2025
Meet Us at Gartner IOCS 2025

Dec 9–11, Las Vegas · Booth #636

> Book a booth demo
Compliance
SOC 2 Type 2

Audited security controls

GDPR Ready

Data stays on your infrastructure

Blog

Netdata’s dashboard: open by default and secure by design

Navigating and Customizing for Optimal Monitoring Experience
by Netdata Team · October 28, 2020

Let’s talk through a scenario: You have a Linux-based VM running on DigitalOcean (aka a Droplet), and you install Netdata on it using our recommended kickstart script. As the installation process winds down, the Droplet starts up the Netdata Agent’s web server and serves the local Agent web dashboard on port 19999. You navigate to the dashboard using your browser of choice, check out per-second metrics updating in real time in a few of the hundreds of preconfigured visualizations, then realize…

😱 If I can access this dashboard, so can anyone else! My system is already compromised! Let’s break that down a bit. Can anyone access the dashboard? In this specific case, yes. As long as there is no hardware or software firewall/router between the node and the internet at large, anyone can access the dashboard if they know the IP address.

Is the system compromised? Absolutely not. So before you jump back into the DigitalOcean dashboard to destroy your Droplet, let’s take a moment to look into the reality of why Netdata exposes the dashboard on this port by default. From there, you can better understand how to mitigate any possible security concerns, and how this design decision gives you more power over your nodes, not less.

The hows and whys of publicly serving metrics by default

We decided years ago to spin up the web server on port 19999 by default. This decision, and the subsequent discussions, can still be found on GitHub dating back to early 2016. The project was just getting popular for the first time then, and a lot of people were thrilled about visualizing thousands of metrics about their systems and applications for the first time. They also weren’t used to seeing thousands of metrics exposed on a single port.

It’s a valid concern (Netdata does not have built-in password authentication) amplified into a myth: It must be insecure!

But Netdata is an opinionated monitoring solution. One of its opinions is that it should be designed to help users go from zero to real-time monitoring in a matter of minutes. Users should be able to install Netdata, load the dashboard, and see meaningful metrics and visualizations without wasting time configuring collectors or organizing metrics into charts.

If Netdata didn’t serve its local dashboard at port 19999 by default, and immediately after installation, you would have to install your own web server before seeing all your real-time metrics. That’s another dozen complex post-installation steps, another dependency to worry about, and another thing to break. Can you imagine our documentation demanding that you install Nginx, copy a long configuration file into sites-enabled, tweak a few files in /etc/nginx (or is it /usr/local/nginx/conf or /usr/local/etc/nginx), buy a domain name, configure DNS, and then start collecting metrics?

That’s not a good real-time monitoring experience. And we’re also of the opinion that your monitoring experience should be really good.

The truth is that Netdata was designed to be both open and safe. In our security design document, we outline the decisions made years ago, and what they mean for your day-to-day Netdata usage. Here’s a summary:

  • Netdata is read-only. You can’t tell it to do anything, and it can’t change your system in any way.
  • Netdata runs without special/sudo privileges. It couldn’t make changes to your system even if you wanted it to. Hooray for UNIX permissions.
  • Netdata only exposes chart metadata and metrics values. Even if an unknown person accesses your system’s Netdata dashboard, they never see raw data or sensitive information about the system itself, such as its OS or kernel versions.
  • Collectors are hardcoded and receive no commands from Netdata. Collectors like to gather metrics, and that’s it.
  • Data flows unidirectionally, from collectors to the Netdata Agent. Netdata never tries to, and cannot, write data to anything but its own database. It can’t control your applications, alter their configuration files, or even read files it wasn’t transparently designed to do.
Apply these points to the scenario that started this post. Given what you know now, is the system compromised? No. An attacker can’t use Netdata itself to harm the system. They can’t force the MySQL collector to write into a database, and they can’t escalate privileges using sudo to make a system-wide configuration change. They can’t magically read /etc/shadow.

Should you let anyone see your node’s dashboard? No! We absolutely recommend that you secure your nodes in any way you or your organization see fit, but Netdata is never going to dictate how you do that. Instead, it works with you to find a solution that’s both secure and feature-rich. Pro-tip:

If you haven’t installed Netdata yet, use the –dont-start-it option during installation. This prevents the netdata demon from starting up until you call it explicitly with systemctl netdata start.

bash <(curl -Ss https://my-netdata.io/kickstart.sh) --dont-start-it

You can now take the time you need to configure Netdata according to your needs before you start the daemon and collect metrics.

How to improve Netdata’s security without sacrificing features

While Netdata is indeed opinionated, you can also change its mind quite easily. We now support several configurations that provide rich functionality and full access to real-time dashboards while also providing some more security for those who want to control their infrastructure or are required to by their organization.

Netdata Cloud is entirely opt-in, but if real-time cloud infrastructure monitoring with composite charts and Metric Correlations sounds good to you, it’s a great solution to all your potential security concerns. Netdata Cloud receives chart metadata and metrics values over an Agent-initiated, MQTT over secure websocket connection. This connection is secured with a TLS keypair, and because it uses the standard port 443 for encrypted communications, you don’t have to open any inbound ports in your infrastructure.

By connecting your node to Netdata Cloud and restricting access to the local Agent dashboard, you reduce exposure while also maintaining all the features about Netdata that you know and love.

The good news is that no matter what path you take, your nodes can always communicate with Netdata Cloud to securely stream metrics values and alarm status to your browser on-demand. It’s the best of both security and usability worlds.

But let’s walk through some of the available routes for that VM running on DigitalOcean.

Down route A, you can turn the local Agent dashboard off. In our opinion, this is the best solution because it prevents anyone from accessing your local Agent dashboard at http://NODE:19999, but maintains the Agent-Cloud Link (ACLK) with your Netdata Cloud account for secure on-demand streaming of metrics values to your browser. You can still claim your node(s), view their single-node dashboards, view aggregated metrics together using the Overview’s composite charts, and much more.

Learn how to take route A.

  • Pros:
    • Nothing for anyone to see on port 19999.
    • Easiest setup (change a single line in one configuration file!).
    • Full compatibility with Netdata Cloud’s dashboards and features.
  • Cons:
    • No ability to view the local Agent dashboard.
    • No API.
Route B takes you to using the bind option to restrict dashboard access. With access lists, you can control exactly who, and from what source, someone can view your local Agent dashboard. This route is ideal for those who want to secure the local Agent dashboard from unauthorized access and see everything in Netdata Cloud, but also want the flexibility to build custom local dashboards or power other business processes with Netdata’s API.

Learn how to take route B.

  • Pros:
    • Leave the local Agent dashboard running, but restricted to only known networks or trusted external IPs.
    • Full compatibility with Netdata Cloud’s dashboards and features.
  • Cons:
    • Requires more upfront configuration and knowledge of access lists.
    • Requires a relatively static IP or management LAN.
Route C is the original, and it’s still good: Put Netdata behind a reverse web proxy like Nginx, which then provides all sorts of value-added benefits like HTTPS connections and username/password authentication. A robust, dedicated web server like Nginx provides more stability and security, plus many more configuration options, which is why we use it in front of our London demo server. You’re also not limited to Nginx, as this route gels nicely with Apache, Lighttpd, HAProxy, and Caddy. You can still connect to Netdata Cloud, since the WSS connection works in parallel with HTTPS from your browser. It’s the best of all worlds, but it does take more time and Linux systems experience to do properly.

Learn how to take route C.

  • Pros:
    • Leave the local Agent dashboard running, with optional password authentication.
    • Leverage a dedicated web server’s additional features and configuration options.
    • Optional easy HTTPS/SSL with Let’s Encrypt.
    • Full compatibility with Netdata Cloud’s dashboards and features.
  • Cons:
    • Requires the most upfront configuration, installation of new packages, and knowledge of web server configuration.
    • Requires some knowledge of TLS keypairs.
    • Often requires a domain name to associate with the node, which in turn requires some DNS configuration.

Choose your own adven… monitoring setup

A monitoring solution should slot seamlessly into the existing strategy to organize and secure both individual nodes and the entire infrastructure, not advocate for one route or another. We have no desire to tell our users how to do that work, nor are we qualified to offer best practices for your particular environment.

And now that you’re educated about the routes available to you, you have all the know-how to make the best decision for your infrastructure. You could even choose to leave port 19999 exposed by default and choose to secure your nodes in other ways, which is what we’ve done with our own demo server.

Whichever way you go, Netdata is ready to meet you halfway with the same per-second metrics, instant visualizations, and powerful infrastructure monitoring tools in Netdata Cloud. What some used to call an insecure default, we can now name correctly: a configurable default that emphasizes immediate results and puts trust in our users.