Agent

Control & Monitor
Your Servers

Install the aX2In Agent to monitor server health, manage mail services, and receive instant alerts when issues occur.

Terminal 
$ curl -fsSL http://ax2in.com/agent/install.sh | bash -s -- --token YOUR_AGENT_TOKEN
Agent Version
loading...
SHA256
mTLS enabled by default
URLs are pre-configured in the script. Just provide your token and you're ready to go!
Get Started Read FAQ

Supported Linux & BSD Distributions

Ubuntu Ubuntu
Debian Debian
Fedora Fedora
AlmaLinux AlmaLinux
Rocky Linux Rocky Linux
FreeBSD FreeBSD

Monitoring

Real-time visibility into your server health

System Metrics

CPU, RAM, disk, swap, load average

Service Status

Postfix, Dovecot, OpenDKIM, Rspamd

Availability

ICMP/TCP ping, uptime tracking

SSL Certificates

Certificate expiry warnings

Log Analysis

Mail traffic, delivery stats

Control & Security

Manage and protect your mail infrastructure

Mail Queue

View, flush, delete, hold messages

Security Alerts

Brute-force, auth failure detection

Firewall & Fail2ban

Rules view, banned IPs management

Vulnerability Scan

CVE detection, package security

Quick Start

Get your server connected in under 2 minutes

1

Add Server in Panel

Login to aX2In Panel → Servers → Add Server. Give it a name and copy the agent token.

2

Run Install Script

SSH to your server as root and run:

Terminal 
$ curl -fsSL http://ax2in.com/agent/install.sh | bash -s -- --token YOUR_AGENT_TOKEN
mTLS enabled by default

The script automatically configures secure mTLS communication. Agent receives a client certificate during bootstrap.

Bootstrap: ax2in.com
mTLS: api.ax2in.com:8443
3

Verify

Check that the agent is running: 

$ systemctl status ax2in-agent

You should see active (running). Server will appear in dashboard within 60 seconds.

Done!

Your server is now connected. Check Dashboard for metrics and alerts.

Architecture

How Agent Communicates

Outbound-only connections. No open ports on your server.

Your Server ax2in-agent
No open ports
POST /heartbeat
mTLS :8443
Response + Commands
aX2In Panel api.ax2in.com
Cloud

Agent Sends (every 60s)

  • System metrics: CPU, RAM, disk, load
  • Service status: Postfix, Dovecot, etc.
  • Mail queue: size, message IDs
  • Security: fail2ban, firewall rules
  • Packages: list for CVE scanning

Panel Responds With

  • ACK: heartbeat received confirmation
  • Commands: pending actions to execute
  • Config updates: new settings if changed
  • Agent updates: new version available
NAT Friendly
Works behind firewalls
No Inbound Ports
Zero attack surface
mTLS Encrypted
Mutual authentication

FAQ

Does the agent require root access?

Yes, the agent needs root access to:

  • Read system metrics (disk, memory, CPU usage)
  • Check service status via systemctl
  • Monitor mail queue via postqueue
  • Access log files (/var/log/mail.log)
  • Read firewall rules and fail2ban status
  • Install as a systemd service

The agent only collects metrics - it does not modify your system configuration or files.

What does the agent do?

The agent is a lightweight bash script that runs on your server. It collects metrics (disk usage, queue size, service status) every 60 seconds and reports them to aX2In Panel. When thresholds are exceeded, alerts are created automatically.

What data does the agent send?

The agent sends:

  • System metrics (CPU, RAM, disk, swap, load)
  • Mail queue size and message IDs
  • Service status (running/stopped)
  • Failed auth attempt count
  • SSL certificate expiry dates
  • Firewall rules and banned IPs
  • Installed packages list (for CVE scanning)

It does NOT send email contents, passwords, or personal data.

Is it safe to run the install script from curl?

You can review the script before running it:

$ curl -fsSL http://ax2in.com/agent/install.sh | less

The script only installs a monitoring agent - it doesn't modify your server configuration.

How do I update the agent?

Simply run the install script again:

$ curl -fsSL http://ax2in.com/agent/install.sh | bash -s -- --token YOUR_AGENT_TOKEN
How do I uninstall the agent?

Run these commands on your server:

$ systemctl stop ax2in-agent
$ systemctl disable ax2in-agent
$ rm /etc/systemd/system/ax2in-agent.service
$ rm -rf /opt/ax2in-agent
$ rm -rf /var/log/ax2in
$ systemctl daemon-reload
The agent isn't connecting. What do I check?

1. Check agent status:

$ systemctl status ax2in-agent

2. Check logs:

$ tail -50 /var/log/ax2in/agent.log

3. Verify your token is correct in /opt/ax2in-agent/config.yml

How can I verify the agent script integrity?

Download the script and check its SHA256 checksum:

$ curl -fsSL http://ax2in.com/api/agent/download | sha256sum

Compare with the checksum shown in the Agent Version section below, or query the API:

$ curl -s http://ax2in.com/api/agent/version | jq
Can I use custom API URLs?

Yes, if you host your own instance, you can override the default URLs:

$ curl -fsSL http://ax2in.com/agent/install.sh | bash -s -- \
  --token YOUR_TOKEN \
  --api-url https://your-panel.com \
  --mtls-url https://your-api.com:8443

Ready to Get Started?

Control and monitor your servers in minutes. Free plan available.

Go to Dashboard