This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

IP Allow List - SaaS Dynatrace Outgoing IPs from Javascript Runtimes

helton_harada
Contributor

‎14 Sep 2025 04:49 PM

Our team needs to manage multiple Dynatrace SaaS tenant accounts. To achieve this, there are some workflows across the various tenants, even in other accounts, that make calls to a single central tenant, where central control dashboards exist in this tenant.
When implementing the IP Allow List feature in our tenants, the central tenant started blocking calls from these other managed tenants.
We would like Dynatrace to help us by providing the outbound IP addresses of the various tenants so we can register them on the central tenant's IP Allow List.
How would we obtain these IP addresses?
Note: We sampled workflow executions and found that the outbound IP addresses of the JavaScript runtimes change constantly, not following a standard pattern.

Reply
4 REPLIES 4

helton_harada
Contributor

‎14 Sep 2025 05:13 PM

Note 2: Even though it is counterintuitive, since this is Dynatrace SaaS to Dynatrace SaaS communication and not Dynatrace SaaS to client infrastructure, we tried to configure an on-premises edge connect to accept the "*.dynatrace.com" connection pattern, but Edge Connect did not accept this pattern (perhaps there is a validation with an internal restriction in Dynatrace to use this pattern...)

Reply

helton_harada
Contributor

‎20 Oct 2025 11:40 AM

Does anyone in Dynatrace could help us to obtain these IP addresses?

0 Kudos
Reply

Julius_Loman
DynaMight Legend
DynaMight Legend

‎30 Oct 2025 02:05 PM

@helton_harada there is no way to get a list at the moment. If you need it to be executed from a certain location, use EdgeConnect for that.  More on this here.

Certified Dynatrace Master | Alanata a.s., Slovakia, Dynatrace Master Partner
Reply

helton_harada
Contributor
In response to Julius_Loman

‎31 Oct 2025 08:13 PM

Thanks for the reply Julius! Actually, for our use case, it would only be possible to use EdgeConnect if it accepted "*apps.dynatrace.com" as a host pattern in the configuration, because we need to use the remote DQL API. Currently, only "live.dynatrace.com" is accepted in the host pattern configuration in EdgeConnect...it seems there's an internal validation "lock" in the platform...

0 Kudos
Reply
Ask a question

Featured Posts