This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Looking to upgrade from Dynatrace Managed to SaaS? See how

Dynatrace Managed for Production/Pre-production

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru

‎08 Mar 2018 06:38 AM

Dear
All,

We
were planning to start the work on the Dynatrace Managed, therefore, looking forward
for your expert advices in regard of design as we have a Production and Pre-production
environments.

Should
we go with the two different architectures or can we have a single architecture
to accommodate both environments?

Did anyone
has been tried this scenario?

What
are the best practices for the multiple environments?

Regards,

Babar

Labels:
0 Kudos
Reply
5 REPLIES 5

Go to solution
krzysztof_szynt
Dynatrace Advisor
Dynatrace Advisor

‎08 Mar 2018 07:51 AM

Hi,

both scenarios are feasible and implemented in practice. Since Dynatrace supports multi-tenancy, there is no problem with accommodating multiple environments in one cluster. These will be then separate from monitoring and analysis perspective, can have separate private security gateways if there is network separation between pre-prod and prod.

A risk involved is that you cannot stage the updates of Dynatrace cluster itself - new version will be applied to both pre-prod and prod. If such risk is not acceptable, then customers make the effort to go for separate clusters for various development stages.

regards,
Krzysztof

Reply

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru
In response to krzysztof_szynt

‎08 Mar 2018 08:25 AM

Hello Krzysztof,

Thank you for sharing the overlooked area in my first question about the Dynatrace update itself.

I will take the opportunity to know something more about the security gateways. In case we have more than one network zones and each zone has a firewall so in this situation we should go with the multiple security gateways or one will be sufficient.

Can we put the security gateway in the DMZ?

Regards,

Babar

0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Inactive
In response to Babar_Qayyum

‎08 Mar 2018 08:50 AM

You will need to have multiple SGs to guarantee that agents have at least one communication point to the cluster. Across all SGs agents will try to communicate with the first one feasible in round robin fashion.

that may also help:

https://www.dynatrace.com/support/help/installation/monitoring-setup/what-are-the-available-communication-endpoints/

Senior Product Manager,
Dynatrace Managed expert
Reply

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru
In response to Radoslaw_Szulgo

‎08 Mar 2018 11:51 AM

Hello @Radoslaw S.

Thank you for this information and I will also look into the shared documentation link.

Please correct my understanding in case I am thinking wrongly. What I understood that we can install one Security Gateway in the DMZ to receive the traffic from OneAgent/agentless RUM/Synthetic and for the Mission Control purposes and remaining Security Groups in the each network zone.

Regards,

Babar

0 Kudos
Reply

Go to solution
Radoslaw_Szulgo
Inactive
In response to Babar_Qayyum

‎08 Mar 2018 01:00 PM

Security Gateway is just for monitoring purposes - agent, rum, sythetic, mobile...

To Mission Control you need either direct either proxied connection. In your case probably a proxy server in DMZ.

Senior Product Manager,
Dynatrace Managed expert
0 Kudos
Reply
Ask a question

Featured Posts