we are configuring a New managed installation where, because of firewall issues, agents won't have access to the Dynatrace Server node but they will make the connection through Active Gates. In order to get HA and to remove a point of failure we want to communicate the tenant Active Gates each other. The question is, what port do they use for that? 9999 or 443?, it's necessary to open the right port in the FW.
The following page does not answer the question:
Thanks in advance.
Solved! Go to Solution.
Hello @Alberto D.
Environment ActiveGates do not talk to each other but only to the Cluster ActiveGate on port # 9999. ActiveGates will be automatically HA if you install more than one in the same environment, therefore, no manual intervention required.
You will have to open the port # 9999 from OneAgent to the Environment ActiveGate and port # 443 from Environment ActiveGate to Dynatrace Server.
ActiveGates do not communicate with each other at all, so you don't need to open any connections between them. If you need HA in a zone, you just need to set up two ActiveGates in the zone. Each agent will receive endpoint addresses of both gateways, so when the connection is lost, the agent automatically connects to other available ActiveGate.
Cluster node listens on 443 and 8443 for agent communication (8443 for older installations for compatibility reasons, 443 for new cluster installations). So you need to open the appropriate port from ActiveGates to your cluster nodes.