This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Setting up second cluster ActiveGate for HA purposes

runatyr
Organizer

‎16 Feb 2024 01:10 PM - last edited on ‎07 Mar 2024 09:00 AM by Community Team

Hello:

We have a set of DMZ servers with an environment ActiveGate.

That Environment ActiveGate communicates with the Cluster ActiveGate as designed.

The issue is that when the Environment ActiveGate or Cluster ActiveGate is patched/rebooted this causes a temporary loss of communication which can false positives on some alerts we have created.

The proposed solution is to place a second server to act as a Cluster ActiveGate as well.

Is it possible to have 2 cluster ActiveGates now? As I understand this was a limitation years ago for a managed cluster.

 

If it is not possible, an alternative would be to manually allow the Environment ActiveGate to communicate inbound to the managed cluster directly (bypassing the Cluster ActiveGate when it is being patched/unavailable). If this were to be allowed, what port would the Environment ActiveGate attempt to talk to the Managed Cluster when the Cluster ActiveGate is unavailable?

Labels:
0 Kudos
Reply
4 REPLIES 4

ChadTurner
DynaMight Legend
DynaMight Legend

‎16 Feb 2024 07:46 PM

interesting ask, would be a great enhancement to network zones at the cluster level for Managed customers. I've run into issues where the system only allowed 1 so we leveraged a host alias and had two hosts with the same alias so as one was spun down, it leveraged the alias that kicked us over to the other host that was running and supporting the traffic. just an idea worth checking out. 

Last resort would be to toss in a MW when you have your planned upgrade. 

-Chad
0 Kudos
Reply

PacoPorro
Dynatrace Leader
Dynatrace Leader

‎19 Feb 2024 08:58 AM

Of course, you can add a second Cluster Activegate to a Managed Cluster, even more, I recommend it.
As you can see in the schema from the link, there's a reference about "Cluster Activegates", plural.

 

https://docs.dynatrace.com/managed/shortlink/managed-deployment-scenarios#scenario-3-integration-wit...

Keep in mind you will need a load balancer in front of the cAGs, and then you can configure it in Dynatrace

https://docs.dynatrace.com/managed/shortlink/managed-ssl-cluster-ag#configure-dynatrace-to-manage-th...

 

 

Reply

runatyr
Organizer
In response to PacoPorro

‎21 Feb 2024 02:42 PM

What about not using a Load balancer in front of 2 Cluster AG's ? Could I 'essentially' load blanace and set half the agents to report to Cluster AG #1 as first server to contact, and Cluster AG #2 as the second server to contact? And then list the opposite server as the second point of contact for each set>?

0 Kudos
Reply

PacoPorro
Dynatrace Leader
Dynatrace Leader

‎21 Feb 2024 03:30 PM

 

All agents are informed about the available endpoints. You can verify this by using the oneagentctl --get-server command on any of the agents. If you wish to manage how the agents connect to a specific cluster activegate, you should utilize network zones. By enforcing connectivity from a particular environment activegate to a single cluster activegate (at the network level, not within Dynatrace), you can achieve this control. However, it’s important to note that if your cluster activegate experiences an outage, the environment activegate reporting to that cluster won’t be able to establish communication with the cluster

PacoPorro_0-1708529047022.pngPacoPorro_1-1708529124305.png



So I highly recommend a LoadBalancer.

Reply
Ask a question

Featured Posts