25 Jan 2021 06:05 PM
We recently ran into a situation here the requests to unmonitored hosts jumped and has stayed there. This was noticed by some folks in AppDev when they were chasing some purepaths and found many broken chains. Some research indicated that "something" happened on 12/10/20 around 4:00AM. See chart below. Has anyone run into this type of situation? Of course "nothing" has changed. 🙂
25 Jan 2021 07:23 PM
Was any host monitoring turned off from the Dynatrace perspective? What about the level of monitoring? Was the oneagent reduced to infrastructure only monitoring on some hosts?
25 Jan 2021 07:45 PM
Good question. We have reviewed both situations and this has not been identified as the issue. We look good from a monitoring perspective as well as what we have in Full Stack vs. Infra Mode.
26 Jan 2021 12:41 PM
Hey Chad. Thanks for the response. Full stack monitoring is enabled on all servers and in fact we did patching this past weekend and full reboots were done.
25 Jan 2021 07:34 PM
Could it be that there's a component (LB/proxy/integration service/etc.) that's stripping the x-dynatrace headers, in effect terminating the PurePaths and making those requests look like they're towards unmonitored hosts? So for example connections towards domain names which resolve to load balancer VIPs and as such do not correspond to any specific server with OneAgent running..?
25 Jan 2021 07:45 PM
Another solid question and that is where we have been concentrating. The issue seems to be surrounding calls in/out of our Web Service Managed infrastructure that is front-ended by a LB. We are full y running in AWS on a mix of EC2 and Native Svcs and the ELB in this case is a CLB. We have reviewed changes at the time of the spike (approx. 12/10 at 4:00AM ) and there were no scheduled changes by our organization at that time.
26 Jan 2021 03:47 AM
Might this be new traffic? if you go back at the back call before that time. The number of calls is the same? do the calls that before went to injected service drop and go here now?
26 Jan 2021 12:43 PM
Hi Dante. This is an interesting thought. I 'll work with the AppDev team on this. We only keep 10 days of traces in Prod so going back further for comparison sake is problematic.
26 Jan 2021 05:56 AM
Hello John K.
Can you check the backtrace for this traffic to know who made these calls?
Regards,
Babar
26 Jan 2021 12:45 PM
Hi Babar. Good thought The usual and expected suspects are the callers in all of our situations. We don't see any outliers.
26 Jan 2021 12:40 PM
HI Sanders. Thanks for the response. Full stack monitoring is enabled on all servers and in fact we did patching this past weekend and full reboots were done.
26 Jan 2021 01:12 PM
I would recommend opening a support ticket for this. That way support can dig deeper into the issue and hopefully find a resolution or explanation for this.