IP allowlist - New Cool Feature!

PedroSantos · ‎11 Sep 2024

So, I was browsing and messing around with Dynatrace (as one does ), and came across this new feature that I hadn't seen before. An IP allowlist toggle that allows us to limit access to tenants by IP.

And anyone outside the defined CIDR range would get the following screen trying to access the tenant:

Yeah, we temporarily blocked our co-worker But all we had to do was turn it off to make everything go back to normal.

I'm not entirely sure when this was introduced, but I hadn't seen it before so I figured I'd share!

Strangely enough, we did a few tests and it only seemed to work properly if we were using the latest Dynatrace 🤔

We figured out that if I were on the old UI outside the range, I could navigate. Upon changing to the new one, I was immediately kicked (if outside the CIDR range). And then I couldn't change back to the old one to navigate once again.

Either way, it seems like a pretty cool feature that's being worked on. If anyone decides to do a few tests on your end, let me know the results!

To make an error is human. To spread the error across all servers in an automated way is DevOps.

AntonioSousa · ‎11 Sep 2024

This is great news, especially for Managed to SaaS transitions!

And it already has good documentation: https://docs.dynatrace.com/docs/manage/account-management/settings/ip-allowlist

BTW, this was launched in 1.299: https://docs.dynatrace.com/docs/shortlink/release-notes-saas-sprint-299#ip-allowlisting

Antonio Sousa

PacoPorro · ‎16 Sep 2024

As @AntonioSousa mentioned this has been available since 1.299 so it should work from this version.