Problem

When the RUM breaks the monitored web application, we tend to turn off the whole RUM Application / Process Group to save the end-user from misery. Then, it might be a challenge to convince ourselves to enable it back for troubleshooting Support.

It's possible with single client IP(s) exclusion/inclusion enabled. Still, the real client IP addresses are often not configured in Dynatrace and represent a proxy or Load balancer IP.

The idea

The idea is to restrict the Dynatrace RUM to be enabled to a "futuristic", unreal client IP and overcome this restriction in a single browser instance where we want to play with RUM to troubleshoot a breaking scenario. For example, the 8.8.8.8 IP address is a Google DNS, so there is no chance that any of the clients monitored by Dyntarace can get it. Let's configure Dynatrace to enable RUM only for this IP and then overcome this restriction in two possible ways:

1. by sending a custom HTTP header with a fake client IP (8.8.8.8)
   or

2. modifying the User-Agent header in the browser

Requirements

• The network must not remove custom HTTP headers,

• We must install ModHeader browser extension,

• The monitored website is not sensitive to modified User-Agent header.

Configuration and Usage

Way #1 - Sending a custom HTTP header with a fake client IP

Configure client web browser

1. Convince the customer to install ModHeader browser extension in their selected browser,

2. Configure the name of the custom HTTP request header - make sure the name is unique, and the value is != other client IPs. The 8.8.8.8 might be a good choice.

   Example configuration:
   

    

    

    

   Note: The checkbox next to the name of the custom header disables/enables the header presence.

3. Make sure the next request contains the header in HTTP:

    

   

    

Configure Dynatrace

1. Go to Settings -> Web and mobile monitoring -> IP determination

    

   

    

   Note: Ensure the created entry is at the top of the list.

2. Go to problematic RUM Application -> edit Settings -> Capturing -> Exclusions -> IP address exclusions ,

3. Add the fake IP configured previously and flip the These are the only IP addresses that should be monitored flag ON:

    

   

    

Way #2 - Modifying the User-Agent header in the browser

If browser extension and/or using custom HTTP headers is/are not possible, there is another way:

1. Go to problematic RUM Application -> edit Settings -> Capturing -> Exclusions -> IP address exclusions ,

2. Add the fake client IP and flip the These are the only IP addresses that should be monitored flag ON:

    

   

    

3. In the browser, configure dtHealthCheckIgnoreRestrictions User-Agent:

    

   

    

The RUM injection will happen for this very browser; nevertheless, we send our real client IP that is different than the configured 8.8.8.8 .

Note

This may not work if the web application is sensitive to non-standard User-Agents. Most likely, the page won't load.

If that's the case, contact Support, refer to this post, and ask for "configuring restriction ignoring" for User-Agent that is acceptable for the monitored website.