Tetra Agent Allow List Endpoints
Tetra Agents must have access to at least one of the following endpoints:
- Your Tetra Data Platform (TDP) API (for example,
platform.tetrascience.com) - A Tetra Hub with Agent access configured on forward and reverse proxy ports
- A Tetra Data Hub with Agent access configured on a Generic Data Connector (GDC) and Tetra L7 Proxy Connector
Tetra Hub Agent Connection Requirements
If your Tetra Hub acts as a proxy for Tetra Agents, only the Hub must have access to those Agents' required endpoints. This includes the TDP API endpoint for your deployment (for example, platform.tetrascience.com).
The Agent only needs access to the Hub.
Tetra Data Hub Agent Connection Requirements
If your Tetra Data Hub acts as a proxy for Tetra Agents and plan to use the Archive and Delete feature in Tetra File-Log Agent v4.4.0 or higher, your TDP API endpoint (for example, platform.tetrascience.com) must be accessible from the Agent host, or from the Data Hub host if you're using a Tetra L7 Proxy Connector.
The File-Log Agent will use the Get File Information API endpoint to verify files are securely stored in the TDP before archiving or deleting them.
Required Agent Allow List Endpoints
If you select the recommended Enable S3 Direct Upload or Receive Commands options during Agent deployment, then the Agent must have access to the following endpoints, either directly or through a proxy:
| AWS Endpoint | Description | When Required |
|---|---|---|
https://[infrastructure name]-[environment]-datalake.s3.[region].amazonaws.comhttps://[infrastructure name]-[environment]-backup.s3.[region].amazonaws.comhttps://[infrastructure name]-[environment]-events.s3.[region].amazonaws.comNote: If you have a customer hosted deployment, you can find these Amazon Simple Storage Service (Amazon S3) bucket names in the Amazon S3 console. If you have a Tetra hosted deployment, you will get these URLs from TetraScience. | Uploads files | When the Enable S3 Direct Upload option is selected |
https://sqs.[region].amazonaws.com | Fetches the command message and then returns the command processing status | When the Receive Commands option is selected |
https://logs.[region].amazonaws.com | Posts agent heart beats and logs | When the Enable S3 Direct Upload option is selected |
https://monitoring.[region].amazonaws.com | Sends Metrics Data (such as CPU, memory, and disk usage) | When the Enable S3 Direct Upload option is selected |
Updated 2 months ago