docs(self-hosted): reference architectures

[aldy505]

DESCRIBE YOUR PR

Closes getsentry/self-hosted#3653

IS YOUR CHANGE URGENT?

Help us prioritize incoming PRs by letting us know when the change needs to go live.

• Urgent deadline (GA date, etc.):
• Other deadline:
• None: Not urgent, can wait up to 1 week+

SLA

• Teamwork makes the dream work, so please add a reviewer to your PRs.
• Please give the docs team up to 1 week to review your PR unless you've added an urgent due date to it.
  Thanks in advance for your help!

PRE-MERGE CHECKLIST

Make sure you've checked the following before merging your changes:

• Checked Vercel preview for correctness, including links
• PR was reviewed and approved by any necessary SMEs (subject matter experts)
• PR was reviewed and approved by a member of the Sentry docs team

LEGAL BOILERPLATE

Look, I get it. The entity doing business as "Sentry" was incorporated in the State of Delaware in 2015 as Functional Software, Inc. and is gonna need some rights from me in order to utilize my contributions in this here PR. So here's the deal: I retain all rights, title and interest in and to my contributions, and by keeping this boilerplate intact I confirm that Sentry can use, modify, copy, and redistribute my contributions, under Sentry's choice of terms.

EXTRA RESOURCES

• Sentry Docs contributor guide

[vercel]

@aldy505 is attempting to deploy a commit to the Sentry Team on Vercel.

A member of the Team first needs to authorize it.

[aldy505]

Ah forgot to put one note: Upgrade the relay on the edge servers whenever you upgrade sentry on the main box.

Might write this at a later time.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
develop-docs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jul 10, 2025 10:38pm
sentry-docs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jul 10, 2025 10:38pm

1 Skipped Deployment

Name	Status	Preview	Comments	Updated (UTC)
changelog	⬜️ Ignored (Inspect)	Visit Preview		Jul 10, 2025 10:38pm

[sfanahata]

@aldy505 - something went wrong with the push to gh, and the codeowner assignment is failing. Can you try rebasing from master and pushing back to this PR?

[aldy505]

@aldy505 - something went wrong with the push to gh, and the codeowner assignment is failing. Can you try rebasing from master and pushing back to this PR?

@sfanahata Hi. I want to make some changes to this PR, I'll do that later in a few hours.

[aldy505]

@BYK @hubertdeng123 @Dav1dde can anyone take a look? thanks!

[Dav1dde]

Maybe makes sense to refer to the Relay config here, generally I would recommend setting up a managed Relay instead.

[aldy505]

Why are you recommending the managed one, instead of proxy? Any other plus point?

[Dav1dde]

It has access to the project config, which means it can act earlier and generally works better.

[aldy505]

It's done, feel free to merge when the checks are green.

[BYK]

I don't think the single node article adds any value. Shall we axe it?

[BYK]

Suggested change

	This section contains reference architectures for self-hosted Sentry. These are not meant to be used as-is, but as a reference for how to deploy self-hosted Sentry around your existing infrastructure. This section can be used as a scaling strategy if you have higher traffic loads over time.
	This section contains reference architectures for self-hosted Sentry. These are not meant to be used as-is, but as a reference for how to deploy self-hosted Sentry around your existing infrastructure. This section can be used to create a scaling strategy if you have higher traffic loads over time.

[BYK]

Suggested change

	Please note that these reference architectures does not take into account external data storage dependencies such as Kafka, Postgres, Redis, S3 or other services. If you wish to do so, refer to the [Experimental Configurations](/self-hosted/experimental/) section
	Please note that these reference architectures do not take external data storage dependencies into account such as Kafka, Postgres, Redis, S3, etc. If you wish to do so, refer to the [Experimental Configurations](/self-hosted/experimental/) section

[BYK]

Suggested change

	Sentry SaaS uses a similar setup for their ingestion servers, behind Google Anycast IP address.
	Sentry SaaS uses a similar setup for its ingestion servers, behind Google Anycast IP addresses.

[BYK]

Suggested change

It is highly recommended to put an external load balancer (or reverse proxy) in front of your self-hosted Sentry deployment. That way, you can tweak on rate limiting, TLS termination, and other features that does not change the built-in nginx configuration file. It is recommended to install the load balancer on your host machine instead of as a Docker container. Doing this way helps you in the event of Docker engine failure.

It is highly recommended to put an external load balancer (or reverse proxy) in front of your self-hosted Sentry deployment. That way, you can tweak rate limiting, TLS termination, and other features and do not change the default `nginx` configuration file. It is recommended to install the load balancer directly on your host machine instead of running in a Docker container. This protects you against a Docker engine failure.

[BYK]

Suggested change

If using external load balancer is not possible, you can put it as a Docker container, pointing to the `nginx` service at port `80`. Whatever value you put on your `SENTRY_BIND` environment variable won't matter.