Networking

Summary An Access Control List (ACL) is an ordered set of rules attached to a resource that specifies which subjects (users, groups, source addresses, services)

Summary The control plane is the layer of a distributed system that takes decisions, stores configuration, and tells the data plane what to do. The data plane

Summary A mesh VPN is a VPN topology in which every authorised client builds direct, encrypted peer-to-peer connections to every other client. Only identity,

Summary NAT traversal is a collection of techniques that allow two endpoints sitting behind Network Address Translation (NAT) devices to establish a direct

Summary Peer-to-peer (P2P) is a network model in which participating nodes communicate directly with each other rather than through a central server,

Summary A reverse proxy is a server placed in front of one or more backend services. It accepts client requests on their behalf, applies cross-cutting concerns

Summary An SSL VPN is a remote-access VPN that wraps user traffic inside a TLS connection to a central concentrator. It became the dominant pattern for

Summary STUN (Session Traversal Utilities for NAT) is a lightweight protocol defined in RFC 8489 that lets a client behind a NAT learn the public IP address and

Summary TURN (Traversal Using Relays around NAT) is a protocol defined in RFC 8656 that relays traffic between two endpoints when a direct peer-to-peer path

Summary A VPN (Virtual Private Network) builds an encrypted tunnel between two endpoints over an untrusted network so that remote systems behave as if they were

Summary WireGuard is a modern open-source VPN protocol designed for simplicity, performance, and strong cryptography. It is built into the Linux kernel since

Summary An API (Application Programming Interface) is a defined contract that specifies how software components interact, enabling developers to use

Summary HashiCorp Boundary is an open-source access management tool that enables secure, identity-based remote access to hosts and services without requiring

Summary HashiCorp Consul is a distributed service networking platform that combines service discovery, health checking, a key-value store, and a service mesh to

Summary DHCP is a network protocol that automatically provides IP addresses, subnet masks, default gateways, and DNS server addresses to devices on a network,

Summary DNS is the hierarchical, distributed naming system that resolves domain names such as example.com into IP addresses, enabling users and applications to

Summary A firewall enforces access control between network segments by inspecting packets and applying rules that permit or deny traffic based on source,

Summary A Floating IP is a public IP address managed independently of a specific instance, allowing operators to move external reachability between instances

Summary HTTP (Hypertext Transfer Protocol) defines how clients and servers exchange web content, while HTTPS adds a TLS layer to encrypt that exchange and

Summary ICMP is a supporting protocol in the IP suite used to send error messages and operational information such as whether a host is reachable or a packet

Summary Load balancing is the practice of spreading client requests or network traffic across a pool of servers so that no single server becomes a bottleneck,