info_tfgrid/collections/tech/primitives/network/webgw.md
2024-08-06 17:33:59 +02:00

2.2 KiB

Web Gateway

The Web Gateway is a mechanism to connect private networks to the open Internet in such a way that there is no direct connection between the Internet and the secure workloads running in the Zero VMs.

Key Benefits

  • Separation between where compute workloads are and where services are exposed
  • Redundancy: Each app can be exposed on multiple web gateways at once
  • Support for many interfaces
  • Helps resolve shortage of IPv4 addresses

Implementation

Some 3Nodes support gateway functionality (this is configured by the farmers). A 3Node with gateway configuration can then accept gateway workloads and forward traffic to Zero VMs that only have Planetary Network or IPv6 addresses.

The gateway workloads consist of a name (prefix) that first needs to be reserved on the blockchain. Then, the list of backend IPs. There are other flags that can be set to control automatic TLS (please check Terraform documentation for the exact details of a reservation).

Once the 3Node receives this workload, the network configures proxy for this name and the Planetary Network IPs.

Security

Zero VMs have to have a Planetary Network IP or any other IPv6 (IPv4 is also accepted). This means that any person connected to the Planetary Network can also reach the Zero VM without the need for a proxy.

So it's up to the Zero VM owner/maintainer to make sure it is secured and that only the required ports are open.

Redundant Network Connection

Unlimited Scale

The network architecture is a pure scale-out network system. It can scale to unlimited size, there is simply no bottleneck. Network "supply" is created by network farmers, and network "demand" is done by TF Grid users.

Supply and demand scale independently. For supply, there can be unlimited network farmers providing web gateways on their own 3Nodes, and unlimited compute farmers providing 3Nodes for compute and storage. The demand side is driven by developers creating software that runs on the grid, system integrators creating solutions for enterprises, and so on. Globally, there is exponentially-growing demand for data processing and storage use cases.