38 lines
2.2 KiB
Markdown
38 lines
2.2 KiB
Markdown
# Web Gateway
|
|
|
|
The Web Gateway is a mechanism to connect private networks to the open Internet in such a way that there is no direct connection between the Internet and the secure workloads running in the ZMachines.
|
|
|
|
![](img/webgateway.jpg)
|
|
|
|
### Key Benefits
|
|
|
|
- Separation between where compute workloads are and where services are exposed
|
|
- Redundancy: Each app can be exposed on multiple web gateways at once
|
|
- Support for many interfaces
|
|
- Helps resolve shortage of IPv4 addresses
|
|
|
|
### Implementation
|
|
|
|
Some 3Nodes support gateway functionality (this is configured by the farmers). A 3Node with gateway configuration can then accept gateway workloads and forward traffic to ZMachines that only have Planetary Network or IPv6 addresses.
|
|
|
|
The gateway workloads consist of a name (prefix) that first needs to be reserved on the blockchain. Then, the list of backend IPs. There are other flags that can be set to control automatic TLS (please check Terraform documentation for the exact details of a reservation).
|
|
|
|
Once the 3Node receives this workload, the network configures proxy for this name and the Planetary Network IPs.
|
|
|
|
### Security
|
|
|
|
ZMachines have to have a Planetary Network IP or any other IPv6 (IPv4 is also accepted). This means that any person connected to the Planetary Network can also reach the ZMachine without the need for a proxy.
|
|
|
|
So it's up to the ZMachine owner/maintainer to make sure it is secured and that only the required ports are open.
|
|
|
|
### Redundant Network Connection
|
|
|
|
![](img/redundant_net.jpg)
|
|
|
|
### Unlimited Scale
|
|
|
|
![](img/webgw_scaling.jpg)
|
|
|
|
The network architecture is a pure scale-out network system. It can scale to unlimited size, there is simply no bottleneck. Network "supply" is created by network farmers, and network "demand" is done by TF Grid users.
|
|
|
|
Supply and demand scale independently. For supply, there can be unlimited network farmers providing web gateways on their own 3Nodes, and unlimited compute farmers providing 3Nodes for compute and storage. The demand side is driven by developers creating software that runs on the grid, system integrators creating solutions for enterprises, and so on. Globally, there is exponentially-growing demand for data processing and storage use cases. |