Networking Advanced

What is Overlay Network?

A virtual network built on top of an existing physical network, enabling features like container networking and VPNs.

Overlay networks create logical network topologies independent of the underlying physical infrastructure. They encapsulate packets from the overlay network inside packets of the underlay network (tunneling). Technologies include VXLAN (extending Layer 2 across Layer 3 boundaries), WireGuard/IPsec (VPN tunnels), and container networking (Flannel, Calico, Weave). In Kubernetes, overlay networks enable pods on different physical hosts to communicate as if on the same LAN. Benefits include network isolation, simplified addressing, and infrastructure independence. The trade-off is encapsulation overhead reducing effective MTU and adding latency.

Learn More About This Topic

Linux Networking Fundamentals

Related reading

Network Fundamentals

Related reading

Network Security Basics

Related reading

Related Terms

DNS over HTTPS (DoH)

A protocol that encrypts DNS queries by sending them over HTTPS, preventing eavesdropping and manipulation of DNS traffic.

Network Segmentation

The practice of dividing a network into isolated segments to improve security, performance, and management.

A device or software that distributes network traffic across multiple servers to ensure reliability and performance.

DNS (Domain Name System)

A hierarchical naming system that translates human-readable domain names into IP addresses.

NAT (Network Address Translation)

A method of mapping private IP addresses to public IP addresses, allowing multiple devices to share a single public IP.

VPN (Virtual Private Network)

A technology that creates an encrypted tunnel between your device and a remote server, securing internet traffic.

View All Networking Terms →