Computer Networking and IT Services Industry Terminology

Enable AAA with RADIUS on the core switches; The VPN gateway defers to AAA for user logins; Audit AAA accounting logs to trace config changes.

Reconcile ITAM records with CMDB before decommissioning servers; Use ITAM to track license usage for audit; ITAM reports show underutilized switches we can redeploy.

We advertise our public prefixes to both ISPs via BGP; Apply BGP communities to influence upstream routing; Use BGP local preference to keep traffic on the primary circuit.

Offload static assets to the CDN to reduce origin load; Geo-restrict content using CDN policies; Enable CDN TLS termination for performance.

Submit a change request for the firewall firmware upgrade; CAB approved a maintenance window for the core switch cutover; Rollback plan is required for all high-risk changes.

Link the router CI to all dependent services in the CMDB; Use CMDB relationships to assess blast radius of a change; Auto-discover CIs from network scans into the CMDB.

Swing traffic through a scrubbing center during an attack; Enable BGP Flowspec to drop attack vectors; Always-on DDoS protection for our ecommerce site.

Reserve a DHCP lease for the printer’s MAC address; Scope exhaustion caused client connectivity issues; Use DHCP relay on the switch SVI to reach the server.

Add an A and AAAA record for the new API endpoint; Use split-horizon DNS for internal vs external names; Enable DNSSEC validation on resolvers.

Enforce TLS 1.2+ for all web apps; Encrypt backups at-rest with KMS-managed keys; Use IPsec tunnels for site-to-site links.

Block outbound SSH except for admins; Create an app-based rule for Office 365; Enable NGFW IPS signatures for CVE coverage.

Run firewalls in an active-standby HA pair; Deploy dual upstream ISPs for internet HA; Use database clustering for HA at the data tier.

Extend the network with IPsec to our VPC; Use consistent IAM across data center and cloud; Place latency-sensitive apps on-prem, burst stateless services to cloud.

Migrate VMs from on-prem to IaaS; Use autoscaling groups for web servers; Control egress costs with NAT gateway planning.

Federate SSO to SaaS apps with SAML/OIDC; Replace static keys with short-lived tokens; Review IAM roles quarterly for access creep.

Enable inline IPS on the data center edge; Tune IDS to reduce false positives; Send IDS alerts to the SIEM for correlation.

Enforce 802.1X on all access switch ports; Use MAB fallback for headless IoT devices; Tie 802.1X results to dynamic VLAN assignment.

Open a P1 incident for the WAN outage; Follow the major incident bridge protocol; Post-incident review identifies monitoring gaps.

Allocate a /24 for the new office; Use IPAM to avoid overlapping subnets; Sync IPAM with DHCP to reserve device addresses.

Align the service catalog to ITIL definitions; Implement ITIL problem management after recurring WAN failures; Measure incident SLAs per ITIL guidance.

Track MTTR as a KPI for the NOC; Set a KPI of 99.95% network availability; Monitor change success rate as a quality KPI.

Segment finance on a separate VLAN within the LAN; Upgrade to 10G uplinks in the LAN core; Enable portfast for access ports on the LAN.

Use L7 load balancing for path-based routing; Terminate TLS at the load balancer to offload servers; Enable sticky sessions for legacy apps.

Enforce MFA for VPN and admin portals; Replace SMS codes with authenticator apps; Use FIDO2 keys for phishing-resistant MFA.

Run L3VPN over the MPLS WAN; Use MPLS-TE for critical voice traffic; Migrate sites from MPLS to DIA plus SD-WAN.

Our MSP handles 24x7 network monitoring; The MSP contract includes patching and backups; Escalate network tickets to the MSP NOC.

Reduce MTTR with better runbooks; MTTR spiked after the router OS upgrade; Automate failover to improve MTTR.

Quarantine non-compliant laptops via NAC; Enforce posture checks for AV and patch levels; Apply dynamic VLANs based on NAC policy.

Configure PAT on the firewall for branch users; Use static NAT for the public web server; Implement NAT64 in IPv6-only segments.

Send NetFlow to the collector for analytics; Use sFlow on switches to sample traffic; Build dashboards from IPFIX fields like app and bytes.

The NOC handles first-line incident triage; NOC escalated a BGP flap to engineering; Staff the NOC during the maintenance window.

Divide the campus into OSPF Area 0 and Area 10; Tune OSPF cost to prefer the fiber path; Investigate OSPF adjacency drops on the core.

Use an internal PKI to sign device certificates; Rotate certificates before expiry; Enforce mutual TLS with client certs.

Mark voice with DSCP EF and prioritize; Apply QoS shaping on WAN egress; Police bulk transfers to protect interactive apps.

Migrate email to a SaaS suite; Enforce SSO and MFA for all SaaS apps; Review SaaS usage for license optimization.

Route branch traffic to the SASE fabric; Replace legacy VPN with SASE ZTNA; Apply DLP policies via SASE.

Bond DIA and LTE for active-active paths; Use application-aware routing for SaaS; Centralize configuration via the SD-WAN controller.

Push intent via the SDN controller; Automate VLAN provisioning with APIs; Use EVPN underlay with SDN overlays.

Forward firewall and IDS logs to the SIEM; Build correlation rules for brute-force attempts; Send SIEM alerts to the SOC for response.

The ISP SLA guarantees 99.9% uptime; Measure ticket response time against the SLA; Include penalties for missed SLAs in the MSA.

Poll interface counters via SNMP; Enable SNMPv3 with auth and priv; Use traps for link-down alerts.

The SOC runs 24x7 monitoring; SOC analysts triage SIEM alerts; The SOC coordinates incident response playbooks.

Compare MPLS vs SD-WAN on TCO, not just circuit price; Include support and egress fees in TCO; TCO modeling justified the firewall refresh.

Enforce TLS 1.2+ across all endpoints; Use mutual TLS between services; Monitor for weak ciphers in TLS handshakes.

Put IoT devices on an isolated VLAN; Trunk VLANs between access and distribution; Use private VLANs for tenant isolation.

Prioritize VoIP with QoS EF; Power IP phones with PoE; Troubleshoot VoIP jitter on the WAN link.

Deploy IPsec tunnels between branches; Offer SSL VPN for remote users; Replace legacy VPN with ZTNA where possible.

Replace MPLS with DIA plus SD-WAN; Monitor WAN latency and packet loss; Diversify WAN with 5G failover.

Enable 6 GHz SSIDs for low-interference channels; Use WPA3 for Wi‑Fi 6 security; Plan AP density for Wi‑Fi 6 OFDMA gains.

Replace flat networks with Zero Trust segmentation; Enforce continuous verification for admin access; Use ZTNA for app access instead of full-tunnel VPN.