Competencies: Platforms & Products > Infrastructure Products

Infrastructure Products

Body of Knowledge

Topic	Description	Relevance	Career Tracks
VyOS Router/Firewall	Open-source network operating system for routing, firewalling, and VPN. Features include multi-VLAN routing, zone-based firewall, BGP/OSPF, IPsec VPN, DHCP, NAT, policy routing, and configuration versioning with rollback capabilities.	High	Network Engineer, Infrastructure Engineer, Home Lab Enthusiast
HashiCorp Vault	Secrets management platform providing PKI engine (root + intermediate CA), SSH-CA, KV v2 secrets, transit encryption engine, policy-based access control, AppRole authentication, token management, and audit logging.	Critical	DevSecOps Engineer, Security Engineer, Platform Engineer
BIND DNS Server	Authoritative and recursive DNS server administration including primary/secondary HA configuration, forward/reverse zones, zone transfers (AXFR/IXFR), forwarder configuration, logging, and rndc management.	High	Systems Administrator, Network Engineer, Infrastructure Engineer
Synology NAS	Network-attached storage administration including shared folders, NFS exports, user management, backup targets, and Docker package for container workloads. Covers DSM interface and storage management.	Medium	Systems Administrator, Home Lab Enthusiast, Storage Administrator
Infoblox IPAM/DNS	IP Address Management and DNS integration via API. Includes netapi module integration for network queries, NIOS grid concepts understanding, and automated IP allocation workflows.	High	Network Engineer, Infrastructure Engineer, Network Automation Engineer
Proxmox VE	Open-source virtualization platform, VM/container management, clustering, ZFS	High	Systems Administrator, Infrastructure Engineer, Home Lab Enthusiast
VMware vSphere	Enterprise virtualization, vCenter, ESXi, vMotion, DRS, HA, vSAN	High	Systems Administrator, Infrastructure Engineer
Nutanix	Hyperconverged infrastructure, Prism, AHV, storage optimization	Medium	Infrastructure Engineer, Data Center Engineer
NetBox	Network documentation, IPAM, DCIM, rack diagrams, cable management	High	Network Engineer, Infrastructure Engineer
Ansible Tower/AWX	Automation platform, job templates, workflows, inventories, credentials	High	DevOps Engineer, Infrastructure Engineer
Terraform Cloud	Remote state management, workspaces, policy enforcement, VCS integration	High	DevOps Engineer, Platform Engineer

Topic

Description

Relevance

Career Tracks

VyOS Router/Firewall

Open-source network operating system for routing, firewalling, and VPN. Features include multi-VLAN routing, zone-based firewall, BGP/OSPF, IPsec VPN, DHCP, NAT, policy routing, and configuration versioning with rollback capabilities.

High

Network Engineer, Infrastructure Engineer, Home Lab Enthusiast

HashiCorp Vault

Secrets management platform providing PKI engine (root + intermediate CA), SSH-CA, KV v2 secrets, transit encryption engine, policy-based access control, AppRole authentication, token management, and audit logging.

Critical

DevSecOps Engineer, Security Engineer, Platform Engineer

BIND DNS Server

Authoritative and recursive DNS server administration including primary/secondary HA configuration, forward/reverse zones, zone transfers (AXFR/IXFR), forwarder configuration, logging, and rndc management.

High

Systems Administrator, Network Engineer, Infrastructure Engineer

Synology NAS

Network-attached storage administration including shared folders, NFS exports, user management, backup targets, and Docker package for container workloads. Covers DSM interface and storage management.

Medium

Systems Administrator, Home Lab Enthusiast, Storage Administrator

Infoblox IPAM/DNS

IP Address Management and DNS integration via API. Includes netapi module integration for network queries, NIOS grid concepts understanding, and automated IP allocation workflows.

High

Network Engineer, Infrastructure Engineer, Network Automation Engineer

Proxmox VE

Open-source virtualization platform, VM/container management, clustering, ZFS

High

Systems Administrator, Infrastructure Engineer, Home Lab Enthusiast

VMware vSphere

Enterprise virtualization, vCenter, ESXi, vMotion, DRS, HA, vSAN

High

Systems Administrator, Infrastructure Engineer

Nutanix

Hyperconverged infrastructure, Prism, AHV, storage optimization

Medium

Infrastructure Engineer, Data Center Engineer

NetBox

Network documentation, IPAM, DCIM, rack diagrams, cable management

High

Network Engineer, Infrastructure Engineer

Ansible Tower/AWX

Automation platform, job templates, workflows, inventories, credentials

High

DevOps Engineer, Infrastructure Engineer

Terraform Cloud

Remote state management, workspaces, policy enforcement, VCS integration

High

DevOps Engineer, Platform Engineer

Personal Status

Topic	Level	Evidence	Active Projects	Gaps
VyOS Router/Firewall	Advanced	Home lab router/firewall — multi-VLAN routing, zone-based firewall, BGP/OSPF, IPsec VPN, DHCP, NAT, policy routing; configuration versioning and rollback	Infrastructure Operations	No VyOS HA (VRRP) production deployment, no VyOS API automation
HashiCorp Vault	Advanced	Vault server deployment — PKI engine (root + intermediate CA), SSH-CA, KV v2, transit engine; policies, AppRole auth, token management, audit logging	Secrets Vault	No Vault Enterprise, no auto-unseal (AWS KMS/Azure Key Vault), no Vault agent
BIND DNS Server	Advanced	BIND9 primary/secondary HA — forward zones, reverse zones, zone transfers (AXFR/IXFR), forwarder configuration, logging, rndc management	Infrastructure Operations, DNS Reference	No DNSSEC signing, no DNS views for split-horizon beyond basic config
Synology NAS	Intermediate	NAS deployment — shared folders, NFS exports, user management, backup targets, Docker package for container workloads	Infrastructure Operations	No Synology HA, no SHR advanced features, no Surveillance Station
Infoblox IPAM/DNS	Intermediate	IPAM/DNS integration via API; netapi Infoblox module for network queries; understand NIOS grid concepts	netapi	No Infoblox administration, no grid management, no DHCP failover configuration

Topic

Level

Evidence

Active Projects

Gaps

VyOS Router/Firewall

Advanced

Home lab router/firewall — multi-VLAN routing, zone-based firewall, BGP/OSPF, IPsec VPN, DHCP, NAT, policy routing; configuration versioning and rollback

Infrastructure Operations

No VyOS HA (VRRP) production deployment, no VyOS API automation

HashiCorp Vault

Advanced

Vault server deployment — PKI engine (root + intermediate CA), SSH-CA, KV v2, transit engine; policies, AppRole auth, token management, audit logging

Secrets Vault

No Vault Enterprise, no auto-unseal (AWS KMS/Azure Key Vault), no Vault agent

BIND DNS Server

Advanced

BIND9 primary/secondary HA — forward zones, reverse zones, zone transfers (AXFR/IXFR), forwarder configuration, logging, rndc management

Infrastructure Operations, DNS Reference

No DNSSEC signing, no DNS views for split-horizon beyond basic config