Subnet — Technology Wiki

Overview

Direct Answer

A subnet is a logical partition of an IP network created by applying a subnet mask to divide a larger network address space into smaller, manageable segments. This segmentation enables organisations to control traffic flow, enforce security policies, and optimise routing efficiency within their infrastructure.

How It Works

Subnetting uses a subnet mask (e.g., 255.255.255.0) applied to an IP address to determine which portion identifies the network and which identifies individual hosts. Devices calculate whether another IP address belongs to the same subnet by performing a bitwise AND operation between the IP address and the mask; only devices in the same subnet can communicate directly without routing intervention.

Why It Matters

Subnetting reduces broadcast domains, minimising unnecessary network traffic and improving performance across large deployments. It enables granular access control policies, supports compliance requirements by isolating sensitive systems, and simplifies network administration by creating logical groupings aligned with organisational departments or functions.

Common Applications

Enterprise data centres use subnetting to separate production, development, and administrative networks. Healthcare organisations subnet patient data networks from general office networks to meet regulatory isolation requirements. Educational institutions partition networks by campus, faculty, and student access levels.

Key Considerations

Excessive subnetting fragments address space and increases routing complexity; conversely, insufficient subnetting undermines security boundaries and creates broadcast congestion. IP address planning must balance current requirements with future growth capacity.

Related in Protocols & Standards

Computer Network

A collection of interconnected computing devices that share resources and communicate using standardised protocols.

TCP/IP

Transmission Control Protocol/Internet Protocol — the fundamental communication protocol suite powering the internet.

HTTP

Hypertext Transfer Protocol — the application-layer protocol for transmitting hypermedia documents on the World Wide Web.

HTTPS

HTTP Secure — an encrypted version of HTTP using TLS for secure communication over the internet.

DNS

Domain Name System — the hierarchical system that translates human-readable domain names into numerical IP addresses.

IP Address

A unique numerical label assigned to each device connected to a computer network for identification and routing.

IPv6

The most recent version of the Internet Protocol, providing a vastly larger address space than IPv4.

Software-Defined Networking

An approach to networking that uses software-based controllers to manage network behaviour centrally.

Wi-Fi 6

The sixth generation of Wi-Fi technology offering improved speed, capacity, and performance in dense environments.

Network Latency

The time delay between sending and receiving data across a network, measured in milliseconds.

Bandwidth

The maximum rate of data transfer across a network path, typically measured in bits per second.

Throughput

The actual rate of successful data transfer across a network in a given time period.

More in Networking & Communications

VPN

Infrastructure

Virtual Private Network — a technology creating a secure, encrypted connection over a less secure network like the internet.

SD-WAN

Infrastructure

Software-Defined Wide Area Network — a virtualised network architecture that enables centralised management of geographically distributed networks.

DHCP

Protocols & Standards

Dynamic Host Configuration Protocol — automatically assigns IP addresses and network configuration to devices.

Network Resilience

Protocols & Standards

The ability of a network to maintain acceptable service levels despite faults, challenges, and threats.

VLAN

Infrastructure

Virtual Local Area Network — a logical grouping of network devices that communicate as if on the same physical network.

mTLS

Protocols & Standards

Mutual Transport Layer Security — a protocol where both client and server authenticate each other using certificates.

Quality of Service

Protocols & Standards

Network management techniques that prioritise certain types of traffic to ensure consistent performance.

Network Function Virtualisation

Cloud Networking

Replacing dedicated network hardware with software running on commodity servers.