OpenNHP is a software-defined perimeter controller designed to secure network infrastructure by rendering services invisible to the public internet. It functions as a zero-trust network access gateway, ensuring that network resources remain hidden from unauthorized discovery and automated scanning tools until a client successfully verifies their identity.
The system enforces security through a combination of cryptographic identity verification and dynamic firewall orchestration. By requiring a cryptographically signed packet to initiate a connection, the platform keeps all network ports in a closed or dropped state. Only after the identity is validated does the infrastructure adjust its filtering rules to grant access, effectively removing exposed IP addresses, open ports, and DNS records from public view.
This approach facilitates private service discovery by ensuring that no network infrastructure becomes reachable or discoverable until the authentication process is complete. The project provides a framework for maintaining ephemeral infrastructure exposure, where resources are only accessible for the duration of an active, verified session.
