# Client Networking

When users are attempting to connect to a resource through StrongDM, they are not entering the address and credentials for the resource, but rather an address that maps to the resource in StrongDM. During the request, if they are authorized to connect to the resource, StrongDM routes their traffic on and injects the correct credentials.

There are two available options for the routing of traffic locally on client machines. StrongDM, by default, uses a loopback interface, which uses a single local IP with different ports for various resources (and can be [expanded to a local IP block](/admin/clients/client-networking/loopback-ip-ranges.md)). This means that when a user opens their client and connects to a resource, that connection is being routed through a local IP address and a preconfigured port that the StrongDM listener is listening for connections on. The other option is [Virtual Networking Mode](/admin/clients/client-networking/virtual-networking-mode.md), which uses DNS names to route traffic locally on the client machine rather than specific IPs.

You can also [override the ports](/admin/resources/port-overrides.md) that clients access resources through, on their local machine, just as you can alter local IPs or DNS names.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.strongdm.com/admin/clients/client-networking.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.