Hello everyone.
We are trying to solve a network “feature” trouble.
We are implementing gameservers in a large MAN. In this network we are acting as a ISP.
We have a RB1000 at our NOC where we have all our servers.
Now we have implemented “Game servers”. So, a regular customer of the MAN plug in to the ethernet port in the apartment. He get a 10.x.x.x/8 adress. First he create a local account within the MAN, after logon to the MAN he shift from the 10.x to a 172.16.x.x/16 adress. Now he get some default policys where hes able to connect to the portal and choose an ISP. But now they will also get a default policy that will route this internal network to our network.
This is done with VLAN so user will have layer 2 connectivity.
This is some of the story.
So now to the question. What we would like to do is make sure is that only validate user will be able to access our “gameserver” resources, they will be able to connect to our gameportal where they will create a account and they will recive a user/password. But since they have layer to connectivity we need to make sure they just dont connect our.network:27015 and game on. Does anyone have a approach on how to integrate this so they will only be able to use the resources when authentificated? Radius, PPPoE, Firewall, script?
Im more and willing to recive any approach on this matter.
Best regards
Goran