Meraki

Community

Gaming with Meraki in an Enterprise Environment

BenjaminJ
Here to help
‎Aug 30 2021 1:39 PM
‎Aug 30 2021 1:39 PM

Gaming with Meraki in an Enterprise Environment

Hi everyone, I work for a non-profit that offers gaming services to guests. We use Meraki at our locations, but we ran into a problem. Meraki does not, and probably will never, support UPnP (at least from my understanding). The most common workaround I've seen is port forwarding, however I think that will add tons of administrative overhead. Some of our locations have 10+ consoles as well, so I'm not sure if port forwarding is even realistic at that scale. Has anyone had a similar situation or have any suggestions?

0 Kudos
6 Replies 6
DarrenOC
Kind of a big deal
Kind of a big deal
‎Aug 30 2021 1:57 PM
‎Aug 30 2021 1:57 PM

You’re correct that UPnP isn’t currently supported:

 

https://documentation.meraki.com/MX/Other_Topics/Universal_Plug_and_Play_(UPnP)_support

 

Could you physically separate the consoles via a DMZ and open your firewall accordingly 

Darren OConnor | doconnor@resalire.co.uk
https://www.linkedin.com/in/darrenoconnor/

I'm not an employee of Cisco/Meraki. My posts are based on Meraki best practice and what has worked for me in the field.
In response to DarrenOC
BenjaminJ
Here to help
‎Aug 31 2021 10:21 AM
‎Aug 31 2021 10:21 AM

I did consider that but wasn't quite sure. My thought was to get an extra static IP from the ISP and do a 1:1 NAT to a UPnP capable router that would host the consoles. But that seems like a problematic workaround to me as I'd still like to be able to track these clients in Meraki. Also, I've already thrown these clients into their own VLAN and tagged them with a special group policy that let's them bypass all outbound firewall rules. The problem is Xbox Live does peer-to-peer gaming for some things, and getting the inbound traffic to the right devices is difficult. Would a DMZ fix the inbound traffic issue? 

0 Kudos
Inderdeep
Kind of a big deal
Kind of a big deal
‎Aug 30 2021 2:33 PM
‎Aug 30 2021 2:33 PM

@BenjaminJ : Apart from what @DarrenOC  says 

https://documentation.meraki.com/MR/Other_Topics/Frequently_Asked_Questions_regarding_Cisco_Meraki_A... 

Inderdeep_0-1630359214744.png

 

Regards/Inder
Cisco IT Blogs awarded in 2020 & 2021
www.thenetworkdna.com
0 Kudos
jbright
A model citizen
‎Aug 30 2021 6:29 PM
‎Aug 30 2021 6:29 PM

 

You could also run the MX in passthrough mode.

https://documentation.meraki.com/MX/Networks_and_Routing/Passthrough_Mode_on_the_MX_Security_Applian...

When in passthrough mode, the MX is best used for in-line:

Layer 3/7 firewall rules, traffic shaping, and analysis
Network asset discovery and reporting
Intrusion detection
Security and content filtering

 

Something to think about...

In response to wawqas
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Sep 26 2022 12:21 PM
‎Sep 26 2022 12:21 PM

Yes, it definitely is (if used correctly)!

GermanChambers
New here
‎Apr 9 2023 11:09 AM
‎Apr 9 2023 11:09 AM

If your non-profit organization is using Meraki at your locations, and you're looking for a way to support UPnP for gaming services without using port forwarding, you may want to consider using a third-party solution such as a UPnP proxy or gateway. A UPnP proxy is a server or software that runs on a computer on the same network as the gaming devices and acts as a bridge between the devices and the router.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.