Amazon Gamelift: How to tell what VPC the servers are running in - Verifying Servers' access to backend services

0

Hello,

An expansion to an original question: https://repost.aws/questions/QU0MPwSTJGQhKDcl9Zw1e_zQ/aws-game-lift-server-best-solution-for-generating-and-rotating-api-keys-for-aws-server-authentication

Is there a way to find which VPC and addresses the individual game servers are running on within Gamelift?

Actually, in writing this, I found this thread as well: https://repost.aws/questions/QUoLdwDhJRSCy4EhLSJwzvxw/running-a-proxy-process-on-gamelift

We are just trying to make sure that certain calls to our backend services originate from within the actual servers running within game lift and not via an outside client. UE4 packages the server and client code together, so we just want an extra layer of security check.

1개 답변
0

GameLift is running in a VPC owned and managed by the service. This VPC is not visible in your AWS account. If you have a need to enable private connectivity between the GameLift server fleets and backend running in your own VPC you can then use VPC Peering. This lets you connect to your backends using private IP addresses.

UE4 doesn't package the server and client code together if you don't want to. In my understanding there is a way to separate server-only code from the client code. Allowing you to define the what kind of build you are doing and what parts of code is even included. I believe the terminology in UE4 is Cook and Packaging. When searching UE Dev Community forums I found at least one post describing how to disable server-only code from client builds.

Even without splitting the code, your Client to Game Server backend should be secured by using known methods such as Oauth and JWTs. As for your server to backend communicate you could use shared secret or some other method to validate that it's a server under your control calling and not something else on the internet.

profile pictureAWS
전문가
Toni_S
답변함 일 년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠