Well, thank you friends!
Ics - you helped a lot to find the source utility.
Now I'm trying to create iptables rules, and wrote this:
=
# DROP and ban
iptables -N REJECT_RCON_FLOOD
iptables -A REJECT_RCON_FLOOD -j LOG --log-prefix
Do you have a plugin to block DoS Attacks such as A2S_INFO Packet flood?
If not, I advice you to install DBlocker or a plugin called DAF Dos Attack
Fix.
See:
http://www.sourceop.com/modules.php?name=Downloadsd_op=viewdownloadcid=9
http://dblocker.didrole.com/
Hope it helps :/
On Tue, Oct 18,
Hi, firends!
Some our clients are under stupid attack by tcp packets with length 1480
bytes.
=
22:25:17.613625 IP (tos 0x0, ttl 124, id 5073, offset 0, flags [DF], proto
TCP (6), length 1480)
188.186.18.151.50325 188.64.170.100.27019: Flags [P.], cksum 0x3c63
(correct), seq
You're better off having your ISP/Host block this upstream on a firewall or
router. Doing this with iptables can be very resource intensive, and may
cause performance issues for your clients.
On Mon, Oct 17, 2011 at 3:15 PM, Никита Булаев [Nikita Bulaev]
djfireb...@gmail.com wrote:
Hi,
Lock tcp port and whitelist it only to certain users?
(or change the tcpport to another port)
Do you want to filter it with iptables because it's affecting the game?
Il 17/10/2011 21:15, ?? ?? [Nikita Bulaev] ha scritto:
Hi, firends!
Some our clients are under stupid attack by tcp
Additionally: set a very strict rate limiting to new connections (10new
connections every 20seconds?) and drop anything that's not estabilished...
Il 17/10/2011 21:15, ?? ?? [Nikita Bulaev] ha scritto:
Hi, firends!
Some our clients are under stupid attack by tcp packets with length
Looks much like some-prog-that-i-wont-say-out-loud-from-4chan-sute
output, with just modified message. Looks like idiots have found it and
started using it.
-ics
17.10.2011 23:09, Marco Padovan kirjoitti:
Additionally: set a very strict rate limiting to new connections (10new
connections
These packets don't really use up processing power, but they just take
over your link... Adding a rule to iptables that would drop the
connections wouldn't help. Sorry.
Sergiusz Bazański
xmpp: sergi...@q3k.org
www: http://q3k.org/
On Mon, Oct 17, 2011 at 10:30 PM, ics i...@ics-base.net wrote:
games servers use udp protocol, tcp is only useed for rcon so block any
tcp packet and only allow your client ips to make tcp queries.
Hi, firends!
Some our clients are under stupid attack by tcp packets with length 1480
bytes.
=
22:25:17.613625 IP (tos 0x0, ttl 124, id 5073,
Bloking tcp is useless too as that software which is used has option to
UDP on drop down menu too. I guess it won't hurt to try though if the
user is stupid.
-ics
17.10.2011 23:58, Andre Pozos kirjoitti:
games servers use udp protocol, tcp is only useed for rcon so block
any tcp packet and
...@list.valvesoftware.com] För ics
Skickat: den 17 oktober 2011 23:05
Till: Half-Life dedicated Linux server mailing list
Ämne: Re: [hlds_linux] DoS Attack to SRCDS with TCP packets
Bloking tcp is useless too as that software which is used has option to UDP
on drop down menu too. I guess it won't hurt to try though
11 matches
Mail list logo