Recently I've had a user launching attacks on my servers, we are on a 1000mbit line, and the attack is using up approximatly 15% (~150megabit/sec). However it seems to be enough to flood out the srcds process and deny service even though we have more then enough resources to continue processing requests on the machine.
I've looked at many different factors, including examining the servers nic, for packets per second, which appears stable in these situations, I've looked at windows TCP/IP stack to see if I could notice any limitations. (I found threads on this all over google, but they were mainly for XP and were quite outdated, none directly helped in the situation). So I contacted our data-center to see if there was anything on their end that limited certain ports (eg. 27015) to a certain amount of packets per second, they promptly disregarded anything on their end managing port limits. So the question comes down to being, is srcds itself being overloaded by the connections? Anything over 110megabit/sec seems to drop the connectivity of srcds entirely, with the box being completely stable. If so, are there any tweaks I can do to allow SRCDS to use the entire line speed if needed to stay online? ( The switch we're on is a Juniper EX2200, which can easily handle the packets per second that we're seeing. ) Thanks for any help.
_______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
