box keeping up :)
50k packets dropped in just 15minutes....
Chain QUERYLIMIT (4 references)
pkts bytes target prot opt in out
source destination
346357 17999035 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0 limit: avg 15/sec burst 5 mode
dstport
12 604 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
20 minutes later:
Chain QUERYLIMIT (4 references)
pkts bytes target prot opt in out
source destination
396253 20611768 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0 limit: avg 15/sec burst 5 mode
dstport
50483 2675483 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
another box of ours that generally suffer a lot of is now reporting:
Chain QUERYLIMIT (4 references)
pkts bytes target prot opt in out
source destination
333352 16966756 ACCEPT all -- * *
0.0.0.0/0 0.0.0.0/0 limit: avg 15/sec burst 5 mode
dstport
563098 29844034 DROP all -- * *
0.0.0.0/0 0.0.0.0/0
dropped > accept ...
nobody complained yet... so looks like its holding :)
thanks for your suggestions <3
Il 07/01/2011 01:19, frostschutz ha scritto:
On Fri, Jan 07, 2011 at 12:36:10AM +0100, Marco Padovan wrote:
hashlimit was exactly what I needed!
Set it up correctly ... will see tomorrow what will happen :)
Great... :)
My own box runs without iptables and TF2 servers without mods.
No problems so far - I'm not running anything well known
(small clan and idle servers) so it seems the DoS is directed
to specific servers only... then again I probably wouldn't notice
as the clan servers are empty most of the time and the idlers
don't complain much.
Regards
frostschutz
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
