1. The "Steam stuff" rule is strange. Do you have something that listens on 1200 port?
2. You should block RCON access, not accept it. There's an exploit out there, but I don't know yet how it works. Probably the server is flooded with RCON connections and after few seconds it won't be able to open any file... 3. I did some tests ~1 week ago and the result was that TF2 servers are not anymore vulnerable to 0 byte packets, so the rules for UDP packets with 28 bytes can be dropped. Maybe somebody can confirm this... 4. You shouldn't block all UDP packets having 46 bytes (18 bytes for data) because probably there can be many valid packets with this size sent by clients to servers. Anyway is not so bad because there's an "ESTABLISHED,RELATED" rule before this. 5. Both "anti-flood" rules are listed after "ESTABLISHED,RELATED" one, so somebody can send a 20 bytes packet for example and then can flood you without problems with packets having 28 or 46 bytes (because they will be for an established/related connection). 6. You also host a DNS server (53 port)? If not then the rule is useless. 7. If you host a HTTP server then use "--dport" instead "--sport" on the last rule. But the most important thing is that by default all incoming traffic is blocked ($IPT -P INPUT DROP), but there are no rules to accept the incoming traffic for 27015/27016 or whatever ports are used by your servers. I hope you're not playing with the rules from a remote location :) -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Michael Johansen Sent: Tuesday, January 31, 2012 4:47 PM To: [email protected] Subject: Re: [hlds_linux] No Steam Logon - massive lag Anyhow, I made some iptables rules (made, found them on the interwebzz) but they seem to block everything, servers not showing up, cant connect and so on. I'm not experienced in iptables and I have no knowledge of it, so could you guys help fix it? http://pastebin.com/pfJKwaBD > From: [email protected] > To: [email protected] > Date: Tue, 31 Jan 2012 08:29:56 +0100 > Subject: Re: [hlds_linux] No Steam Logon - massive lag > > > I just ran -verify_all -retry on all the servers, it did not update anything (didn't find any updates), and I can confirm that it does show my public IP on all the servers. It does also show that it successfully connected to the servers and logged in to the gameserver account. Yesterday I was "attacked" atleast 10 times, where every one of my servers went down with the dreaded connection problem message and when they got up everyone dropped due to "No Steam Logon", me and a friend was trying to go trough the .cap files yesterday, we couldn't find anything unusual but I did block a few IP's with no success. > > > From: [email protected] > > To: [email protected] > > Date: Tue, 31 Jan 2012 00:20:37 +0000 > > Subject: Re: [hlds_linux] No Steam Logon - massive lag > > > > Steam auth sometimes gets the blame when in fact the problem is just a plain-old-fashioned client timeout. We have changed the messaging recently to make this more clear, but if you are running old binaries. > > > > I do seem to remember that we fixed a similar DoS attack recently. > > > > Can you confirm that you are running the latest binaries? When you boot your server, does it spit out your public IP next to the message when your server connects to Steam? Can you verify your files and make sure it doesn't pull anything down? > > > > Your humble servant, > > - Fletch > > > > -----Original Message----- > > From: [email protected] [mailto:[email protected]] On Behalf Of Michael Johansen > > Sent: Saturday, January 28, 2012 7:25 AM > > To: [email protected] > > Subject: [hlds_linux] No Steam Logon - massive lag > > > > > > Hi guys, > > I'm running 6 TF2 servers which are quite popular. Anyhow, my server laggs, badly sometimes, and right after the spike a lot of players d/c with the "No Steam Logon" message. This is not related to a machine or any plugins I am running. This has happened a lot of times now, and I'm sick of it. What is wrong and why is it happening? Me and a friend were playing on two of our servers when we both lag out (red message in the top right corner) and then it stops and returns to normal, but half of the players are now gone. > > Help? > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list archives, please visit: > > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > > > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list archives, please visit: > > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, please visit: > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux
