Ok. By the way, you sure those rules worked and that they are infact the ones I get attacked with? iptables -L -n -v shows that it haven't dropped any packets, and the server did lag for a bit yesterday, still got to see if it affects the other servers tho.
> From: [email protected] > Date: Tue, 31 Jan 2012 18:38:48 -0500 > To: [email protected] > Subject: Re: [hlds_linux] No Steam Logon - massive lag > > You don't really need to have the same rules (lines 4-7, 8-11, 12-14) > duplicated for each port, iptables allows you to specify port ranges like > 27015:27019 so you can compact your rules down quite a bit. > > > > On Tue, Jan 31, 2012 at 11:46 AM, Michael Johansen <[email protected]> wrote: > > > > > This is what I've got so far. Should I consider locking everything down > > and use rules for everything? For now I run all three policies with ACCEPT > > and the rules below.http://pastebin.com/85vVtPM8 > > > > > From: [email protected] > > > Date: Tue, 31 Jan 2012 17:36:51 +0100 > > > To: [email protected] > > > Subject: Re: [hlds_linux] No Steam Logon - massive lag > > > > > > the RCON port definitely needs to be blocked or filtered: a SYN flood to > > > the RCON port will crash a linux srcds server after a while and make a > > > windows server lag to 3 fps until it stops > > > > > > On Tue, Jan 31, 2012 at 4:23 PM, hlds <[email protected]> wrote: > > > > > > > 2. You should block RCON access, not accept it. There's an exploit out > > > > there, but I don't know yet how it works. Probably the server is > > flooded > > > > with RCON connections and after few seconds it won't be able to open > > any > > > > file... > > > > > > > _______________________________________________ > > > To unsubscribe, edit your list preferences, or view the list archives, > > please visit: > > > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > > > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list archives, > > please visit: > > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > > > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, please > visit: > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux
