RCON Brute-force... WITH A TWIST!
Another community is taking a list of IPs that connect to their servers, and spoofing RCON commands with this list of IP addresses against our servers - causing Sourcemod to automatically ban their IP.
Has anyone ran into this before? Disabling RCON for us unfortunately is not an option. |
Re: RCON Brute-force... WITH A TWIST!
Is whitelisting by IP an option?
|
Re: RCON Brute-force... WITH A TWIST!
You can't spoof RCon packet addresses; RCon goes over TCP. Additionally, SourceMod itself does not do any such automatic banning.
It's possible that they are spoofing game traffic (UDP) from those addresses and that the engine or something else is banning them. RCon and game traffic share the same ban list for IP bans. |
Re: RCON Brute-force... WITH A TWIST!
Quote:
|
Re: RCON Brute-force... WITH A TWIST!
|
Re: RCON Brute-force... WITH A TWIST!
Quote:
|
All times are GMT -4. The time now is 07:15. |
Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.