Raised This Month: $ Target: $400
 0% 

Block ddos steam Fail2Ban


Post New Thread Reply   
 
Thread Tools Display Modes
Author Message
thetwistedpanda
Good Little Panda
Join Date: Sep 2008
Old 10-26-2009 , 01:26   Re: Block ddos steam Fail2Ban
Reply With Quote #1

zeroibis, a Windows solution may be to block ping requests from being sent to your server (windows firewall perhaps). Might not have the same effect, but it seems to have worked for me.
thetwistedpanda is offline
Knight Vision Systems
New Member
Join Date: Mar 2011
Old 03-21-2011 , 22:13   Re: Block ddos steam Fail2Ban
Reply With Quote #2

Group,

I'm trying to understand 1) how to implement this, 2) how this works.

In the IP Tables rules, the following is presented,

Code:
iptables -A INPUT -i eth0 -p udp --dport your_port -m length --length 28 -j REJECT_FLOOD28
Does the "your_port" part mean, the ports which my game servers are on? For example, 27015, 27016, etc?

Also, what part does the fail2ban program play in the equation?

Much thanks in advance!
Knight
Knight Vision Systems
http://www.knightvisionsystems.com
Knight Vision Systems is offline
Ubunter
New Member
Join Date: Nov 2013
Old 11-17-2013 , 13:35   Re: Block ddos steam Fail2Ban
Reply With Quote #3

Quote:
Originally Posted by Knight Vision Systems View Post
Group,

Code:
iptables -A INPUT -i eth0 -p udp --dport your_port -m length --length 28 -j REJECT_FLOOD28
Does the "your_port" part mean, the ports which my game servers are on? For example, 27015, 27016, etc?
Hi, sorry for late intervention, i just was googling, and arrived here...

Yes, here is to monitorize the port, but I have removed the port, to monitorize all, even, in my server I have just 5060, and 443 open... But I did:

Quote:
iptables -A INPUT -i eth0 -p udp -m length --length 28 -j
But I have a question:

In the jail conf, I'm missing the action, dose the action should be to deliver back to the iptables?? I have did:

Quote:
[ddos]
enabled = true
#port = 27015,27025,27050,28000,29000 ## I comminted out the port, to monitor all ports!
protocol = udp
filter = ddos
logpath = /var/log/messages
maxretry = 2
bantime = 60000
action = iptables[name=ddos-404-SLT] ## Dose this action here is correct??
Thank you in advance!
Ubunter is offline
Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 18:05.


Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
Theme made by Freecode