Raised This Month: $40 Target: $400
 10% 

Ddos on server


Post New Thread Reply   
 
Thread Tools Display Modes
ish12321
Veteran Member
Join Date: May 2016
Old 01-30-2018 , 12:32   Re: Ddos on server
Reply With Quote #11

Hey guys,
My server is getting TSource Query Floods. Rate limiting doesnt helps as that makes server appear offline but just allows to stop lag to those who playing however ddos ends hours so on map change server gets empty. I find query cache an option.

https://forum.i3d.net/threads/hlds-s....157942/page-2
Here is a script for query caching which as per me could help us but the script is old and so no more functional. Does anyone have enough knowledge and could please spare some of his time to fix it?

Please if possible also make it like during too many incoming packets (suspected ddos) do query cache interval to 5secs while in normal 1secs maybe?

Please help..

I read OVH site. For TSource Query Floods they also use query caching but with their own high quality hardware which could handle too much. My server could atleast be able to handle basic such floods.

NOTE : Each packet is from.different IP (spoofed)
__________________
['O|s|G'] | Death Wins a.k.a Ish Chhabra was here
ish12321 is offline
ish12321
Veteran Member
Join Date: May 2016
Old 01-30-2018 , 12:33   Re: Ddos on server
Reply With Quote #12

Quote:
Originally Posted by joropito View Post
If the attack don't overload your connection but affects your HLDS stability, you could try filtering using iptables.
As I see your capture, they're using more than 5k bots doing A2S_INFO attack.
Best thing you can try is to rate-limit A2S_INFO packets to avoid high cpu usage on your hlds.


Any action you may take on the server could not stop nor avoid connection overload.
Query caching could help as per my knowledge.
__________________
['O|s|G'] | Death Wins a.k.a Ish Chhabra was here
ish12321 is offline
ish12321
Veteran Member
Join Date: May 2016
Old 01-30-2018 , 12:45   Re: Ddos on server
Reply With Quote #13

Quote:
Originally Posted by brlight View Post
OVH , check their Website
Not available in our country
__________________
['O|s|G'] | Death Wins a.k.a Ish Chhabra was here
ish12321 is offline
balonfx
AlliedModders Donor
Join Date: Dec 2013
Location: New Haven, CT
Old 01-31-2018 , 20:21   Re: Ddos on server
Reply With Quote #14

Check out x4b, you can try or check out gre tunneling.
__________________
balonfx is offline
ish12321
Veteran Member
Join Date: May 2016
Old 02-03-2018 , 00:47   Re: Ddos on server
Reply With Quote #15

Quote:
Originally Posted by balonfx View Post
Check out x4b, you can try or check out gre tunneling.
Not in our country. Will rise ping tremendously. :/
__________________
['O|s|G'] | Death Wins a.k.a Ish Chhabra was here
ish12321 is offline
aron9forever
Veteran Member
Join Date: Feb 2013
Location: Rromania
Old 02-05-2018 , 17:08   Re: Ddos on server
Reply With Quote #16

is it a linux server? do you have access to SSH?
__________________
Meanwhile, in 2050:
Quote:
Originally Posted by aron9forever
useless small optimizations
Quote:
Originally Posted by Black Rose View Post
On a map that is 512x512x128 units you end up with 3,355,443,200,000 different "positions". To store each one of those positions individually in the variable "user_or" you need 12 terabytes of memory.
aron9forever is offline
ish12321
Veteran Member
Join Date: May 2016
Old 02-06-2018 , 11:35   Re: Ddos on server
Reply With Quote #17

Quote:
Originally Posted by aron9forever View Post
is it a linux server? do you have access to SSH?
Ubuntu. Yes, I've access to SSH
__________________
['O|s|G'] | Death Wins a.k.a Ish Chhabra was here
ish12321 is offline
aron9forever
Veteran Member
Join Date: Feb 2013
Location: Rromania
Old 02-13-2018 , 17:02   Re: Ddos on server
Reply With Quote #18

Quote:
Originally Posted by ish12321 View Post
Ubuntu. Yes, I've access to SSH
You can install csf (configserver security & firewalll) and configure it to limit max connections per address to 5 and also set a limit on specific ports (such as 27015). Limits can be set such that if a user opens too many connections in a certain interval (say 5 seconds) then they will be banned for the same interval. It worked wonders for stopping DoS attacks on my server

be very careful when setting it up, if you don't allow SSH ports for example you WILL lock yourself out of remote connections and your machine will have to be serviced unless you have KVM ofc


If it's really a DDoS (make sure you know what that means and implies) then there is nothing you can do on software side.
__________________
Meanwhile, in 2050:
Quote:
Originally Posted by aron9forever
useless small optimizations
Quote:
Originally Posted by Black Rose View Post
On a map that is 512x512x128 units you end up with 3,355,443,200,000 different "positions". To store each one of those positions individually in the variable "user_or" you need 12 terabytes of memory.
aron9forever is offline
ish12321
Veteran Member
Join Date: May 2016
Old 02-14-2018 , 05:17   Re: Ddos on server
Reply With Quote #19

Quote:
Originally Posted by aron9forever View Post
You can install csf (configserver security & firewalll) and configure it to limit max connections per address to 5 and also set a limit on specific ports (such as 27015). Limits can be set such that if a user opens too many connections in a certain interval (say 5 seconds) then they will be banned for the same interval. It worked wonders for stopping DoS attacks on my server

be very careful when setting it up, if you don't allow SSH ports for example you WILL lock yourself out of remote connections and your machine will have to be serviced unless you have KVM ofc


If it's really a DDoS (make sure you know what that means and implies) then there is nothing you can do on software side.

Already tried those actually. Would never work when each packet is from different IP. I dont use CSF but iptables directly.
__________________
['O|s|G'] | Death Wins a.k.a Ish Chhabra was here
ish12321 is offline
aron9forever
Veteran Member
Join Date: Feb 2013
Location: Rromania
Old 02-16-2018 , 20:36   Re: Ddos on server
Reply With Quote #20

Quote:
Originally Posted by ish12321 View Post
Already tried those actually. Would never work when each packet is from different IP. I dont use CSF but iptables directly.
each packet from different ip? are you sure it's not being spoofed?

sorry to hear that, sounds like a nightmare, nothing you can do about it except switch hosting providers, and even then, nobody offers real protection against fat DDoS for low prices
__________________
Meanwhile, in 2050:
Quote:
Originally Posted by aron9forever
useless small optimizations
Quote:
Originally Posted by Black Rose View Post
On a map that is 512x512x128 units you end up with 3,355,443,200,000 different "positions". To store each one of those positions individually in the variable "user_or" you need 12 terabytes of memory.
aron9forever is offline
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 21:12.


Powered by vBulletin®
Copyright ©2000 - 2018, vBulletin Solutions, Inc.
Theme made by Freecode