• Ddos what to do?
    9 replies, posted
A friend of mine runs a server. For the past week or so he has been attacked with ddos. The host daemon servers sold him "ddos protection" for an increased fee. The attacks continued, the host is still closing the server down due to "going over protection" limit. It seems host won't take any further measures to somehow block the ip or actually stop the attacks. Instead just close the server every time an attack begins. There has been an attack everyday. What is there which can be done? Could daemon servers be doing any more to help the server? My friend is starting to lose hope.
It's disgusting that this happens to successful server simply because they can't take loss. As thejjokerr said there is no way to stop it completely although if you can find whom is ordering/doing these attacks they can be reported to the police or if the server is fairly large get some revenge. There are some things you can do to prevent this from happening although none are 100% full-proof such as proxies, vpns, etc. Personally I think a new start might be the way forth if you can do nothing although that means losing all progress, which isn't really appropriate.
Switch hosts? NFO has decent protection for the most part, there's some stuff you're going to have to block yourself / with their firewall panel.
[QUOTE=Lerpaderp;41835257]Switch hosts? NFO has decent protection for the most part, there's some stuff you're going to have to block yourself / with their firewall panel.[/QUOTE] Actually with NFO I have never had to use their firewall and they clarified the attacks as a DDoS attack
[QUOTE=mdeceiver79;41834304]A friend of mine runs a server. For the past week or so he has been attacked with ddos. The host daemon servers sold him "ddos protection" for an increased fee. The attacks continued, the host is still closing the server down due to "going over protection" limit. It seems host won't take any further measures to somehow block the ip or actually stop the attacks. Instead just close the server every time an attack begins. There has been an attack everyday. What is there which can be done? Could daemon servers be doing any more to help the server? My friend is starting to lose hope.[/QUOTE] Talk directly to Shepsie? [url]http://steamcommunity.com/id/shepsie[/url]
[QUOTE=Velocity;41835563]Actually with NFO I have never had to use their firewall and they clarified the attacks as a DDoS attack[/QUOTE] Thanks for this NFO thing. I will tell him to look into it if daemonservers continue as they are, I know they're trying but it just seems like there could be more. If its this easy to keep a server down I don't understand how any community manages to survive. [editline]14th August 2013[/editline] [QUOTE=Steven :D;41835627]Talk directly to Shepsie? [url]http://steamcommunity.com/id/shepsie[/url][/QUOTE] As far as I know he is talking to Shepsie and has been for a while. When the issue first start it was suggested to upgrade to "ddos" protection which did absolutely nothing. Maybe I'm naive but it seems like a bit of a con if they just close the server anyway. Thanks for the info guys UPDATE: Reply from daemon servers They seemed very reasonable [QUOTE]1 Gbps is the highest level of protection we currently offer. We're working our way to 10 Gbps but that is a massive financial step up for us (£1000+ pm). I appreciate you've paid for 1 Gbps DDoS protection but unfortunately the attack that you were hit with took the datacentre's switch offline (see attached). Due to the nature of a Distributed Denial of Service attack, your IP is getting hit by hundreds or thousands of different IPs which make them virtually impossible to block without extremely expensive hardware (£50,000+ per switch).[/QUOTE] "unfortunately the attack that you were hit with took the datacentre's switch offline" Is this type of thing a common occurrence in gmod now?
[QUOTE=mdeceiver79;41837365] "unfortunately the attack that you were hit with took the datacentre's switch offline" Is this type of thing a common occurrence in gmod now?[/QUOTE] Not unless you make someone very, very angry. :v:
[QUOTE=mdeceiver79;41837365] UPDATE: Reply from daemon servers They seemed very reasonable "unfortunately the attack that you were hit with took the datacentre's switch offline" Is this type of thing a common occurrence in gmod now?[/QUOTE] Ask him for the size of the hit and let us know what he says. 10Gbps+ hits are actually more common these days but with nothing else to go on other then guessing it could be anything.
[QUOTE=darksoul69;41837942]Ask him for the size of the hit and let us know what he says. 10Gbps+ hits are actually more common these days but with nothing else to go on other then guessing it could be anything.[/QUOTE] The server is on 1 GB line and the attack spiked to 979.41M, so the attack could be larger than this or exactly this however the IP was nllrouted due to the affect on the shared switch for the rack. Normally if the upgrade from 100mb to 1000mb doesnt prevent the attacks from taking the customer offline repeatedly we would consider refunding the customers remaining time as we can't provide connections greater than 1000mb. As within the UK it is very expensive to get a connection greater than 1GB. [IMG]http://i.imgur.com/usYaZba.png[/IMG] [IMG]http://i.imgur.com/dnnsuGg.png[/IMG]
Sorry, you need to Log In to post a reply to this thread.