Reverse proxy for rust server? - Rust

So i want to know if it is possible to get a reverse proxy for rust going, i bought one to test. I can connect via a browser to the live map. But i cannot connect via console ingame, it just says connecting. Is there anything i have to do to make it work?

Make sure the appropriate ports are open and forwarding. Why are you using a reverse proxy?

[QUOTE=Maximum Over;47663429]Make sure the appropriate ports are open and forwarding. Why are you using a reverse proxy?[/QUOTE] Server getting DDoSed, all the ports are open by default on the server. i can go on the livemap via the new reverse proxy IP but can't connect to server.

You'll need to make sure the ports are open on the proxy as well, not just the server. They'll also need to forward traffic to the server, if that hasn't explicitly been set up already. And you'll also need to make sure the server is configured to route through the proxy. Is your reverse proxy a standalone appliance, or is it an application on your server (ala LiteSpeed, varnish, etc)? If it's standalone, make sure your players are connecting to your proxy IP and not your server IP. Keep in mind that if your proxy IP gets attacked, your server will still go down. Adding a proxy will also increase latency. Proxies aren't automatically good defenses for DDOS protection; they need to be tuned for that purpose at least in general, and ideally for the type of attack you're facing. You might want to ask your GSP if they offer DDOS mitigation.

[QUOTE=Maximum Over;47664643]You'll need to make sure the ports are open on the proxy as well, not just the server. They'll also need to forward traffic to the server, if that hasn't explicitly been set up already. And you'll also need to make sure the server is configured to route through the proxy. Is your reverse proxy a standalone appliance, or is it an application on your server (ala LiteSpeed, varnish, etc)? If it's standalone, make sure your players are connecting to your proxy IP and not your server IP. Keep in mind that if your proxy IP gets attacked, your server will still go down. Adding a proxy will also increase latency. Proxies aren't automatically good defenses for DDOS protection; they need to be tuned for that purpose at least in general, and ideally for the type of attack you're facing. You might want to ask your GSP if they offer DDOS mitigation.[/QUOTE] I have a dedi server the rust server is on, they have ddos mitigation but it takes 10-15 minutes before it mitigates the attack. I bought reverse proxy from: [url]https://abbottsolutions.co.uk/proxy[/url] They said everything should be working, ive tried connecting through the IP/Port the gave me. But i couldn't. I can however connect in a browser to the ip/port to see the livemap.

I'd say check your port settings to ensure you're forwarding the correct ports. Failing that, you'll have to work with them for support. If Rust works without your proxy but breaks when you add it, that's a matter between you and your proxy vendor.

[QUOTE=Maximum Over;47664913]I'd say check your port settings to ensure you're forwarding the correct ports. Failing that, you'll have to work with them for support. If Rust works without your proxy but breaks when you add it, that's a matter between you and your proxy vendor.[/QUOTE] On my server, all ports are open by default. And i talked to the proxy vendor and everything should be fine. I don't know what the problem is :(

[QUOTE=Ephox;47665638]On my server, all ports are open by default.[/QUOTE] That's good, but I'm saying the ports [b]on the proxy[/b] need to be configured as well. Just having them open on your server isn't good enough.

[QUOTE=Maximum Over;47665875]That's good, but I'm saying the ports [b]on the proxy[/b] need to be configured as well. Just having them open on your server isn't good enough.[/QUOTE] How do i got about doing that? EDIT: That is already taken care of, as i said earlier. I can connect via the browser to the livemap which is on the same ip/port. But i can't connect ingame.

To rule out any interference from EAC, [I]temporarily[/I] switch your server to running in insecure mode (I believe the server command line option is [B]-insecure[/B]), and then run RustClient.exe directly (this bypasses loading EasyAntiCheat - this only allows you to see insecure servers). You may wish to whitelist access to your server while this is happening, because this does mean hackers will be more likely to join your server and there won't be any protection against them. I am willing to bet that this won't change anything and it still won't work, but there is the potential that EAC is spotting the proxy and killing the connection because it thinks there's some kind of funny business happening. It's only a theory, but it's simple enough to disprove.

What have you purchased from abbottsolutions exactly? They claim they'll protect a TCP application/port, which Rust isn't - Rust is a UDP application, making their proxy useless. I don't fully understand how reverse proxies work so I'm making assumptions: I don't think this will work for Rust/a Steam game. When you start the Rust server, it binds the local server to a local IP, and sends the binded IP to Steam which clients use to connect to it. I assume that a reverse IP isn't actually binded on your server, but rather, it forwards packets to another IP in a sequence such as: Internet > Reverse Proxy > Rust Server There isn't any server running on the reverse proxy IP, therefore clients can't connect to it.

[QUOTE=Ephox;47665997]EDIT: That is already taken care of, as i said earlier. I can connect via the browser to the livemap which is on the same ip/port. But i can't connect ingame.[/QUOTE] Livemap is running on the exact same port as Rust? Then I'm out of ideas. Just make 100% sure that the company providing the proxy is forwarding the appropriate ports; they may be assuming that you only want port 80 open, or something. Also make sure they're forwarding UDP traffic, not just TCP.

Ah its udp... i couldnt find any information on if it was udp or tco. I will see if i can find an UDP reverse proxy. EDIT: I couldn't find any that lets you use UDP ports. Does anyone have a cheap ddos protection for rust? The one my dedi came with takes 5min to detect and 10-15 min to mitigate. I need something that can protect for the first 20 minutes

[QUOTE=Ephox;47670002]Does anyone have a cheap ddos protection for rust?[/QUOTE] Avoid cheap protection. In my experience, "cheap DDOS protection" usually means they're doing something incredibly simple, like limiting pings to one per second per IP. Or dropping DNS returns. Or rate limiting each connecting IP. Some provide comprehensive protection, but impose sharp limits like 1 Gb/s of protection or 1000 packets per second. All of these things will technically protect you against some weak DDOS attacks, so they're technically not lying. But they are being borderline deceptive, since most people expect "DDOS protection" to mean "protected against a typical DDOS attack". Your basic run-of-the-mill bored-12-year-old script kiddie DDOS can easily exceed 10 Gb or tens of thousands of PPS. One might argue that weak protection is better than no protection. After all, a screen door is still useful even if it doesn't stop burglars, right? But that's not true at all when we're talking about DDOS protection. [B]If the attack exceeds the limits of the scrubbing, you'll see no benefit at all. You're going down.[/B] Worse, you're wasting your money and adding latency for inferior protection. I have no experience with or knowledge of the company you're using. However, at their price point, I wouldn't bother. That price point tells me that they aren't going to stand up to the type of attacks I deal with on a regular basis. Typically, good DDOS protection will run around $50 - $200 per IP per month based on your requirements and the level of protection you're getting. I've used a company called Limestone to spin up dedicated servers in the past. I know from experience that their DDOS protection offering ($50 / month for 20 Gb protection) is reliable and adds minimal latency. You should be able to get a DDOS-protected dedicated server (E3-1230) with plenty of power to run Rust for around $120 - $150 / month. There are many others, but I've worked with them extensively and can vouch for their awesomeness. Source: I do network security and disaster recovery for a living.

Completely agree with maximum over.. high 5 man.. i don't see many tech-saavy guys in here. I've been using servermania for my hosting for a year now and never had a problem.. (under permanent DDOS attacks due to the kind of service I offer) Best would be to rent a dedicated server (e3 1240v3) and get ddos protection.. Cheaper option is just a VPS with 4GB of ram who can perfectly host a RUST server.. Price is around 100USD for the dedicated.. not sure about the VPS but a lot cheaper Im sure.. edit, just checked: Intel Xeon E3-1220v1 |4x3.4 GHz | 8 GB DDR3 | 1 TB SATA or 120 GB SSD | 1 Gbps | $69 USD this is EXCELENT for game hosting..

[QUOTE=Tuks;47671340]Completely agree with maximum over.. high 5 man.. i don't see many tech-saavy guys in here. I've been using servermania for my hosting for a year now and never had a problem.. (under permanent DDOS attacks due to the kind of service I offer) Best would be to rent a dedicated server (e3 1240v3) and get ddos protection.. Cheaper option is just a VPS with 4GB of ram who can perfectly host a RUST server.. Price is around 100USD for the dedicated.. not sure about the VPS but a lot cheaper Im sure.. edit, just checked: Intel Xeon E3-1220v1 |4x3.4 GHz | 8 GB DDR3 | 1 TB SATA or 120 GB SSD | 1 Gbps | $69 USD this is EXCELENT for game hosting..[/QUOTE] I'm currently with soyoustart.com (ovh brand) and got 16gb ram, 2x2tb hdd and Intel Xeon E3 1225v2. they have ddos mitigation but it takes 5-10 minutes to detect the attack and 15-20 min to mitigate. I am just looking for something cheap to protect the server for the first 30 minutes.

[QUOTE=Ephox;47671408]I'm currently with soyoustart.com (ovh brand) and got 16gb ram, 2x2tb hdd and Intel Xeon E3 1225v2. they have ddos mitigation but it takes 5-10 minutes to detect the attack and 15-20 min to mitigate. I am just looking for something cheap to protect the server for the first 30 minutes.[/QUOTE] Do you see the problem here? :) You bought a cheap server with cheap DDOS protection. That DDOS protection wasn't good enough, so you bought a second cheap DDOS protection service to help with the first. THAT protection isn't working, so you're looking for a THIRD service to help make up for the shortcomings of the first and the second. You get what you pay for. You can keep buying cheap and getting mediocre protection, or you can spend a few bucks more and go with a reputable service provider. The choice is yours, but the maxim remains true.

[QUOTE=Maximum Over;47672183]Do you see the problem here? :) You bought a cheap server with cheap DDOS protection. That DDOS protection wasn't good enough, so you bought a second cheap DDOS protection service to help with the first. THAT protection isn't working, so you're looking for a THIRD service to help make up for the shortcomings of the first and the second. You get what you pay for. You can keep buying cheap and getting mediocre protection, or you can spend a few bucks more and go with a reputable service provider. The choice is yours, but the maxim remains true.[/QUOTE] The second one doesn't work because it doesn't support it i guess. But i don't have that much money to spare. But i see your point.