i was curious what routers people were using to host their your gmod server. i am currently using a Dlink DIR-655, i mean it works fine and i dont get any lag from it but i also dont have that many ppl on it. i guess it would also matter if your internet upload speed was good. i was maybe thinking about upgrading to maybe a cisco router with more ram and flash memory but would it be over kill for something like this?. i guess it would only make a difference if u have alot of other cilents comming to your server and your router needs to handle more connections. tell me your thoughts.
Most people pay a company to host their servers, especially since most ISPs restrict server hosting and most residential internet lines can't handle a lot of traffic. Upgrading the router for your home connection won't do anything.
my ISP does support server hosting and the upload speed can go up to 350mbps. what about someone like me that doesnt want to spend money on paying money to host a server?
[QUOTE=jobforacowboy;43896548]i was curious what routers people were using to host their your gmod server. i am currently using a Dlink DIR-655, i mean it works fine and i dont get any lag from it but i also dont have that many ppl on it. i guess it would also matter if your internet upload speed was good. i was maybe thinking about upgrading to maybe a cisco router with more ram and flash memory but would it be over kill for something like this?. i guess it would only make a difference if u have alot of other cilents comming to your server and your router needs to handle more connections. tell me your thoughts.[/QUOTE]
Your router should not be an issue unless you start to get anything above 100 connections, the main issue will be when you get under any kind of d/dos attack. I would recommend getting [url]http://www.ebay.co.uk/itm/Dell-PowerEdge-1950-Twin-Quad-Core-Xeon-8GB-RAM-3-5-VMware-VTx-1U-Rack-Server-/141044962510?pt=UK_Computing_Servers&hash=item20d6ef54ce[/url]
And installing pfsense or untangle.
[QUOTE=quentuz;43897439]Your router should not be an issue unless you start to get anything above 100 connections, the main issue will be when you get under any kind of d/dos attack. I would recommend getting [url]http://www.ebay.co.uk/itm/Dell-PowerEdge-1950-Twin-Quad-Core-Xeon-8GB-RAM-3-5-VMware-VTx-1U-Rack-Server-/141044962510?pt=UK_Computing_Servers&hash=item20d6ef54ce[/url]
And installing pfsense or untangle.[/QUOTE]
pfsense and untangle are both just router OS's. neither will help defend against a d/dos attack.
[QUOTE=FrankPetrov;43897479]pfsense and untangle are both just router OS's. neither will help defend against a d/dos attack.[/QUOTE] Ofc they don't but they surely help alot better than a router with a firmware that has a firewall module. Software firewalls can take you pretty far if we are not talking bandwidth overwhelming attacks, besides they handle connections way better also depending on the rest of your network setup.
[QUOTE=FrankPetrov;43897479]pfsense and untangle are both just router OS's. neither will help defend against a d/dos attack.[/QUOTE]
wouldnt they help monitor network traffic which u could detect a ddos attack? could u recommended something else? i would use a IDS and IPS like snort to help prevent one.
[QUOTE=jobforacowboy;43897502]wouldnt they help monitor network traffic which u could detect a ddos attack? could u recommended something else? i would use a IDS and IPS like snort to help prevent one.[/QUOTE]
Another great addition would be to add a packetshaper unit to the network.
[QUOTE=quentuz;43897492]Ofc they don't but they surely help alot better than a router with a firmware that has a firewall module. Software firewalls can take you pretty far if we are not talking bandwidth overwhelming attacks, besides they handle connections way better also depending on the rest of your network setup.[/QUOTE]
they don't help a lot better either. you have to realize that a ddos is a shit ton of packets being sent down the line to your server. once that line is full, it doesn't matter what hardware you have, it's not gunna accept connections very well. also, because he is on a residential line, once he gets that d/dos, his ISP will null route him within minutes shutting his IP down for 24-48 hours.
[QUOTE=FrankPetrov;43897567]they don't help a lot better either. you have to realize that a ddos is a shit ton of packets being sent down the line to your server. once that line is full, it doesn't matter what hardware you have, it's not gunna accept connections very well. also, because he is on a residential line, once he gets that d/dos, his ISP will null route him within minutes shutting his IP down for 24-48 hours.[/QUOTE]
frank is right, it is hard to prevent a ddos.
[QUOTE=FrankPetrov;43897567]they don't help a lot better either. you have to realize that a ddos is a shit ton of packets being sent down the line to your server. once that line is full, it doesn't matter what hardware you have, it's not gunna accept connections very well. also, because he is on a residential line, once he gets that d/dos, his ISP will null route him within minutes shutting his IP down for 24-48 hours.[/QUOTE]
If it's packet flood then it can be handled with hardware if we are talking bandwidth flood where simply the attacker sends more bandwidth than he can handle then it can't be handled by hardware and is then up to his line.
Where ever he get's nullrouted or not varies alot of what isp you have.
I've handled 200-300k pps attacks with iptables on a 100mbit line, with no special hardware.
First off pfsense is the way to go bottom line in my opinion, with the correct rules setup you can mitigate pathetic dos attacks.
Second I have had a friend dos my wan ip address in the past and as soon as the attack starts to hit my isp null routes the ip address and immediately assigns me a new one but it will vary from isp to isp what they do.
None the less there is no such thing as dos protection only dos mitigation. Get a bigger pipe to let more shit flow through it ;)
Sorry, you need to Log In to post a reply to this thread.
