Alright,to sum up the situation I've got a server box, running windows (server A)
I also have a ddos protected vps with unlimited. Bandwidth (server B)
I want to route the traffic through server B into server A.
this is my plan:
put haproxy onto server B
configure haproxy for allowing traffic through these ports:
21
27015-27100
25565-26000
5000-5100
does this give me the desired result of having a ddos protected network as such in the sense that the public ip will be xyz:27015 and if that gets booted, then they'll be hitting the mitigation and protection? Also, is the above configuration correct? Is there anything else I need to do because I can't see how server A is going to grab the traffic :/?
what are you going to be running on the windows server? because as soon as you use a proxy, game latency for people, if its a game server, is going to shoot up. also, haproxy is designed more for web servers so again, its not going to do what you want it to, optimally.
Well as you can see from the ports it's going to be running game servers :/
The ping will only increase 35-50ms which with a base ping of 50ms from our target audience, is not too shabby for 300gbps ddos protection.
From what you're describing, I'm going to make some assumptions:
Server A is hosted at home.
Server B is a VPS at an arbitrary datacenter, not local.
First thing to look at is - can Server B handle your game servers? If yes, move them over and be done with it.
Second, are you willing to invest in this? If yes, move Server A to a local collocation facility. They will usually be able to offer a protection solution.
If both of those options aren't viable, ditch both servers, rent ONE which is capable.
Server A is hosted in a datacenter.
Server B is hosted in a datacenter
Server B is not high spec, but has a better uplink
Server A is v. high spec but uplink is only 1gbps
[QUOTE=Milkshaker;45372919]Server A is hosted in a datacenter.
Server B is hosted in a datacenter
Server B is not high spec, but has a better uplink
Server A is v. high spec but uplink is only 1gbps[/QUOTE]
"Only" 1gbps? That should be more than enough. Game servers like 10mbps each (generally speaking), which gives a synthetic limit of 100 servers on the box.
I just want to chip in here that NFOServers is extremly good at protecting against ddos attacks, so unless you got good reasons to stay with your current setup, I suggest grabbing a dedicated server from them where you can host both game servers and webservers.
Okay, the problem is, I don't want any unnecessary traffic going to my bosses data centre. He's given me space for free so I don't want to cause any problems because the internet is known to dislike me and my community.
Sorry, you need to Log In to post a reply to this thread.
