[QUOTE=Aide;27215050]If it is a minor problem you can ask your host to deny access to your/there servers using MMC. Here is a thread with a simple video I created awhile back on how people who host there servers on there own machine/dedicated server can stop a simple attack.
[url=http://www.facepunch.com/threads/982863-How-to-quot-Block-quot-a-network-attack.?highlight=]Thread[/url]
If its a major problem switch hosts.
Not all (G)ame (S)erver (P)roviders take the time to invest money in protecting their customers. There are a lots of professional grade firewalls out there that do help. Part of the reason they may not invest in there firewall is because they get a bit expensive.
[editline]5th January 2011[/editline]
[img_thumb]http://img193.imageshack.us/img193/6331/faillg.jpg[/img_thumb][/QUOTE]
User is using a shell booter... Tsk Tsk Tsk.
Get Linux and install this:
[url]http://deflate.medialayer.com/[/url]
Works guaranteed.
I'll help you configure it
[QUOTE=Chulo Arco;27232934]
Get Linux and install this:
[url]http://deflate.medialayer.com/[/url][/QUOTE]
He has a point. Linux is 100% more secure and stable than Winshit, and it's free on almost all dedis. (i.e. included in the price, unlike most Windows Server OSs)
-snip-
[QUOTE=|FlapJack|;27222644]All you can do with a second NIC is have a failover IP through which you can get onto the server and nullroute the attack.[/QUOTE]
I never really understood how they work, thank you for clearing that one up for me.
[QUOTE=RoFLWaFFLEZZ;27233527]are you implying that i am using a shell booter[/QUOTE]
Welll, No you think so?
[QUOTE=Proffrink;27233440]He has a point. Linux is 100% more secure and stable than Winshit, and it's free on almost all dedis.[/QUOTE]
True, In comparison to windows Linux is a far more secure OS, It just depends what you are wanting to run, as Not all DLL modules and what not run with Linux, So You'de be screwed for OpenAura Proffrink.
I wonder If it would run through wine............ :D
I personally wouldn't like running servers on Linux - as the only linux experience I have is running on a VM. However, I have considered getting a £15/m download box which obviously uses linux.
The only reason I run it on Windows is because Linux doesnt have tmysql.
[QUOTE=freefall1103;27233676]True, In comparison to windows Linux is a far more secure OS, It just depends what you are wanting to run, as Not all DLL modules and what not run with Linux, So You'de be screwed for OpenAura Proffrink.
I wonder If it would run through wine............ :D[/QUOTE]
No you can't. But watch us do it.
*hint* fucking *hint* *hint*
[QUOTE=|FlapJack|;27234424]I personally wouldn't like running servers on Linux - as the only linux experience I have is running on a VM. However, I have considered getting a £15/m download box which obviously uses linux.[/QUOTE]
Well, I personally have never run a fully managed Linux server. I've used ServerFFS and found it to be extremely fast and reliable. Linux has always been built to be fast and cheap, so spending say £30 on a dedi with Linux would probably compare to a £50-60 Win server.
But then, although I hate to say it, Windows is just so much bigger at the moment. I hope people start making alot more of their software Linux compatible but it's really just a case of Linux constantly updating their OS so that it can run things designed from Windows, not the other way around.
[QUOTE=Heinserver;27234586]The only reason I run it on Windows is because Linux doesnt have tmysql.[/QUOTE]
Nope, you can just forward to a MySQL hosted on a Windows box if that happens. You're not running OA on Linux because the .dlls aren't compatible
Also, ServerFFS (the one you used) runs MySQL absolutely perfectly.
[QUOTE=Proffrink;27234773]
But then, although I hate to say it, Windows is just so much bigger at the moment. I hope people start making alot more of their software Linux compatible but it's really just a case of Linux constantly updating their OS so that it can run things designed from Windows, not the other way around.
[/QUOTE]
Windows is the current set standard that all hardware and software appears to be aiming for, well the majority.
I would like to see more of a variety and people using the Linux standards as a base to work from rather than Windows.
[QUOTE=Proffrink;27234773]No you can't. But watch us do it.
*hint* fucking *hint* *hint*
Well, I personally have never run a fully managed Linux server. I've used ServerFFS and found it to be extremely fast and reliable. Linux has always been built to be fast and cheap, so spending say £30 on a dedi with Linux would probably compare to a £50-60 Win server.
But then, although I hate to say it, Windows is just so much bigger at the moment. I hope people start making alot more of their software Linux compatible but it's really just a case of Linux constantly updating their OS so that it can run things designed from Windows, not the other way around.
Nope, you can just forward to a MySQL hosted on a Windows box if that happens. You're not running OA on Linux because the .dlls aren't compatible
Also, ServerFFS (the one you used) runs MySQL absolutely perfectly.[/QUOTE]
I aint talking about phase four, I am talking Flood.
[QUOTE=Heinserver;27237097]I aint talking about phase four, I am talking Flood.[/QUOTE]
Don't copy paste everything. What's the point?
Also, Flood runs perfectly on Linux, I just asked.
[QUOTE=Proffrink;27255516]Don't copy paste everything. What's the point?
Also, Flood runs perfectly on Linux, I just asked.[/QUOTE]
It's the reply button that quotes.
Not the new flood, it uses TMYSQL.
[QUOTE=Heinserver;27256501]It's the reply button that quotes.
Not the new flood, it uses TMYSQL.[/QUOTE]
TMySQl can still be run through Linux...
[QUOTE=Heinserver;27256501]It's the reply button that quotes.
Not the new flood, it uses TMYSQL.[/QUOTE]
Tip: Delete the parts of the quote you don't need. I don't want a whole wall pasted again. It's of no use to me, or anyone else. When you quote a book, you don't quote the whole thing now do you.
And yes, TMySQL works on Linux.
My community got hit by a DDoS that was 10gb/s and took out an entire ISP and they null routed our dedi IP adress
ye
[QUOTE=Raged;27275398]My community got hit by a DDoS that was 10gb/s and took out an entire ISP and they null routed our dedi IP adress
ye[/QUOTE]
cool story bro
[highlight](User was banned for this post ("Meme reply" - birkett))[/highlight]
[QUOTE=RoFLWaFFLEZZ;27206028]wasn't me[/QUOTE]
I get the joke! :v:
[QUOTE=Raged;27275398]My community got hit by a DDoS that was 10gb/s and took out an entire ISP and they null routed our dedi IP adress
ye[/QUOTE]
10gb/s wouldn't take out an entire ISP. Just a single switch.
[QUOTE=|FlapJack|;27290216]10gb/s wouldn't take out an entire ISP. Just a single switch.[/QUOTE]
Depends on the ISP/Data Center. It actually would take down a few Data Centers; I believe Joe's Data Center only has 1Gbps or 5Gbps - I doubt it is 10Gbps.
And any dial up ISP would probably go down instantly.
[QUOTE=|FlapJack|;27290216]10gb/s wouldn't take out an entire ISP. Just a single switch.[/QUOTE]
I've seen an entire ISP go down before with less than 10 Gbps, but they were selling 10 Mb for like $600 per month.
[QUOTE=|FlapJack|;27290216]10gb/s wouldn't take out an entire ISP. Just a single switch.[/QUOTE]
Just for you. Look up a map of Australia and look at the state of Queensland if you'd like to see the size of it.
[quote]
Hi,
This ticket has been escalated to me from the tech support guys.
I've checked it out and your primary IP appears to be blocked EXTERNALLY at the borders of both OPTUS and TELSTRA.
After contacting the OPTUS Network center they have advised us that your primary IP address was the target of a [B]multi gigabit DDOS on boxing day that took Optus Queensland offline for 25 minutes and dropped every customer on their network.[/B] The DDOS was in the order of approx 10Gbps!
They have advised that Telstra is also blocking advertisiment of your IP.
At this stage I'm trying to ascertain if they are able to remove the IP Block, I'll update this ticket further today when I hear back.
I have let them know that this is service affecting.
A possibly solution is to have different IP's for your game-servers and your website on this server.
[/quote]
Deleted the last bit of it, because it kinda explains how they're doing it and I'd rather not get the word spread around. Although if you've got any idea to help upon the situation, it'd be lovely.
[QUOTE=Raged;27347388]Just for you. Look up a map of Australia and look at the state of Queensland if you'd like to see the size of it.
Deleted the last bit of it, because it kinda explains how they're doing it and I'd rather not get the word spread around. Although if you've got any idea to help upon the situation, it'd be lovely.[/QUOTE]
Easiest solution there is to swap the IP of your website, nullroute everything going onto the old IP, have a separate IP for both gameservers and RDP. That way, only your website should go down if you get attacked again and you'll also still have access, as long as the switch connecting your dedi is fine.
Close your ports and shut down your server.
[QUOTE=supersnail11;27371558]Close your ports and shut down your server.[/QUOTE]
Which is exactly what the attacker wants in the first place..
best way to stop dos attacks is to configure a cisco router to block out certain attacks (like spoofing and filter out ips that are spamming you), configure a firewall to detect and block dos attacks and then for your source gameservers get DAF to stop query spam (not sure if DAF works effectively)
if you have wireshark and the dos attack doesnt affect your access to the server leave a packet capture running and block the ip(s) that are attacking you.
If you don't have access to your server then other than the methods above you can:
•If you don't have access to the server then you'll need to contact your host and inform them of the situation (hopefully they'll help out)
•If you have a failover server you can initiate a packet capture and switch it with your main; leave it for a bit a switch it back so that you can access the capture results (and record them); switch it once more so that you have access to the main server again and simply block the ips and then switch it once more to resolve the problem (if you have blocked all the ips attacking you....can be quite tedious if its a botnet attacking you)
for everyone else reading this let me know if i got anything wrong or missed any other good methods ;)
Find where they live, recruit Reznov and go execute them.
[editline]15th January 2011[/editline]
This is why I dont play Garrys Mod. A bunch of script kiddies mangled into one game its hilarious.
[QUOTE=doonbugie2;27427329]Find where they live, recruit Reznov and go execute them.
[editline]15th January 2011[/editline]
This is why I dont play Garrys Mod. A bunch of script kiddies mangled into one game its hilarious.[/QUOTE]
Not even script kiddies. Its a bunch of kid(s).
[QUOTE=doonbugie2;27427329]Find where they live, recruit Reznov and go execute them.
[editline]15th January 2011[/editline]
This is why I dont play Garrys Mod. A bunch of script kiddies mangled into one game its hilarious.[/QUOTE]
Oh yes, I got a gmod server for a month and it got dos ed atleast a few times because I banned someone
[QUOTE=BrQ;27458182]Oh yes, I got a gmod server for a month and it got dos ed atleast a few times because I banned someone[/QUOTE]
Its against the rules to ban people who use Sethhack :downs:
[QUOTE=Mr.Macintosh;27458304]Its against the rules to ban people who use Sethhack :downs:[/QUOTE]
everyone who uses sethhack ddoses people, for instance i use my 200k botnet to ddos people all the time it's so hilarious.
[QUOTE=c-unit;27460105]everyone who uses sethhack ddoses people, for instance i use my [b]200k botnet[/b] to ddos people all the time it's so hilarious.[/QUOTE]
sure bro
Sorry, you need to Log In to post a reply to this thread.
