• There is NO official Otland's Discord server and NO official Otland's server list. The Otland's Staff does not manage any Discord server or server list. Moderators or administrator of any Discord server or server lists have NO connection to the Otland's Staff. Do not get scammed!

Linux DDOS Attacks

L0FIC

L0FIC

Active Member
Joined
May 29, 2024
Messages
72
Reaction score
48
Hey guys,

These peruvian or br guys are DDOS attacking my Hetzner VPS every night now..
It's pathetic considering I peaked at 35 players and I'm hosting a new small server.

Cant access website even though i have cloudflare full stricted, also fail2ban and crowdsec installed and enabled on my VPS.
They still make the website unaccessable and DDOS until shutdown of server and we cant get back in.

Someone that wants to aid me against these internet pirates ruining my life?

VPS is not dedicated server but 16 RAM and 8 vcores.

Any tips and tricks at this day and age?

Zamonia77.com

Best,
Zeke
 
Sort by date Sort by votes
ok but how come nobody reports his account to discord? we can just literally spam ban him on discord due to threats / cyberterror attacks :)
This will definately help him in contacting admins if he has to make new discord account every 5 minutes after sending blackmail/threats?
 
Upvote 0 Downvote
OTAmator said:
So you think it's pointless to use iptables, nftables, etc. on the server side? That everything related to firewall configuration should be done only in the OVH panel (or similar provider-level firewall)?
Click to expand...
Yes, its pointless, all it does is just saturating your CPU further when it's under big load, when the attack happens. I have tested a few things when was attacked before we went for proxies and by setting up iptables the outcome was just worse. Iptables is a netfilter on your CPU and CPU is the bottleneck when huge amount of packets goes in to your server, your server will even struggle to ACK or reject and your iptables rules will add on top.
 
Upvote 0 Downvote
L0FIC said:
Hey guys,

These peruvian or br guys are DDOS attacking my Hetzner VPS every night now..
It's pathetic considering I peaked at 35 players and I'm hosting a new small server.

Cant access website even though i have cloudflare full stricted, also fail2ban and crowdsec installed and enabled on my VPS.
They still make the website unaccessable and DDOS until shutdown of server and we cant get back in.

Someone that wants to aid me against these internet pirates ruining my life?

VPS is not dedicated server but 16 RAM and 8 vcores.

Any tips and tricks at this day and age?

Zamonia77.com

Best,
Zeke
Click to expand...
I saw more than 5 replies guiding you, yet you didn't consider any of them

First call a server restart from your provider so you can access it (if its constantly under attack)

When it starts make sure you set apache2 off (service apache2 stop) in ubuntu

Turn your server off and announce it will be down for maintenance because there is no point keeping it online under attacks unprotected

Setup alpha proxy for otcv8 so you need couple few more vpses (1gb ram is enough shouldn't cost more than 2usd/month/vps you need 4minimum)

After you do the setup change ipv4 from the service provider and now you have to setup cloudflare for your website before adding new ip on the dns of your domain to keep it hidden, after you do that following what i said about status server to be seperate and even players can't use it to connect to game, only allowing 1 port (which is different from your proxy setup login port) you are good to go your server should be able to handle ddos attacks like a pro.
 
Upvote 0 Downvote
if you truly want to get rid of ddos just use discord authentication to even request login to server. good luck getting autorole u need whitelist for then get access to level 1 proxy and after playing for longer level 2. 3.. trust factor;)
 
Upvote 0 Downvote
Raveyard said:
if you truly want to get rid of ddos just use discord authentication to even request login to server. good luck getting autorole u need whitelist for then get access to level 1 proxy and after playing for longer level 2. 3.. trust factor;)
Click to expand...
what does it have to do with you IP address that i can find with the dumbest dns lookup tool on google if you don't have cloudflare dns reverse proxies ?

how does that protect your ports from overheading the CPU with meaningless information sent over it?

how does it protect your server or proxies from SSH brute force?

i can continue questions if you need. Thats not smart in fact, Its the opposite.
 
Upvote 0 Downvote
El Bringy said:
what does it have to do with you IP address that i can find with the dumbest dns lookup tool on google if you don't have cloudflare dns reverse proxies ?

how does that protect your ports from overheading the CPU with meaningless information sent over it?

how does it protect your server or proxies from SSH brute force?

i can continue questions if you need. Thats not smart in fact, Its the opposite.
Click to expand...
1747139808767.webp
🤓
ssh bruteforce is only working if u dont use keys best would be to reverse proxy another vps to be medium of ssh connection for you aswell
 
Upvote 0 Downvote

Similar threads

Joriku
Linux Ubuntu + Nginx, simple/advanced DDOS protection
Replies
2
Views
730
Joriku
Joriku
Michael Orsino
Alpha Proxy Guide (kondrah/otclient multi-path proxy)
2
Replies
35
Views
5K
Gesior.pl
Gesior.pl
Back
Top