|
|
|
|
#1
04-08-2010, 02:23 AM
|
|||
|
LOL so I started a toon on the PEQ server to pass the time... got into the tutorial... and EVERYONE (save one) in the zone was from P99 trying to alleviate withdrawal [You must be logged in to view images. Log in or Register.] We had a good laugh about how easy the PEQ server is and how we all miss slaving away over our levelz and moneyz and lootz [You must be logged in to view images. Log in or Register.]
| ||
|
|
|||
|
#2
04-08-2010, 09:21 AM
|
||||
|
Quote:
__________________
Another witty, informative, and/or retarded post by:
 "You know you done fucked up when Yendor gives you raid commentary." - Tiggles | |||
|
|
||||
|
#3
04-08-2010, 07:50 AM
|
|||
|
Im not sure what type of firewall you are using but i will donate a Pix515E i have sitting here to the cause if it helps, and maybe someone else on the thread can do the config. Or you can buy an ASA 5505 for like 400 bucks for the unlimited version. again wish i could help more. cant wait to get back to p99.
| ||
|
|
|||
|
#4
04-08-2010, 08:25 AM
|
|||
|
Problem is a local firewall, wether you host stuff at your home on a fiber connection, or even in a cheap hosting datacenter that doesn't offer inbound protection from ddos attacks, the firewall will only protect your server from crumbling down, like said before. You will still use your max bandwith as long as the attack goes on, wich wil be expensive either for YOU or your ISP, and belive me, the ISP/Datacenter won't pay the bill. The Datacenter actually need to have their own inbound protection from where-ever they connect to, wich is what makes these attacks so hard to fight, cause no matter where you put the filter that discards the packets, there will always be a network on the other side that will take a penalty in bandwith, dependent on how serious the attack is, untill you reach the origin of the attack.
Also DDOS stands for "distributed" denial of service, wich means a smart hacker will distribute the attacks to as many hosts as he's able to to use as zombies, making it very hard to track the origin of the attack | ||
|
Last edited by dali_lb; 04-08-2010 at 08:30 AM..
|
|
||
|
#5
04-08-2010, 08:54 AM
|
|||
|
All the people recomending devices to put in front of the server need to realize this is not a server resource issue. During the last attack that lasted almost an hour, I watched the service utilization sit around 2-5% CPU Usage (I could still get in because it was connected to our other server via a cross-connect on both server's secondary nic cards). The problem is bandwidth saturation, plain and simple. In order to avoid it, we need a bigger pipe, or we need rate limiting on the data center's side. Both of these are being looked into. We're upgrading our connection pipe, and I don't want to get into much details of what we're getting on the public forums, but even after that if the attacker has a big enough botnet, he can potentially still max it out, however the larger the attack, the more notice the data center takes and will work to track down.
So there are many options being considered, and again I don't want to discuss everything we plan to impliment for defensive capabilities on the public forums as to not give the attacker any more ways to circumvent them. As far as donations go, yes they are being put to use: [You must be logged in to view images. Log in or Register.]
__________________
| ||
|
|
|||
|
#10
04-08-2010, 09:34 AM
|
|||
|
| ||
|
|
|||
 |
|
|
Hybrid Mode
