|
|
#221
04-08-2010, 03:29 AM
|
||||
|
Quote:
Unfortunately these tools will only exist in userspace on most other operating systems and you'd be hard pressed to meet the functionality and sheer performance offered by an innate, robust, kernel level packet filtering mechanism. Ask anyone that's ever used Microsoft Connection Sharing (ICS) and they can attest to this [You must be logged in to view images. Log in or Register.]
__________________
Prexus: (00-04) <Clan nan Dreolan>
Cadiz (70 NEC) epic 1.0 Grumplescratch (65 WAR) epic 1.0 Tzartole (62 MNK) epic 1.0 | |||
|
|
||||
|
#222
04-08-2010, 07:50 AM
|
|||
|
Im not sure what type of firewall you are using but i will donate a Pix515E i have sitting here to the cause if it helps, and maybe someone else on the thread can do the config. Or you can buy an ASA 5505 for like 400 bucks for the unlimited version. again wish i could help more. cant wait to get back to p99.
| ||
|
|
|||
|
#223
04-08-2010, 08:25 AM
|
|||
|
Problem is a local firewall, wether you host stuff at your home on a fiber connection, or even in a cheap hosting datacenter that doesn't offer inbound protection from ddos attacks, the firewall will only protect your server from crumbling down, like said before. You will still use your max bandwith as long as the attack goes on, wich wil be expensive either for YOU or your ISP, and belive me, the ISP/Datacenter won't pay the bill. The Datacenter actually need to have their own inbound protection from where-ever they connect to, wich is what makes these attacks so hard to fight, cause no matter where you put the filter that discards the packets, there will always be a network on the other side that will take a penalty in bandwith, dependent on how serious the attack is, untill you reach the origin of the attack.
Also DDOS stands for "distributed" denial of service, wich means a smart hacker will distribute the attacks to as many hosts as he's able to to use as zombies, making it very hard to track the origin of the attack | ||
|
Last edited by dali_lb; 04-08-2010 at 08:30 AM..
|
|
||
|
#224
04-08-2010, 08:54 AM
|
|||
|
All the people recomending devices to put in front of the server need to realize this is not a server resource issue. During the last attack that lasted almost an hour, I watched the service utilization sit around 2-5% CPU Usage (I could still get in because it was connected to our other server via a cross-connect on both server's secondary nic cards). The problem is bandwidth saturation, plain and simple. In order to avoid it, we need a bigger pipe, or we need rate limiting on the data center's side. Both of these are being looked into. We're upgrading our connection pipe, and I don't want to get into much details of what we're getting on the public forums, but even after that if the attacker has a big enough botnet, he can potentially still max it out, however the larger the attack, the more notice the data center takes and will work to track down.
So there are many options being considered, and again I don't want to discuss everything we plan to impliment for defensive capabilities on the public forums as to not give the attacker any more ways to circumvent them. As far as donations go, yes they are being put to use: [You must be logged in to view images. Log in or Register.]
__________________
| ||
|
|
|||
|
#230
04-08-2010, 09:10 AM
|
|||
|
Dunno if this is the place to post a question in game stuff- but
i have a body in ogguk will I loose it exp items etc- forgot if I looted.. died on some crash awhile ago- or is the "rez timer" frozen - would really suck to eat a death. Anywho- good luck on all the DDOS shit, and hope to play some more soon! Will donate tomrrow once I get paied and can sneak out a few bucks w/o notice ;-) | ||
|
|
|||
 |
|
|
Linear Mode
