Use a reliable DDoS protection service, configure rate limiting, enable traffic filtering, and maintain backup systems.
Use a reliable DDoS protection service, configure rate limiting, enable traffic filtering, and maintain backup systems.
I understand the challenges with DDoS attacks on my server. (There are tools that can halt the game) Yet I notice other servers have safeguards and haven’t experienced shutdowns. What defenses are available? Right now I’m running Windows 10, but I’m open to exploring Linux if it offers better protection.
They’re launching a DDoS attack? Is it because of excessive network traffic or a problem at the application level? If it’s the traffic, you’ll need a quicker internet connection or a filter to block the attack. If it’s an app issue, adjust your game server settings so it doesn’t handle those attacks.
All my commands are for Debian based OSes. I am using Ubuntu 20.10. On Linux, you can install a firewall, called UFW, and then manually allow the ports you specify. This should be a good start. Installing the firewall: sudo apt install ufw At this point, the firewall will disabled. Now you can specify the firewall to allow your ports. To check what ports are in use, use the following command: sudo ss -tupln You should see a table, and in there you can check the active ports. The command for allowing port 445(SMB) will be: sudo ufw allow 445/tcp The format is: sudo ufw allow <port>/<protocol (tcp/udp)> After you have allowed the specific ports, you should enable the firewall by: sudo ufw enable After enabling if you want to allow/block some ports, you can use the command mentioned above, and then: sudo ufw reload Though, you should restart after making changes to the firewall because sometimes the changes don't take place with a firewall reload. Also, many DDoS attacks occur by sending a ton of ping requests to a server, and then the server basically cant deal with all of those pings, and then just shuts off. Dont know about Windows, but on Linux(I use Ubuntu 20.10), you can block pings altogether. This also proves to be a good security measure. I am pretty sure there is an alternative to this on Windows as well. Steps for Debian based OS(ufw firewall should be installed to do this): Navigate to /etc/ufw cd /etc/ufw then you want to edit a file named "before.rules". Do so by: sudo nano before.rules Now you should see a text file opened in the terminal. Navigate by using the arrow keys . You want to navigate to the line which says # ok icmp codes for INPUT Then add a line after that and then type in: -A ufw-before-input -p icmp --icmp-type echo-request -j DROP to save the file, hit Control+x, then type in 'y' and hit enter. Now, you can reload the firewall(or restart the PC). As a test, you can ping your server from another device on the network with its IP address with the following command: ping <ip address> The ping request should not get a response from the server. These should some basic steps to prevent DDoS attacks. Hope it helps!
The proposed approach might assist in certain situations, but typically DDOS protection needs to be implemented at the source. When the upstream router modifies the attack packets before they reach your firewall or router, it's already too late—the damage has occurred. If you're dealing with a significant threat, consider using a VPN service that provides this capability and run your operations through it. Yet, such solutions often come at a high cost. In practice, you can only manage a DDOS attack by mitigating its effects.