[cod] CoD4- UDP fllod
John
lists.cod at nuclearfallout.net
Wed Feb 29 02:17:39 EST 2012
On 2/28/2012 11:00 PM, RedDragon wrote:
> are there some iptable rules wich blocks these shit completely without
> any restrictions to rcon tools?
Anything that does excessive getstatus queries will (and should) be
blocked with any effective solutions, regardless of the tool behind
those queries.
If you have problems with one of your query tools sending too many
queries per second and becoming blocked, you can bump up the limit in
the iptables rules, and they'll still probably work just fine. Most
attacks send in excess of 50 queries per second, so the default rules
are very conservative. Just tweak the number to what works well for you,
based on the attacks that you see and the tools that you run. (Your
tools really should not be sending "getstatus" many times per second,
though.)
-John
More information about the cod
mailing list