So let's summarize what I said till now.
Before running a CS/HL server (CS1.6/HL/CSCZ/CSS/CSGO) you need to think about DDoS/DoS protection. CS/HL servers are subjected to UNLIMITED types of DoS/DDoS attacks, that can take down your server for some time. Most of the attacks that can take down your server are UDP-based. This is why when you search for hosting you need to ensure if it has UDP mitigation or not.
Anti-DDoS solutions will cost the hosting provider extra money. This is the reason why you will need to pay more for a DDoS-protected service. And some providers do not invest in protection, and some do not provide UDP protection but provide only TCP. All providers aim to minimize their cost to earn more, and you need to search for good hosting that has good protection.
You need to know that you may be with the main hosting provider like to be with OVH directly, and you may be with a reseller that buys their service and resell it as VPS/VDS. Be noted that yes you will pay less with a reseller, but you are subjected to disturbing things. I give you a short story about resellers. ExtraVM is a reseller, I was using it for some time and sometimes when I get DDoSed he suspended the service telling me that I used the VPS to launch a DDoS, and the fact is that I was a victim. After the suspension, I lost all things, and databases got corrupted... etc. Was a horrible experience that why I'm telling you this. One more thing to note always, resellers can anytime change your server IP without any valid reason. This something to fear as you know if IP changes you will lose many players. So please before you say I'll choose a reseller because of the lower cost, think about the harm that they can do for you after a short period.
Regardless of the reason why someone will attack you, you must protect yourself to a good extend. As I discussed that IPTables is not a practical solution. So you need to look for some robust/practical solutions, and I already discussed some in this topic. You need to try one of them and evaluate it yourself.
So to rest in peace, follow what I said. And put in your mind, protection is relative and we just need to make the attacker believe he fails so he does not try to attack again and again. He still can restrike but as said earlier, it's better than the 0-protected level.
DDoS Attacks
He who fails to plan is planning to fail
This happen in me before, I have weak root password at that time. Only way to get rid of that, is by putting strong password. (Mine is 64 characters).Raheem wrote: ↑3 years ago So let's summarize what I said till now.
Before running a CS/HL server (CS1.6/HL/CSCZ/CSS/CSGO) you need to think about DDoS/DoS protection. CS/HL servers are subjected to UNLIMITED types of DoS/DDoS attacks, that can take down your server for some time. Most of the attacks that can take down your server are UDP-based. This is why when you search for hosting you need to ensure if it has UDP mitigation or not.
Anti-DDoS solutions will cost the hosting provider extra money. This is the reason why you will need to pay more for a DDoS-protected service. And some providers do not invest in protection, and some do not provide UDP protection but provide only TCP. All providers aim to minimize their cost to earn more, and you need to search for good hosting that has good protection.
You need to know that you may be with the main hosting provider like to be with OVH directly, and you may be with a reseller that buys their service and resell it as VPS/VDS. Be noted that yes you will pay less with a reseller, but you are subjected to disturbing things. I give you a short story about resellers. ExtraVM is a reseller, I was using it for some time and sometimes when I get DDoSed he suspended the service telling me that I used the VPS to launch a DDoS, and the fact is that I was a victim. After the suspension, I lost all things, and databases got corrupted... etc. Was a horrible experience that why I'm telling you this. One more thing to note always, resellers can anytime change your server IP without any valid reason. This something to fear as you know if IP changes you will lose many players. So please before you say I'll choose a reseller because of the lower cost, think about the harm that they can do for you after a short period.
Regardless of the reason why someone will attack you, you must protect yourself to a good extend. As I discussed that IPTables is not a practical solution. So you need to look for some robust/practical solutions, and I already discussed some in this topic. You need to try one of them and evaluate it yourself.
So to rest in peace, follow what I said. And put in your mind, protection is relative and we just need to make the attacker believe he fails so he does not try to attack again and again. He still can restrike but as said earlier, it's better than the 0-protected level.
I'm not personally using resellers anymore. Also, I don't run servers since 4 years.
This just for anyone, it may help.
This just for anyone, it may help.
He who fails to plan is planning to fail
I have the second dis advantageRaheem wrote: ↑3 years ago OK, here I'm writing my experience with OVH UDP/TCP protection that can be useful for game servers.
Most attacks that can take down the CS1.6 server will be UDP based, the reason is that the game basically uses this protocol for transmitting data between user/server. As I said in #2, #4 most service providers do not provide good protection for this protocol. But one of the providers that claimed to have good UDP protection is OVH. In this post let's see the advantages/disadvantages to use their UDP protection.
OVH said that it has devices before your dedicated server, and they will filter the packets before allowing them to hit your machine. In the case of malicious packets, they will be dropped in earlier stages. OVH provides UDP protection in only special dedicated servers.
Advantages of their protection:Disadvantages of their protection:
- Easy to use, for simplicity all you need to do is to add the UDP port and the protection will be enabled on this port. Which means all packets will be filtered first.
- It will mitigate as much as it can. You don't need to analyze packets... etc. but the devices placed before your dedicated server by them will do the job.
OK, so the overall score I may give to their protection 60~70%. Not a bad solution, but at the same time, not the same as they are claiming. Personally, I'm recommending them only in one case: If you cannot find protection that is higher than them.
- Lag during connection to your server, almost one of the most annoying things about their protection is that it lags all clients when they try to connect to the server. Sometimes this results in dropping clients.
- The protection may fail many times, and this will result in dropping all clients. We recorded this in this topic viewtopic.php?f=22&t=3326. It may take a large time from their side to fix their issues.
- During large attacks, they usually will not be able to filter legit/malicious packets well. For this reason, if a client is not trusted (defined by their protection devices), he may be dropped and he is a legit user. So false dropping is possible under medium to large attacks.
- They do not offer UDP protection for VPS, this means you need to buy a dedicated server which is expensive +90$/month. In case you running one server this will be not suitable at all. (Can be resolved if you bought old devices from soyoustart, just a suggestion)
I have spent some time debugging their protection (maybe 3 years ago), and as a conclusion, it's not the same as they saying. But at the end, I'm telling you to choose 0% protected or 60~70% what you will choose?
This all about their protection, you now got some ideas about them. I'll continue to post some more posts later.
I bought from evolution-host.com
Can Tell me how to resolve it ? Or whats problem so then I can contact to support
I'm not in field for long time, so I can't tell a good resolution. I'm sorry for this.VicKy wrote: ↑1 year agoI have the second dis advantageRaheem wrote: ↑3 years ago OK, here I'm writing my experience with OVH UDP/TCP protection that can be useful for game servers.
Most attacks that can take down the CS1.6 server will be UDP based, the reason is that the game basically uses this protocol for transmitting data between user/server. As I said in #2, #4 most service providers do not provide good protection for this protocol. But one of the providers that claimed to have good UDP protection is OVH. In this post let's see the advantages/disadvantages to use their UDP protection.
OVH said that it has devices before your dedicated server, and they will filter the packets before allowing them to hit your machine. In the case of malicious packets, they will be dropped in earlier stages. OVH provides UDP protection in only special dedicated servers.
Advantages of their protection:Disadvantages of their protection:
- Easy to use, for simplicity all you need to do is to add the UDP port and the protection will be enabled on this port. Which means all packets will be filtered first.
- It will mitigate as much as it can. You don't need to analyze packets... etc. but the devices placed before your dedicated server by them will do the job.
OK, so the overall score I may give to their protection 60~70%. Not a bad solution, but at the same time, not the same as they are claiming. Personally, I'm recommending them only in one case: If you cannot find protection that is higher than them.
- Lag during connection to your server, almost one of the most annoying things about their protection is that it lags all clients when they try to connect to the server. Sometimes this results in dropping clients.
- The protection may fail many times, and this will result in dropping all clients. We recorded this in this topic viewtopic.php?f=22&t=3326. It may take a large time from their side to fix their issues.
- During large attacks, they usually will not be able to filter legit/malicious packets well. For this reason, if a client is not trusted (defined by their protection devices), he may be dropped and he is a legit user. So false dropping is possible under medium to large attacks.
- They do not offer UDP protection for VPS, this means you need to buy a dedicated server which is expensive +90$/month. In case you running one server this will be not suitable at all. (Can be resolved if you bought old devices from soyoustart, just a suggestion)
I have spent some time debugging their protection (maybe 3 years ago), and as a conclusion, it's not the same as they saying. But at the end, I'm telling you to choose 0% protected or 60~70% what you will choose?
This all about their protection, you now got some ideas about them. I'll continue to post some more posts later.
I bought from evolution-host.com
Can Tell me how to resolve it ? Or whats problem so then I can contact to support
He who fails to plan is planning to fail
The Solution To Save from Attack Is not to panel and any website configuration for counter strike 1.6 server i have experienced many problems because of the panel
Because the hackers will attack your site and will down your site then your cs sv will offline
I recommend to use linux only to setup server if you want your server to keep running without any problem
Because the hackers will attack your site and will down your site then your cs sv will offline
I recommend to use linux only to setup server if you want your server to keep running without any problem
Create an account or sign in to join the discussion
You need to be a member in order to post a reply
Create an account
Not a member? register to join our community
Members can start their own topics & subscribe to topics
It’s free and only takes a minute
Sign in
Who is online
Users browsing this forum: No registered users and 3 guests