qattacks.

Post Reply
allied
New to forums
New to forums
Posts: 1
https://www.youtube.com/channel/UC40BgXanDqOYoVCYFDSTfHA
Joined: Tue Nov 11, 2014 9:34 am

qattacks.

Post by allied »

So I bet many of you are being hit with the method from the old csgodown.com website. So, I want to know what you guys are doing to try to work around it. I was able to fight back 4 times, but I cant anymore. So I wonder what have you done to work around it. Also, have you emailed Valve about it?
I've tried many Firewall rules, some commands and had it up for some period of time 4 times. Last time I had my server up for over 24 hours, but I just woke up and they're down again and I cant seem to figure out another way.
User avatar
soja
This is my homepage
This is my homepage
Posts: 2389
Joined: Fri May 18, 2012 3:20 pm

Re: qattacks.

Post by soja »

You should remove the attack website name from your post.

The only method I have found to successfully mitigate this attack is using an IP whitelist. This is only possible on a VDS or a managed linux machine.

You will need something to collect player IP addresses, I use https://forums.alliedmods.net/showthread.php?p=949571

After you get a database filled with IP addresses, you can export it into a text file with a query.

I have emailed Valve about this, and after a short conversation we found no resolution.

A member of the mailing list suggested making something that temporarily whitelists IP addresses that send an info query to the server during an attack, since most people will query the server using the serverbrowser or something else before connecting. I think this would need to be done as a gameserver addon, or metamod plugin to work though.
Not a NFO employee
Post Reply