combating udp flood attacks

Madhed · 2015-10-21T19:13:08

This is a theoretical question that I have wondered about, so I have no actual code to show here. Say I have a game server that is accepting client packets at a publicly known port. What is a common method to handle a client trying to DOS the server by flooding it with udp packets? 1. There is a portable way to block communication with a specific IP at the operating system level. I don't know if this atually exists, but it would probably be the most effective solution. 2. Close the known socket and reopen it on another port. While this prevents the rogue packets from reaching the appliation, the operating system still has to handle the packets before it can decide to drop them. I guess this is cheaper than to drop them at the application level, but it still puts some strain on the system. Also, the server still has to announce the new port eventually and the attack could continue there. Did someone here deal with this before?

Networking and Multiplayer Programming

Started by Madhed October 18, 2015 06:11 PM

8 comments, last by Brain 8 years, 6 months ago

samoth

9,833

October 21, 2015 07:03 PM

Oh, is that vRack thingie not a kind of VPN-on-steroids that is done in hardware by the router? Without you even knowing?

I understood it worked somehow in this way:

You have one or several "real" (externally visible) IP addresses and their magic system forwards requests to these to servers within your virtual private network, with failover if you want (and inside the VPN e.g. the webserver and the database server can be in different datacenters and can talk to each other independently of surrounding traffic, with a minimum bandwidth guarantee and encryption, as if plugged into the same router, without knowing).

And if they notice that a couple of hosts start sending e.g. 1000 requests per second each, they will just drop packets coming from these directly at the IX (or as close to it as possible), and still allow the other traffic through.

Brain

19,059

October 21, 2015 07:13 PM

Oh, is that vRack thingie not a kind of VPN-on-steroids that is done in hardware by the router? Without you even knowing?

Don't know about vrack particularly but usually you pay for these services separately to hosting as you get a finer grained level of configuration. I didn't use OVH or X4B for hosting and just used it for ddos protection, I host at a datacentre in Toronto Canada.

Games/Projects Currently In Development:
Discord RPG Bot | D++ - The Lightweight C++ Discord API Library | TriviaBot Discord Trivia Bot

combating udp flood attacks

This topic is closed to new replies.

Popular Topics

Recommended Tutorials

combating udp flood attacks

This topic is closed to new replies.

Popular Topics

Recommended Tutorials

Reticulating splines