I need some help, I am a server administrator in our international urbanterror clan and in the last week we discovered more lags. I made some investigation and found on our router udp packet attacks. This means from one source IP to all urt server ports at the same time huge traffic. The sourse port was usually 80 but not always.
I have PF Sense as firewall and the urt servers run on linux.
I may think my attacker is a banned cheater, who can not reconnect (I use powerban list and wideban B3 plugin).
I searched the forum for "udp dos" but found nothing.
I searched the internet and this attack type exists for CS game as well.
My question is if anyone has experince to avoid this kind of attack or have the knowledge to help me how to configure my PF Sense (with Snort) to detect and ignore this kind of attacker UDP packets.
More details on our website, thanks for any help:
LammeSnail
clankrh.com
This post has been edited by LammeSnail: 22 December 2011 - 10:20 AM