Jump to content

IceShiva

Member
  • Posts

    134
  • Joined

  • Last visited

  • Days Won

    1
  • Feedback

    0%

Posts posted by IceShiva

  1. Hello. Was started dwo days ago my server but sometimes I have problems with unknow source dos, so I got the idea that run pf with limitation rules but my rules doesn't log overloaded traffic ofc works fine.

    #iface name
    if="igb0"
    
    #flags and settings for statefull connections
    tcp_state = "flags S/SAFR keep state"
    udp_state = "keep state"
    
    #ports for game
    tcp_world=" {13001 13011 16001 17011 18001 19011 20001 20011 13099 13199 }"
    p2p_tcp_world=" { 14010 14021 16010 17021 18010 19021 20010 20021 14099 14199 }"
    udp_world=" {13001 13011 16001 17011 18001 19011 20001 20011 13099 13199 }"
    p2p_udp_world=" { 14010 14021 16010 17021 18010 19021 20010 20021 14099 14199 }"
    tcp_auth =" { 11111 11112 } "
    p2p_tcp_auth =" { 22222 22223 } "
    udp_auth =" { 11111 11112 } "
    p2p_udp_auth =" { 22222 22223 } "
    
    #limits
    world_limit="(max-src-conn 10, overload <world_limit_blocked> flush)" #TEST
    #world_limit="(max-src-conn 10, max-src-conn-rate 40/10, overload <world_limit_blocked> flush)"
    #world_p2p_limit="(max-src-conn 10, max-src-conn-rate 100/10, overload <world_limit_blocked> flush)"
    #auth_limit="(max-src-conn 3, max-src-conn-rate 10/10, overload <auth_blocked> flush)"
    auth_limit="(max-src-conn 1, overload <auth_blocked> flush)" #TEST
    #auth_p2p_limit="(max-src-conn 1, max-src-conn-rate 10/10, overload <auth_blocked> flush)"
    
    
    ## Tables
    
    table <world_limit_blocked> persist file "/home/main/world.blocked"
    table <auth_blocked> persist file "/home/main/auth.blocked"
    
    ## Options
    set block-policy drop
    set loginterface $if
    set optimization normal
    set skip on lo0
    set state-policy if-bound
    set debug misc
    ## normalization
    scrub in all
    
    # Filtering
    #block all ip's over limit for world
    block in log quick on $if from <world_limit_blocked> to $if
    
    #block all ip's over limit for auth
    block in log quick on $if from <auth_blocked> to $if
    
    #block and loging all
    block log all
    
    # icmp without resirections
    pass in inet proto icmp all
    
    #Some services without resirections
    pass in on $if inet proto tcp from any to any port 22 #SSH
    pass in on $if inet proto udp from any to any port 22 #SSH
    pass in on $if inet proto tcp from any to any port 3306 #MYSQL
    pass in on $if inet proto tcp from any to any port 53 #DNS-TCP
    pass in on $if inet proto udp from any to any port 53 #DNS-UDP
    
    
    #Filtering world
    pass in on $if inet proto tcp from any to $if port $tcp_world $tcp_state $world_limit
    pass in on $if inet proto udp from any to $if port $udp_world $udp_state $world_limit
    pass in on $if inet proto tcp from $if to $if port $p2p_tcp_world
    pass in on $if inet proto udp from $if to $if port $p2p_udp_world
    
    #Filtering auth
    pass in on $if inet proto tcp from any to $if port $tcp_auth $tcp_state $auth_limit
    pass in on $if inet proto udp from any to $if port $udp_auth $udp_state $auth_limit
    pass in on $if inet proto tcp from $if to $if port $p2p_tcp_auth
    pass in on $if inet proto udp from $if to $if port $p2p_udp_auth
    
    
    #Outgoing traffic (without limits)
    pass out on $if inet from $if to any
    
    
    
    

    Here is my simpe firewall. Can anyone check a problem? All logfiles exist

  2. If your players are using the original FX CPUs like the 4100, 6100, or 8100 they will have issues. When this CPU came out I bought one and the game would randomly freeze up and turn black inside the window and repeat the chat over and over on my screen. A total graphics glitch which was only possible to remove by ending the game in task manager and starting it again. I've seen threads on german forums about this and I know people with the newer FX CPUs who don't have this issue.

    https://www.google.com/search?q=metin2+fx-4100&oq=metin2+fx-4100&aqs=chrome..69i57j0.1662j0j4&sourceid=chrome&espv=210&es_sm=93&ie=UTF-8

     

    I have fx-6100 and I don't have any problems with models but my friend with amd athlon x4 had a problem, but not like black screen (model with new animation was invisible). Easy way when source was not released was to search latest binary with costume system and compatibile with tim granny 2.8 latest revision as I found was r31735 (sg)  and r31196 (gf)

  3. Very useful tutorial! But it's not enough to protect server against third party unprivileged persons. Good solution is hide all "external" service such as ssh/mysql/nfs server and client behind vpn , use good website scripts (many server been the pnwed by vulnerabilities in sites) strive to limitation host in mysql users and not privilege users even root to 'FILE' privilege'

    By 'FILE' privilege , vulnerability homepage script and badly chmoded directories as 'cache' 'images'  you can use this as LFI/RFI vuln via load_file() and into outfile statement

    • Love 1
  4. I did it but didnt see any output files LOL

    After this command:

    gmake clean && gmake -j20

    Compilation game stopping at:

    cmd_gm.cpp: In function 'void do_use_item(CHARACTER*, const char*, int, int)':
    cmd_gm.cpp:4357: warning: 'cell' may be used uninitialized in this function
    cmd_gm.cpp: In function 'void do_set_stat(CHARACTER*, const char*, int, int)':
    cmd_gm.cpp:3977: warning: 'n' may be used uninitialized in this function
    cmd_gm.cpp: In function 'void do_mob_ld(CHARACTER*, const char*, int, int)':
    cmd_gm.cpp:855: warning: 'x' may be used uninitialized in this function
    cmd_gm.cpp:855: warning: 'y' may be used uninitialized in this function
    
    

    There is no output files just stopp at this moment and shutdown the compilation.

    It's not error. You have too many threads runned so error is flooded by other threads.

×
×
  • Create New...

Important Information

Terms of Use / Privacy Policy / Guidelines / We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.