Help LoginSvr, ChatNode, AgentShop

[Ocid Borlan]

Hello master i have problem on LoginSvr, ChatNode, AgentShop always crash every +- 3 minutes
is there any other solution besides
http://forum.ragezone.com/f460/chatnode-temp-crash-channels-1136262/

 

[geography]

You are attacked！

 

[Ocid Borlan]

You are attacked！

You have solution for this ?

 

[geography]

if attacked not by ddos ,you must fix the Worldsvr bugs!

 

[Drav3n]

It's not attacked, you just need to run the check_daemon.sh under on cronjob

/home/cabal/check_daemon.sh

Run it every 5 minutes.

 

[Ocid Borlan]

It's not attacked, you just need to run the check_daemon.sh under on cronjob

/home/cabal/check_daemon.sh

Run it every 5 minutes.

This is not solution, and why do you suggest this?
I think you know what happened

 

[Ocid Borlan]

What is this ?
[##ERROR##] OnIPCGuildDestroyResult(): pUserCtx(NULL), userIdx(0)

 

[Drav3n]

This is not solution, and why do you suggest this?
I think you know what happened

Try to analyze how the shell script works included on the EP8 package.
Try not to run this check_daemon.sh and your WorldSvr and other service will stopped.

 

[siontherapadant]

For this kind of attack happening your best bet is implementing a means to track where it is originating from. From there simply look at the info that it gives you and adjust your IPtables accordingly. I'd also suggest implementing rate limiting and IP validation to prevent internal IPs being spoofed as return addresses. and for certain ports instead of simply opening them instead only open them for CERTAIN ips instead. that should provide you with a basic means of defense. The rest is ultimately up to you to do.