You don't really need to have the same rules (lines 4-7, 8-11, 12-14) duplicated for each port, iptables allows you to specify port ranges like 27015:27019 so you can compact your rules down quite a bit.
On Tue, Jan 31, 2012 at 11:46 AM, Michael Johansen <michs...@live.no> wrote: > > This is what I've got so far. Should I consider locking everything down > and use rules for everything? For now I run all three policies with ACCEPT > and the rules below.http://pastebin.com/85vVtPM8 > > > From: beretta.clau...@gmail.com > > Date: Tue, 31 Jan 2012 17:36:51 +0100 > > To: hlds_linux@list.valvesoftware.com > > Subject: Re: [hlds_linux] No Steam Logon - massive lag > > > > the RCON port definitely needs to be blocked or filtered: a SYN flood to > > the RCON port will crash a linux srcds server after a while and make a > > windows server lag to 3 fps until it stops > > > > On Tue, Jan 31, 2012 at 4:23 PM, hlds <h...@gmx.com> wrote: > > > > > 2. You should block RCON access, not accept it. There's an exploit out > > > there, but I don't know yet how it works. Probably the server is > flooded > > > with RCON connections and after few seconds it won't be able to open > any > > > file... > > > > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux
