Bitcoin Forum
December 07, 2016, 06:26:17 PM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: How can I tell if I am being DDOS'd?  (Read 47646 times)
SgtSpike
Legendary
*
Offline Offline

Activity: 1344



View Profile
June 29, 2011, 05:35:11 PM
 #1

I run a gameserver off of my residential internet connection (50/10).  It's worked great for the last 8 months or so.  Suddenly, I am getting complaints of extreme lag without any evidence of server problems.  I am wondering if I am getting a DDOS attack, perhaps someone disgruntled from being banned from the server or something.  I've had several threats sent my way with that sort of implication.

I've run speedtests, though I haven't had the opportunity to run one during a laggy period, and they come out fine.  15ms ping to the closest server, connection speeds are spot-on.

I use this router with DD-WRT:  http://www.newegg.com/Product/Product.aspx?Item=N82E16833320038

The incoming log table shows a lot (20-30) of incoming requests for ports 27733 and bootpc.  Not sure whether those requests are related to the gameserver at all, though the actual game service does not utilize either of those ports as far as I am aware, and neither of them are opened in my NAT table.

What would be the easiest way to tell if someone is trying to DDOS me?
1481135177
Hero Member
*
Offline Offline

Posts: 1481135177

View Profile Personal Message (Offline)

Ignore
1481135177
Reply with quote  #2

1481135177
Report to moderator
1481135177
Hero Member
*
Offline Offline

Posts: 1481135177

View Profile Personal Message (Offline)

Ignore
1481135177
Reply with quote  #2

1481135177
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481135177
Hero Member
*
Offline Offline

Posts: 1481135177

View Profile Personal Message (Offline)

Ignore
1481135177
Reply with quote  #2

1481135177
Report to moderator
BitcoinPorn
Hero Member
*****
Offline Offline

Activity: 560


Posts: 69


View Profile WWW
June 29, 2011, 05:45:31 PM
 #2

I hate when Yahoo Answers sometimes seems helpful http://answers.yahoo.com/question/index?qid=20090211201758AAz6Xzv

SgtSpike
Legendary
*
Offline Offline

Activity: 1344



View Profile
June 29, 2011, 06:00:27 PM
 #3

I hate when Yahoo Answers sometimes seems helpful http://answers.yahoo.com/question/index?qid=20090211201758AAz6Xzv

But if the traffic is being blocked at the router level because it's the wrong port, command-line commands from my server (or any other machine on the network) isn't going to do me any good.  So I need some way to analyze the traffic using DD-WRT... at least, I think I do.

I suppose this might be a valid answer though:
Quote
If you were honestly getting hit with a DDOS, you wouldn't even get a ping reply and you'd be unreachable. A DDOS attack will take down big servers. Your little wimpy connection isn't even a match for a good DOS attack.
Though I guess it also depends on the scale of a DDOS attack too (or maybe it's just a simple DOS attack).
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!