Mtasa-blue: Mta sa against ddos

i mean here by server is a web server

This Idea doesnt have any effect. Peoples who are banned will always find a way to get the IP from a Server (game monitors). Also as far as i remember, nobody has been banned for DDosing other projects. Besides that, MTA is not responsible to deal with such attacks but your hosting provider is.

i think game monitors will not work here . because the player is banned and the mta webserver will not send the ip to him.

Still, it wouldnt make any sense. It wouldnt prevent anything plus MTA is not responsible for such things

You can't just hide IP's from the client, the system can't connect to anything without an IP, even encryption won't work.

i'm not stupid , the mta client will request the ip from mta web server and not from nothing. and ofcourse the webserver has an ip but its not game server ip.

Unfortunately this comes down to bad mitigation, which is more of a network design problem that any game server should spend a little time researching, considering network is what it's all about at the end of the day. You should research how to mitigate the effect of DDoS attacks for a game server. Making it harder for clients to get server IP addresses is a waste of time.

i think no one can understand this , even if i explain better . hope someone close this

i think no one can understand this , even if i explain better . hope someone close this

I understand what you're suggesting, but unfortunately that does not stop or prevent anyone with the capability of launching a DDoS attack to get your server's single IP address (also considering the IP has to come from MTA at the end of the day).

he just will get the ip if he has someone inside the server and he has enough knowledge to get the ip or at least use some software.
i know it will take time to implement but its a good idea atleast for me since we get ddos just from childs.

Still. Its a waste of time. Ip addresses can be easily obtained EVEN when the ip is returned from the master server. Its more or less a Problem for yourself / your hosting provider to get rid of ddos attacks. Nobody else can really do anything about it. Even when mta would work like you suggested: it would still be attackable. Those who know how to d(d)os are also able to use f.e wireshark to spoof server ip.

-_- , im not talking about normal players , i'm talking about banned players. they can't get any ip even if he use any tool in this world . the ip will requested for normal players . so please stop talking about he will use softwares to get the ip . if we talked here about the normal player then yes he can get the ip .

okay guys just forget this idea.

If a player is banned, the client still attempts to connect to the server. The server then rejects the connection. This requires a connection between the server and the client. Therefore the client always needs the IP of the server. No matter how well we hide it in the UI, you can easily figure the IP out by monitoring traffic.

i'm not talking here about game server , i'm talking about web server (MTA WEB SERVER) ---> Website (php) and database

okay this is an image for the idea :

Maaan. You have already been told that this will not help, because computer will still know the server's IP. This IP can be seen in any network monitoring program:

-_- , guys you not understand exactly what i say

really bad :/

Simply said your idea won't solve anything. It never would be hard to get the IP despite such protections in place. For a start servers rarely change IP's so people can build a listing of said IP's in case they get banned. Let us not waste time on something that won't solve the problem whatsoever.

For the record: I know exactly what you mean and this is my final response on that matter.

Simply said your idea won't solve anything. It never would be hard to get the IP despite such protections in place. For a start servers rarely change IP's so people can build a listing of said IP's in case they get banned. Let us not waste time on something that won't solve the problem whatsoever.

thats why i told above to make title or server id , so we can change ip easely without lose players

For the record: I know exactly what you mean and this is my final response on that matter.

this topic was closed , i just want to response others about the idea because they not understand it.
but , good , and really good.
My next game i will apply this theory on it.

IP can be hidden only with a proxy (intermediate) server. Like this:
Client: I want to get a servers list (without IPs)
Proxy: no problem, to take
Client: I want to connect to first server
Proxy: ok, now your traffic sent to me will be sent to this server

But this is not what you suggest!

bro do you know what is mta web server ?

How would the web server know if you're even the person it thinks you are? VPN for different IP and sending a fake serial (you could easily recreate the HTTP request to it with a made-up serial...) and suddenly it thinks you're not banned!

yes i know , but hope mta not doing this mistake , the data must be encrypted first then it must sent to web server otherwise we must forgot all of this.

That can also be modified... as long as you access to the client you can misuse it any way you'd like.

Beside, people can still keep a list and have it somewhere online. The only way to defend against a DDoS is by having proper network mitigation.

That can also be modified... as long as you access to the client you can misuse it any way you'd like.

yeah ,but every serial used must be blocked , because no one will give his request data to anyone otherwise he is an attacker too

The only way to defend against a DDoS is by having proper network mitigation.

and yes a host with Anti DDos really important