IPWhitelist setup, on Spigot server #1 & #2, to only allow connections from the nodes main IP*.You have three servers on a shared host (CompanyX): However, these plugin solutions may not fully protect you, given the following example. Spoiler: Why this doesn't fully protect you If you cannot configure a firewall, there are multiple plugins which will allow you to achieve exactly the same, but without a firewall. Ufw allow from $BUNGEE_IP to any port $SERVER_PORT proto tcp top) Use the following code if ufw is installed: Using "ufw", or Uncomplicated Firewall, you can achieve the same effect as setting up iptables. Iptables -I INPUT -m tcp -p tcp -dport 25562 -j bungee Iptables -I INPUT -m tcp -p tcp -dport 25561 -j bungee # all other ports not here will not be limited # which ports will the above IPs be allowed to work on. Iptables -A bungee -src 127.0.0.1 -j ACCEPT Iptables -N bungee # create a new chain for bungee Make necessary modifications to match your IPs and ports. Make a file called firewall.sh and paste the script below into it. The code below is an iptables script for multiple dedicated machines with multiple servers by PhanaticD. If at any time you find yourself unable to connect to your servers after updating iptables rules, simply enter this command to completely reset it: etc/init.d/iptables-persistent save top) The commands used to do this vary depending on which Linux distribution you use: top) You must make these rules automatically apply each reboot. Iptables -I INPUT ! -s $BUNGEE_IP -p tcp -dport $START_PORT:$END_PORT -j DROP top) Replace $START_PORT and $END_PORT with your desired port range, don't forget the colon in between. Iptables -I INPUT ! -s $BUNGEE_IP -p tcp -dport $SERVER_PORT -j DROPĪlternatively if you have multiple Minecraft servers running instead of writing a rule for each server and its port you can use the following command to add a port range which will be blocked with the firewall. Note that Windows Server does not come with iptables pre-installed. Installation of the iptables software to your machine is fairly straightforward depending on your distribution of Linux. Please note that all commands must be run as root. Replace $SERVER_PORT with the port of your Minecraft server. Replace $BUNGEE_IP with the IP of the server running BungeeCord, if your Minecraft server(s) and Bungeecord are on the same physical server, this IP will be 127.0.0.1. Once you have everything set up you can activate this firewall with the command below. By default, most Linux distros come preinstalled with the easy to use iptables. The best way to fool-proof and secure your BungeeCord server is using a firewall in order to prevent access to them at all from the outside world. Is there a way to spoof that? We're running a bungeecord server with proxy in online mode, so that should stop the issues with offline servers, correct? The only other person who has the password is our dev who has been with us a while.Īlso, I looked up the UUID associated with the fake admin's MC account on login, and it does not exist according to Mojang. The question is.is it possible this random guy hacked into my server and/or hacked the console password? I made sure the console password was not something like "IlikeBacon" or something like that. I checked the logs and the fake admin guy was not issuing ANY commands except talking, and there is NOTHING that shows anyone setting anyone's rank except for "Changed rank to Admin."Īll my staff are sudo exempt after an incident with one of the co-owners daughter's friend sudoing the entire server's staff. Then the fake admin sudo'd him to say "I will unban so he can grief the server.", then sudo'd the mod to unban his IP. However, the fake admin sudo'd the mod to unban him, then the mod saw it and immediately IPbanned him. Luckily, the real mod banned the fake admin. One of my Moderators showed up asking who he was, and the player set himself to Admin and proceeded to taunt my Moderator by setting his rank to guest. Late last night a new player joined my server, set himself to Moderator, taunted some players. Before you ask why I want information on how to hack a server, I don't.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |