Does anybody know if ZOS even have firewalls?
-
DMuehlhausen✭✭✭✭✭
✭✭GrumpyMuffin wrote: »24 hours is fair enough, but nearly a week suggests bigger network issues
You're right, but ZoS doesn't own the network. That is owned by companies like Level 3, Comcast, AT&T, Hurricane Electric and most of their hardware is probably owned by Cisco Systems. You want to get mad and lame blame contact these companies and get them to stop the DDOS attacks.
I'm sure they will take great sympathy when you tell them their incompetence is keeping you from playing your game.2 -
Sigtric✭✭✭✭✭
✭✭✭✭✭DMuehlhausen wrote: »What they need to do is tweak their PRAM and reglaze the sub routine.
Then have to people on the same keyboard to stop the hacking DDoS attacks....
This only works if your system gets harshed after it heaps at the wrong parameter. Totally wont work here.
Stormproof: Vibeke - 50 EP mDragonknight | Savi Dreloth - 50 EP Magsorc | Sadi Dreloth - 50 EP Magblade | Sigtric Stormaxe - 50 EP Stamsorc | Valora Dreloth - 50 EP Magplar | Sigtric the Unbearable 50 EP Stam Warden
Scrub: Chews-on-Beavers - 50 EP DK Tank | Vera the Wild - 50 EP magicka Warden | Sigtric the Axe - 50 EP Dragonknight Crafter | Sigtric the Blade - 50 EP Lost Nightblade | Sigtric the Savage - 50 EP magicka Templar | Vibeka Shadowblade - 50 Ep Stealthy Ganky Nightblade |
Show Me Your Dunmer
[/center]0 -
DMuehlhausen✭✭✭✭✭
✭✭PurifedBladez wrote: »Yeah we can all act like it's all of a sudden ddos attacks and not just gross neglect of the server over the years that's progressively gotten worse to lead us to the point were at now. I wonder if the servers will continue to deteriorate till its just basically unplayable..
The servers have been essentially fine over the last year. Sure there are hiccups some slow downs and even a crash or two. Welcome to Network and Server Administration.
When suddenly a server dies every day during max peak usage time and you can look at real time web monitoring systems and you see massive network traffic in the areas of the servers...it's pretty clear DDOS or other network infrastructure failure.0 -
idk✭✭✭✭✭
✭✭✭✭✭GrumpyMuffin wrote: »A DDOS isn't something that's stopped by a firewall. It's not like typical malware or anything like that. It's done in many ways, but one of the most common is thousands of bots posing as legit users, all trying to login at the same time, and clogging the server. That's not something a firewall can protect against.
Almost all big websites and games get hit by ddos each day, yet they manage to avoid keep going down like this game does.
@GrumpyMuffin
Your comment is correct where it comes to the run of the mill ddos attack. Not all are run of the mill.
I guess few remember PayPal and other major commerce sites taken down by a DDOS attack. The location attack has significantly stronger prevention systems than Zos would expect to have. Yet the were significantly hindered for much of the day.0 -
Pinja✭✭✭✭Doesn't the PC version have Log que that should've stopped excess bot attempts?
& If Zos is leasing exclusive accesses to data servers, shared attack requests shouldn't effect them on the system. Unless their providers are cheating them on bandwith & sharing their leased servers with other services...
Like really their is/should be a "firewall" as you should have to submit game data in order to accesses "game servers." Thought if a intermittent regional hub was hit blocking 'all' internet activity that's a different story.
But if it's just this game... not really.0 -
Sigtric✭✭✭✭✭
✭✭✭✭✭Giles.floydub17_ESO wrote: »GrumpyMuffin wrote: »A DDOS isn't something that's stopped by a firewall. It's not like typical malware or anything like that. It's done in many ways, but one of the most common is thousands of bots posing as legit users, all trying to login at the same time, and clogging the server. That's not something a firewall can protect against.
Almost all big websites and games get hit by ddos each day, yet they manage to avoid keep going down like this game does.
@GrumpyMuffin
Your comment is correct where it comes to the run of the mill ddos attack. Not all are run of the mill.
I guess few remember PayPal and other major commerce sites taken down by a DDOS attack. The location attack has significantly stronger prevention systems than Zos would expect to have. Yet the were significantly hindered for much of the day.
I mean that one giagantic eyesore mmo everyone for some reason always wishes all other MMOs would replicate goes down what, 3-4 times a year, in a major way, due to DDoS, doesn't it?
Stormproof: Vibeke - 50 EP mDragonknight | Savi Dreloth - 50 EP Magsorc | Sadi Dreloth - 50 EP Magblade | Sigtric Stormaxe - 50 EP Stamsorc | Valora Dreloth - 50 EP Magplar | Sigtric the Unbearable 50 EP Stam Warden
Scrub: Chews-on-Beavers - 50 EP DK Tank | Vera the Wild - 50 EP magicka Warden | Sigtric the Axe - 50 EP Dragonknight Crafter | Sigtric the Blade - 50 EP Lost Nightblade | Sigtric the Savage - 50 EP magicka Templar | Vibeka Shadowblade - 50 Ep Stealthy Ganky Nightblade |
Show Me Your Dunmer
[/center]0 -
RinaldoGandolphi✭✭✭✭✭
✭✭✭✭To chime in!
Its not true there is nothing you can do about DDOS attacks...Blizzard and EA not being able to do anything about a DDOS attack is just showing the incompetence of their network engineers, and the unwillingness of upper management to commit reasonable resources for threat mitigation.
Each DDOS attack is handled differently depending on if its a web site or a game service, etc....
The best ways to deal with DDOS is?
1. Bandwidth Oversubscription - This one is fairly straightforward. As you grow larger, your bandwidth costs drop. Generally large organizations will lease a significantly larger capacity than they need to account for growth and DDoS attacks. If an attacker is unable to muster enough traffic to overwhelm this, a volumetric attack is generally ineffective.
2.Automated Mitigation - Many tools will monitor netflow data from routers and other data sources to determine a baseline for traffic. If traffic patterns step out of these zones, DDoS mitigation tools can attract the traffic to them using BGP or other mechanisms and filter out noise. They then pass the clean traffic further into the network. These tools can generally detect both volumetric attacks, and more insidious attacks such as slowloris.
3.Upstream Blackholing - There are ways to filter UDP traffic using router blackholing. I've seen situations where a business has no need to receive UDP traffic (i.e. NTP and DNS) to their infrastructure, so they have their transit providers blackhole all of this traffic. The largest volumetric attacks out there are generally reflected NTP or DNS amplification attacks.
Third Party Provider - Even many fairly large organizations fear that monster 1 petrabye attack. They often implement either a DNS-based redirect service or a BGP-based service to protect them in case they suffer a sustained attack. I would say CDN providers also fall under this umbrella, since they can help an organization stay online during an attack.
System Hardening - You can often configure both your operating system and your applications to be more resilient to application layer DDoS attacks. Things such as ensuring enough inodes on your Linux server to configuring the right number of Apache worker threads can help make it harder for an attacker to take down your service.
Simply put, in ZOS cases, if they are having problems with DDOS I would recommend them to increase their bandwidth available by about 500%(More you have harder it is to flood your services) and also pay for Black Lotus. Black Lotus was recently acquired by Level 3 communications, they are traffic scrubbing, designed to mitigate DDOS attacks. There are other services besides Black Lotus/Level 3 that offer similar services.
there are many things you can do to mitigate or stop DDOS attacks on your network, it just depends if your willing to invest the resources to do it.
Saying you can do nothing is simply not trueRinaldo Gandolphi-Breton Sorcerer Daggerfall Covenant
Juste Gandolphi Dark Elf Templar Daggerfall Covenant
Richter Gandolphi - Dark Elf Dragonknight Daggerfall Covenant
Mathias Gandolphi - Breton Nightblade Daggerfall Covenant
RinaldoGandolphi - High Elf Sorcerer Aldmeri Dominion
Officer Fire and Ice
Co-GM - MVP
Sorcerer's - The ONLY class in the game that is punished for using its class defining skill (Bolt Escape)
"Here in his shrine, that they have forgotten. Here do we toil, that we might remember. By night we reclaim, what by day was stolen. Far from ourselves, he grows ever near to us. Our eyes once were blinded, now through him do we see. Our hands once were idle, now through them does he speak. And when the world shall listen, and when the world shall see, and when the world remembers, that world will cease to be. - Miraak5 -
Elsonso✭✭✭✭✭
✭✭✭✭✭.RinaldoGandolphi wrote: »To chime in!
Its not true there is nothing you can do about DDOS attacks...Blizzard and EA not being able to do anything about a DDOS attack is just showing the incompetence of their network engineers, and the unwillingness of upper management to commit reasonable resources for threat mitigation.
Each DDOS attack is handled differently depending on if its a web site or a game service, etc....
The best ways to deal with DDOS is?
1. Bandwidth Oversubscription - This one is fairly straightforward. As you grow larger, your bandwidth costs drop. Generally large organizations will lease a significantly larger capacity than they need to account for growth and DDoS attacks. If an attacker is unable to muster enough traffic to overwhelm this, a volumetric attack is generally ineffective.
2.Automated Mitigation - Many tools will monitor netflow data from routers and other data sources to determine a baseline for traffic. If traffic patterns step out of these zones, DDoS mitigation tools can attract the traffic to them using BGP or other mechanisms and filter out noise. They then pass the clean traffic further into the network. These tools can generally detect both volumetric attacks, and more insidious attacks such as slowloris.
3.Upstream Blackholing - There are ways to filter UDP traffic using router blackholing. I've seen situations where a business has no need to receive UDP traffic (i.e. NTP and DNS) to their infrastructure, so they have their transit providers blackhole all of this traffic. The largest volumetric attacks out there are generally reflected NTP or DNS amplification attacks.
Third Party Provider - Even many fairly large organizations fear that monster 1 petrabye attack. They often implement either a DNS-based redirect service or a BGP-based service to protect them in case they suffer a sustained attack. I would say CDN providers also fall under this umbrella, since they can help an organization stay online during an attack.
System Hardening - You can often configure both your operating system and your applications to be more resilient to application layer DDoS attacks. Things such as ensuring enough inodes on your Linux server to configuring the right number of Apache worker threads can help make it harder for an attacker to take down your service.
Simply put, in ZOS cases, if they are having problems with DDOS I would recommend them to increase their bandwidth available by about 500%(More you have harder it is to flood your services) and also pay for Black Lotus. Black Lotus was recently acquired by Level 3 communications, they are traffic scrubbing, designed to mitigate DDOS attacks. There are other services besides Black Lotus/Level 3 that offer similar services.
there are many things you can do to mitigate or stop DDOS attacks on your network, it just depends if your willing to invest the resources to do it.
Saying you can do nothing is simply not true
I just want to add that we already know they (ZOS) don't just sit there and hope the DDoS goes away. They are, undoubtedly, already doing something off of that list. Keep in mind that, even though they act like they are running on a shoestring, they do have a significant outlay of IT and network infrastructure in place.XBox EU/NA:@ElsonsoJannus
PC NA/EU: @Elsonso
PSN NA/EU: @ElsonsoJannus
Total in-game hours: 11321
X/Twitter: ElsonsoJannus0 -
ZOS_JohanaB✭✭✭✭A few comments have been removed from this thread for excessively rude, and nonconstructive comments. Please remember to be civil, constructive, and follow the community rules as you continue to post.1 -
runagate✭✭✭✭✭
✭✭✭The weirdest thing about that map of places affected makes me think out in Siberia people in Miryuga are asking, "WTF did we ever do to you!?"0 -
Kodrac✭✭✭✭✭
✭✭PurifedBladez wrote: »Yeah we can all act like it's all of a sudden ddos attacks and not just gross neglect of the server over the years that's progressively gotten worse to lead us to the point were at now. I wonder if the servers will continue to deteriorate till its just basically unplayable..
And we can act like you have any clue as to what you're talking about.1
This discussion has been closed.