huihshen Wrote:you have to require IP resolution before servicing the request, if the same IP tries to make a lots of requests in a short period of time you then block them. It will still be lagging while you are singling out all the IPs of the offender because they are still flooding in. But then it will end, rather than Denied service for as long as the attacker wants.
This doesn't work if the attack is just generating as much traffic as possible to keep the target connection overloaded, which is the most common method, and what seems to be happening here. This would only work for minor attacks. For larger attacks by the time it gets to a point that you can filter it out on the same computer or even the same network its already too late, it has already used up the bandwidth and resources it needs to use up to prevent legitimate uses.
Fruityla Wrote:I'm wondering if it wouldn't just be better to leave the server down until the protection in installed. That way Panda won't have to do all that work getting it up only for it to go down again within hours 
From what they have described so far it doesn't go up when they do something specific, but rather when the attacker decides to stop attacking for a while. Its not any work on the part of the GMs that is making the servers come back each specific time (altought I'm sure they are very busy doing what they can to try to prevent it). So there is no extra work in leaving it on. This is usually how it is with these kinds of attacks.
My chars: TPC / Tjuven / Dansare / Sinne / Magiker / Byracka / Krigare / Andreas
![[Image: 33918807.png]](http://img148.imageshack.us/img148/2726/33918807.png)
![[Image: Gmayu.gif]](http://www.pandoraonline.net/heRO_wiki/images/b/be/Gmayu.gif)
![[Image: 4bbda0up6.gif]](http://img340.imageshack.us/img340/1007/4bbda0up6.gif)
![[Image: 25b636je6.gif]](http://img132.imageshack.us/img132/8403/25b636je6.gif)
![[Image: d59593.gif]](http://img67.imageshack.us/img67/8773/d59593.gif)