Dear Fivem community.
Our server was attacked server crasher.
Currently, a working solution is only very expensive.
We think a packet is being sent to the server that is causing the crash.
Can anyone find a solution to this?
Thank you in advance ^^
Hello.
Do you have in your server.cfg lines like this :
set sv_requestParanoia 3
sv_endpointprivacy true
sv_forceIndirectListing true
sv_useDirectListing true
sv_authMinTrust 4
Be careful if you spam with the URL /players.json with a simple refresh of the page several times your IP will be blocked from your server for a certain time.
At the first connection in the URL /players.json you will have the list of users with their ping but after a refresh you will have the message “Nope”.
If you add this, it will block L7 DDoS attacks (from web).
If you already have this, we can’t help you without logs or crash dumps.
Even, prefer use a paid antivirus (leaked one can be backdoor’d).
Have a great week!
The server console itself is crashed.
It simply closes. Sometimes even the txadmin console closes.
Hey.
No crash dump, no logs, no help.
Can’t do without.
Self Hosting not recommanded, maybe PC too bad.
Have a great night.
Please provide either a server crash dump and/or logs, or a .pcap of your incoming network traffic if you think someone is using some maliciously crafted packets.
Since my server is protected by a proxy vps and the vps is protected in TCP also by cloudflare, being that all the requests come from cloudflare ips, can be that this configuration after a while goes to block the ip of cloudflare since all the requests come from them and not directly from the ip of the players?