Page 1 of 1
Creating a bpf filter
Posted: Mon Aug 29, 2022 12:00 pm
by muza
Hey, I'm trying to make a bpf filter for open vpn to keep my server less vulnerable to ddos attacks. I'm trying to get a pcap of my connection to open vpn so I can find out session id etc. I'm following this guide on github
https://github.com/Courvix-Network/Open ... Protection but when I create a bcap it does not show the session id, etc.
I'm still very new to this so any help would be very appreciated, thanks!
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 1:36 pm
by TinCanTech
A quote from your source:
Courvix Network wrote:I am also no expert when it comes to DDoS protection or the application of DDoS prevention measures. I know what I know, that's it.
OpenVPN developers take
great care to ensure that Openvpn is robust enough to look after itself.
Provided you read the
official Openvpn documentation, your server will be safe.
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 7:09 pm
by muza
TinCanTech wrote: ↑Mon Aug 29, 2022 1:36 pm
A quote from your source:
Courvix Network wrote:I am also no expert when it comes to DDoS protection or the application of DDoS prevention measures. I know what I know, that's it.
OpenVPN developers take
great care to ensure that Openvpn is robust enough to look after itself.
Provided you read the
official Openvpn documentation, your server will be safe.
Ah ok, It's just that someone has already managed to ddos my server. So I'm just trying to take that extra step to ensure I can minimise the risk of it happening again.
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 7:15 pm
by TinCanTech
muza wrote: ↑Mon Aug 29, 2022 7:09 pm
someone has already managed to ddos my server
Describe that, we would be most interested.
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 7:17 pm
by muza
TinCanTech wrote: ↑Mon Aug 29, 2022 7:15 pm
muza wrote: ↑Mon Aug 29, 2022 7:09 pm
someone has already managed to ddos my server
Describe that, we would be most interested.
He said something about using a api which uses a amp attack method specifically made for ovhs/nfos to bypass there basic firewall
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 7:19 pm
by muza
When he started the attack my server instantly shut down and I could not connect to it until he stopped the attack
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 7:22 pm
by TinCanTech
Is there an Openvpn vulnerability ? There's probably a bug-bounty for discovery ..
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 7:33 pm
by muza
TinCanTech wrote: ↑Mon Aug 29, 2022 7:22 pm
Is there an Openvpn vulnerability ? There's probably a bug-bounty for discovery ..
Without a doubt that's why I'm trying to set up ip tables for the mean time. It's just hard trying to understand how.
Re: Creating a bpf filter
Posted: Mon Aug 29, 2022 8:02 pm
by TinCanTech
If you discover a genuine OpenVPN DDOS vulnerability then it is probably best to send an email to:
> security at openvpn.net