2

I have setup a mining pool for a smaller project that uses Cryptonight variant 1. I have been running into problems with ddos attacks when other people started launching other mining pools.

At first it was layer7 attacks which hammered my webserver and i managed to successfully mitigate them. However attacks are still inbound on my actual pool ports 3333/5555/7777/8888 and my server rejects shares every now and then because of that.

Cloudflare can't help because i would need an enterprise package for that which is way to expensive. Blocking ip's manually is also a no go since source Ip's are spoofed.

I followed this guide to get some more layer4 based protection https://javapipe.com/ddos/blog/iptables-ddos-protection/

However i feel like there is more i can do. Suggestions are very welcome.

user36303
  • 34,928
  • 2
  • 58
  • 123
Archer Sterling
  • 21
  • 1

1 Answers1

1

It baffles me why pools attack each other, but that asside, there are other providers that offer DDoS services (sometimes for free) on top of their servers.

As per comment thread above, if you intend to stay with the same hosting company which is capping the protection, one way round this is to make use of another provider as a proxy.

N.b. your linked iptables article is pretty good too. I would use that on the proxy too.

jtgrassie
  • 19,601
  • 4
  • 17
  • 54