R
Ryan
Guest
Network status update
Since I’ve already been hit with about 100 IM’s and 4500 PM’s and so on and so forth… I figured its time to let you all know what happened.
Yesterday (10/24/2005) at approximately 11:50 EDT the RunUO Network was hit with a massive Denial of Service attack that saturated our provider’s datacenter.
At approximately 12:05 PM EDT the RunUO Network was null routed in order to alleviate its traffic off of the datacenter. The datacenter’s operations returned to normal at around 13:00 EDT.
From that point until 11:00 AM EDT today (10/25/05) we have been offline and stayed offline to ensure that no one would be affected by a continued attack.
I’ve pulled this definition for you: On the Internet, a denial of service (DoS) attack is an incident in which a user or organization is deprived of the services of a resource they would normally expect to have. Typically, the loss of service is the inability of a particular network service, such as e-mail, to be available or the temporary loss of all network connectivity and services. In the worst cases, for example, a Web site accessed by millions of people can occasionally be forced to temporarily cease operation. A denial of service attack can also destroy programming and files in a computer system.
In short a user was upset at the RunUO Team, launched a massive Denial of Service (10 gigabit plus) against our network and forced us to take it off line. Afterwards I spoke with this user at length and he has assured me this will never happen again. Of course… there’s no way of knowing.
In the end folks, this service is free but this attack affected thousands of customers at our datacenter who have done nothing other than choose the same internet provider we use. I find it despicable that anyone would attack us or any other person on the internet in a scale that will actually affect people who use the service to put food on the table for their families.
We’ve had some long conversations with our datacenter and will be doing some changes to the RunUO Network over the next few days to hopefully bring some sanity back into our world. At this point and time we are debating keeping our IRC network as it has been the target of a few of these attacks.
For the record these are the graphs of the attacks on the links to the datacenter:
Abovenet Gigabit Links 1, 2 and 3
Cogent Gigabit Links 1 and 2
Verio Gigabit Links 1, 2, 3 and 4
XO Gigabit Link
As you can see by the sharp drop in these bandwidth graphs to the middle/left of the graph the entire datacenter pretty much lost its connectivity. This affected thousands of other customers, not just our HOBBY. That is unacceptable and it cannot happen again.
Those of you that think you’re attacking us need to step back and realize you’re messing with people’s livelihoods, not our game servers. No offense to anyone but we don’t care if the game servers get taken out because they are a HOBBY for us. We do however care when peoples businesses get affected.
In the end, the RunUO network is back online, routes are falling back into place and things are looking good. If you have a friend that cannot get connected to our servers please have them run a traceroute (start -> run -> cmd -> tracert 67.15.137.2) and paste the results in this thread.
PLEASE DO NOT USE THIS THREAD FOR DISCUSSION THIS THREAD IS TO DIAGNOSE ISSUES WITH CONNECTIVITY.
Discussion should take place in this thread:
http://www.uogamers.com/forum/showthread.php?p=361028
Since I’ve already been hit with about 100 IM’s and 4500 PM’s and so on and so forth… I figured its time to let you all know what happened.
Yesterday (10/24/2005) at approximately 11:50 EDT the RunUO Network was hit with a massive Denial of Service attack that saturated our provider’s datacenter.
At approximately 12:05 PM EDT the RunUO Network was null routed in order to alleviate its traffic off of the datacenter. The datacenter’s operations returned to normal at around 13:00 EDT.
From that point until 11:00 AM EDT today (10/25/05) we have been offline and stayed offline to ensure that no one would be affected by a continued attack.
I’ve pulled this definition for you: On the Internet, a denial of service (DoS) attack is an incident in which a user or organization is deprived of the services of a resource they would normally expect to have. Typically, the loss of service is the inability of a particular network service, such as e-mail, to be available or the temporary loss of all network connectivity and services. In the worst cases, for example, a Web site accessed by millions of people can occasionally be forced to temporarily cease operation. A denial of service attack can also destroy programming and files in a computer system.
In short a user was upset at the RunUO Team, launched a massive Denial of Service (10 gigabit plus) against our network and forced us to take it off line. Afterwards I spoke with this user at length and he has assured me this will never happen again. Of course… there’s no way of knowing.
In the end folks, this service is free but this attack affected thousands of customers at our datacenter who have done nothing other than choose the same internet provider we use. I find it despicable that anyone would attack us or any other person on the internet in a scale that will actually affect people who use the service to put food on the table for their families.
We’ve had some long conversations with our datacenter and will be doing some changes to the RunUO Network over the next few days to hopefully bring some sanity back into our world. At this point and time we are debating keeping our IRC network as it has been the target of a few of these attacks.
For the record these are the graphs of the attacks on the links to the datacenter:
Abovenet Gigabit Links 1, 2 and 3
Cogent Gigabit Links 1 and 2
Verio Gigabit Links 1, 2, 3 and 4
XO Gigabit Link
As you can see by the sharp drop in these bandwidth graphs to the middle/left of the graph the entire datacenter pretty much lost its connectivity. This affected thousands of other customers, not just our HOBBY. That is unacceptable and it cannot happen again.
Those of you that think you’re attacking us need to step back and realize you’re messing with people’s livelihoods, not our game servers. No offense to anyone but we don’t care if the game servers get taken out because they are a HOBBY for us. We do however care when peoples businesses get affected.
In the end, the RunUO network is back online, routes are falling back into place and things are looking good. If you have a friend that cannot get connected to our servers please have them run a traceroute (start -> run -> cmd -> tracert 67.15.137.2) and paste the results in this thread.
PLEASE DO NOT USE THIS THREAD FOR DISCUSSION THIS THREAD IS TO DIAGNOSE ISSUES WITH CONNECTIVITY.
Discussion should take place in this thread:
http://www.uogamers.com/forum/showthread.php?p=361028