From 3bbb9ec7d46dc29276567fb5fcedbff5e2d14121 Mon Sep 17 00:00:00 2001
From: Dabb <dabb@users.sourceforge.net>
Date: Wed, 13 Dec 2000 22:52:15 +0000
Subject: [PATCH] Instructions about basic DoS tone-down in Quakeforge servers.

---
 doc/net_DoS_protection.txt | 49 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 49 insertions(+)
 create mode 100644 doc/net_DoS_protection.txt

diff --git a/doc/net_DoS_protection.txt b/doc/net_DoS_protection.txt
new file mode 100644
index 0000000..ef11047
--- /dev/null
+++ b/doc/net_DoS_protection.txt
@@ -0,0 +1,49 @@
+
+SV_NETDOSPROTECT 0/1 
+Used to turn on/off Denial Of Service protections. Makes it more 
+difficult to use quakeworld servers to conduct DoS attacks against 
+other sites.
+
+NETDOSVALUES
+Tells server how many of specified kind of requests (per IP addr) 
+are allowed during time defined with NETDOSEXPIRE.
+Possible request types:
+<FLOOD_PING> <FLOOD_LOG> <FLOOD_CONNECT> <FLOOD_STATUS> <FLOOD_RCON> <FLOOD_BAN>
+
+NETDOSEXPIRE
+Tells server how much time must pass before request counter expires
+and gets set to zero.
+
+
+
+NETDOSVALUES <FLOOD_PING> <FLOOD_LOG> <FLOOD_CONNECT> <FLOOD_STATUS> <FLOOD_RCON> <FLOOD_BAN>
+NETDOSEXPIRE <FLOOD_PING> <FLOOD_LOG> <FLOOD_CONNECT> <FLOOD_STATUS> <FLOOD_RCON> <FLOOD_BAN>
+
+defaults are:
+
+NETDOSVALUES 12 1 3 1 1 1 1
+NETDOSEXPIRE 1  1 2 0.9 1 5
+
+meaning :
+maximum of 12 PINGS are allowed in 1 second
+maximum of 1 LOG request / second
+maximum of 2 connect requests / 3 seconds
+maximum of 1 status request / 0.9 seconds
+maximum of 1 rcon command / 1 second
+maximum of 1 request from banned IP / 5 second
+
+Examples
+if server receives 15 ping requests under 1 second, it will allow 12 requests
+and drop 3 without response.
+
+Other commands:
+
+sv_allow_log
+Allow/disallow remote LOG requests
+
+sv_allow_status
+Allow/disallow remote status requests
+
+sv_allow_ping 
+Allow/disallow remote pings
+