Learn about our GAME DDoS protection (GAME firewall) and how to configure effective protection for servers that support it.
Our dedicated Bare Metal gaming servers include a DDoS protection specifically designed to secure gaming applications against targeted attacks, ensuring stability and accessibility for gamers. This dedicated protection solution is both robust and easy to use, allowing you to focus on developing your business without the distraction of defending against cybercrime.
OVHcloud Anti-DDoS infrastructure and game protection services diagram.
Requirements
- an OVHcloud Game dedicated server
- access to the OVHcloud Control Panel
Please visit our comparison page for more information.
Instructions
Introduction
The Anti-DDoS infrastructure, together with the Edge Network firewall, keeps the network safe from common threats (mostly focused on ISO OSI layers 3 and 4). On the other hand, hosting gaming applications can be a challenging experience in terms of network security. GAME DDoS Protection is here to help - this is a Layer 7 (application) firewall focused on protecting specific gaming protocols (usually using UDP). Its main advantages are:
- Distance: We know that latency and its stability are crucial for gaming. These solutions are put as close as possible to the servers and work together with dedicated hardware.
- 2-way: The platform analyses incoming and outgoing traffic for the best understanding of every player's situation.
- Instant: It can distinguish real players from harmful attacks on a server from the very first network packets.
- Always-on: The ability to detect and stop attacks ensures a smooth experience for sensitive gaming applications without any disruptions and latency changes.
Enabling the GAME DDoS Protection
To configure gaming rules in the GAME firewall, log in to the OVHcloud Control Panel and follow these steps:
- Click the
Bare Metal Cloud
tab. - In the left-hand sidebar, under Network, click on
IP
. - Click on the more options
...
button next to the IP address of your game server. - Click on
Configure the GAME firewall
.
On the following screen, click the Add a rule
button to add a rule to the GAME firewall.
You can set up to 30 rules per IP to protect one or more games hosted on your server behind the GAME firewall. The list of supported game profiles can be seen here.
Select the protocol, enable the ports as needed on the following screen, and click the Validate ✓
button when you are finished adding your rules. You have now successfully configured GAME firewall rules.
In addition, for the best protection, we strongly recommend that you set "Default policy = DROP", which will drop any traffic that does not match the defined rules. This way the listed application will be protected and nothing else will be able to reach your server.
Important notices
FiveM
FiveM is a mod of GTA V. Currently it is not fully recognized by Rockstar (game publisher).
Due to this, we do not plan to release a public FiveM GAME firewall profile for layer 7 protection.
Rust
GAME firewall supports Rust with a detailed profile. You can read more about hosting Rust on OVHcloud servers here.
Minecraft
Minecraft is well-supported in the following versions:
- Minecraft Java edition
- Minecraft Pocket Edition
- Minecraft Query
FAQ
Can I use GAME firewall on other ranges than Bare Metal game servers?
No, the GAME firewall is only available for our Bare Metal game dedicated servers.
Can I disable GAME firewall protection?
This is possible, if not recommended. You can do it by removing all game protocol rules from the configuration and disabling Default policy: Drop
.
My game is not on the supported protocol list, what can I do?
You can propose your need on our infrastructure solutions roadmap on GitHub. This will help us to decide on prioritization of the next features to be developed.
While having configured my game with appropriate ports and default policy to drop, I still receive attacks that are impacting my game server. What to do?
For that, you will need to share relevant network traffic dumps as examples for such attacks (.pcap file) and request protection tuning of your profile. This can be done by contacting our support team.
Go further
For more information and tutorials, please see our other Dedicated Servers support guides or explore the guides for other OVHcloud products and services.
If you need training or technical assistance to implement our solutions, contact your sales representative or click on this link to get a quote and ask our Professional Services experts for a custom analysis of your project.