All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
[SEARCH] High-Capacity Anti-DDoS Tunnel or Dedicated Server for FiveM (Gcore or similar)
Hello LET community,
I am looking for a robust Anti-DDoS solution for a high-profile FiveM project currently hosted (or planning to be hosted) on Hetzner. The client is facing frequent, large-scale volumetric and application-layer attacks that standard mitigation isn't handling. Sometimes +1Tbps / 300mpps
I am considering two options:
A GRE/IP-over-IP Tunnel: To sit in front of a Hetzner dedicated server.
A Dedicated Server: In a location with top-tier mitigation built-in.
Requirements:
- Mitigation Quality: Must be "enterprise grade" (Gcore, Path.net, or similar). We need something that specifically handles FiveM/UDP bursts effectively.
- Traffic/Bandwidth: We don't need huge unmetered pipes (usage isn't at 5Gbps levels), but we need a reasonable commit that allows for spikes during attacks.
- IPs: A small subnet (around 4 IPs) is plenty.
Budget: Looking for a "reasonable" price point, we are willing to pay for quality given the attack profile, but we are still looking for something reasonable.
If you are a provider or have a recommendation for a solid reseller/partner that fits this niche, please let me know.
Thanks!
Comments
Hi,
We have excellent filtering for FiveM and also provide CDN (free of charge) for asset caching.
We constantly filter multi-terabit attacks off of our customers of multiple applications (TeamSpeak3, FiveM, Minecraft, etc...)
You can also check out our website https://loclix.io/
Please DM so we can work out a solution that works for you!
Hey, we can provide IP-Tunnels (GRE/GRETAP/VXLAN/Wireguard) with PletX DDoS Protection, aswell as Dedicated servers in germany and Netherlands.
PletX won't be good for this type of servers sadly
No problem, in that case we can't help you unfortunately. We haven't had any issues with PletX mitigating multi-tbps attacks on whole subnets or FiveM customers. They have plenty of mitigation capacity.
Maybe @PolyAnthi can help
May I ask why you are not using Gcore or Path?
Send us a DM!
We are pay as you go and support FiveM Natively,
Both HTTP/HTTPS inspection for FiveM and UDP DPI for FiveM Traffic.
:hmm: Why do I recognise you
You subscribe to my onlyfans
Cause pricing for a dedicated is too much for my use?
Checks out
Can you provide a test IP of your "anycast" servers?
Yes we sure can,
https://chi-lg.gatewaysentry.com/
https://lax-lg.gatewaysentry.com/
https://ams-lg.gatewaysentry.com/
https://den-lg.gatewaysentry.com/
Here is the looking glass for all the PoPs we offer,
Send us a DM if you'd want a VM for a few hours just to see that its truly an anycast routed VM platform.
@gatewaysentryllc FYI all the download test files in AMS give a HTTP 451 error (Unavailable for Legal Reasons - had to look it up)
Thank you,
Pushed a change.
216.75.75.1 is the actual anycast IP there, 1 upstream being AS46844 who seems to have pretty much 0 local peering, all transit, interesting choice
Yup all servers get an IP address in-which is anycasted routed towards it.
As for our upstream being Sharktech, they are our primary provider that we use to be able to get high capacity transit with GTT, NTT, Cox and much more!
I was taking a look at your tunnel product but WTF am I supposed to know geometry??? Am I a genius now?
Congrats you're now a genius!
Please send me a DM we will send you a complementary gift!
I'm ready to get learned
As someone who deals a bunch with networks professionally your way of using the term anycast kinda hurts.
Google: What is anycast
So the server you provide is in fact not anycast. Its a regular server, in a single location.
What you actually want to say is that you are using a DDoS protection (from Sharktech), which has filter infra in all their PoPs (like multiple other DDoS protection providers have too).
The sole fact that traffic to that server goes via multiple PoPs in different regions does not make it an anycast setup. This applies, more or less, to all internet transit.
Not saying there is anything wrong about it. Just hurts to see the term misused in such a way.
We are not using any DDoS Protection from Sharktech, nor there upstreams,
DDoS Mitigation is done inhouse via XDP eBPF,
All traffic inbound traffic is routed to the closest PoP that we offer then forwarded to the VPS node that the user is hosted on, we stated that the routing was "anycast'ed", we are not saying the VM itself is globally distributed.
The network Infront is globally distributed allowing for better end user routing as well as the ability for XDP to cache specific queries such as A2S, MOTD, etc.
Things brings further optimization in reducing bandwidth usage at origin as well as reducing load at origin, while fully benefiting from our Anycast routing.
Hi,
Ive send you an DM.
Hello, if others offer exist. I'm up
Our offer is still on the table,
We recently added more Capacity and enabled Singapore.
bringing our total capacity to roughly 2Tbps.
UP, still searching some offer.