Block Numerical IPs
I saw that in Hypixel (as example), when you log in using the server Numerical IP, it is blocked, displaying a message saying that you have to use the IP “play.hypixel.net”.
How is possible to make this? Also, make that when they use a numerical IP not to make ping in the server list?
50 Replies
Thanks for asking your question!
Make sure to provide as much helpful information as possible such as logs/what you tried and what your exact issue is
Make sure to mark solved when issue is solved!!!
/close
!close
!solved
!answered
Requested by errebe#0
They have a bunch of custom stuff handling their network.
They probably have a reverse proxy setup that any direct IP connections get rejected and use the same reverse proxy to make sure you always connect to an available server.
So actually it’s impossible to make this by config or plugins
?
its possible
Its very possible yeah, when your client joins a server it tells it the IP it connects with, so anyone not using the wierdest mod possible wouldnt be able to join.
If you are using this for a proxy though, just secure it properly, don't use some wierd host address whitelisting.
ill whip up a plugin right now for you @3rrebe
I am not a dev 🥲
.
additionally if you are on paper you can relatively easily disable the server list stuff
2 sec
got a plugin
let snowz cook
they need plugin ideas
wait i think my brain isnt braining
playerloginevent has getHostname btw
GitHub
GitHub - ClumsyAdmin/DomainWhitelist
Contribute to ClumsyAdmin/DomainWhitelist development by creating an account on GitHub.
fuck you dk
i was just doing that
😡
Its for a proxy actually, it’s secured, but I want to make 100% secure
That even in the proxy ip they cannot log in with the numerical
just the domain
hahahah
This wouldn't make it any more secure
yeah this sounded like something someone would use as a bandaid for security
thanks a lot for trying to make a plugin for me lul, so helpful ngl
but this shouldnt be used for "security"
thanks
Use internal backends and a good modern forwarding key
its easily spoofable, the client can just change what ip they say they come from lol
^
Im using xCord + BungeeGuard+
so as far I know everything should be secured
no harm in doing this too but dont make the mistake of thinking this would serve as a replacement for properly protecting your backend servers (you and anyone else who may come across this post later)
I would still make backends internal
wdym by internal
127.0.0.1?
Making backends not receive connections from outside the machine
Are u using pterodactyl?
yes I do
how
Minecraft | Pterodactyl
Pterodactyl is an open-source game server management panel built with PHP, React, and Go. Designed with security in mind, Pterodactyl runs all game servers in isolated Docker containers while exposing a beautiful and intuitive UI to end users.
Follow this and ur done
it’s not my own panel
i cannot access to those
Do u use Bloom?
another service
it’s not public at all
they’re providing to us service because it’s contracted by a youtuber
Ah u should still be able to talk to one of their staff to get it up and running
and they’re friends
Do note other servers on the node will still be able to contact ur backends
i have direct contact with the host
so I will notify them
thanks a lot
No problem
wait dk
Ye?
that wierd plugin you sent me could also help
right
Safenet?
ye
Ig? But internal is better
well safenet is basically velocity modern
fair
I already contact them, and they will make what you told me
There's something else to do to secure more the network?
there's only so much you can do
i think you should focus more on your server's content other than securing your server now