DDOS protection guide with Dolby Axon
This DDOS protection guide protection is vital for any active streamer and online tournament participants. Learn how to be safe here.
Most of the content is based on or quotes Mugemz post on Arena Junkies for a large part and then focusses on how to set up Dolby Axom in order to make sure your IP address cannot be found.
What is DDOSing?
“A denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a computer or network resource unavailable to its intended users. Although the means to carry out, motives for, and targets of a DoS attack may vary, it generally consists of the concerted efforts of a person, or multiple people to prevent an Internet site or service from functioning efficiently or at all, temporarily or indefinitely.”
How easy is it to DDoS?
While there are various ways to actually conduct a DDoS attack, the TL;DR of everything is that DDoSing is as simple as getting an individual’s IP address and “paying” a botnet/service to flood that individual’s IP with packets hence flooding up the bandwidth.
Easier way to understand DDoSing: Picture a logging company which transports logs down-stream in a river. A DDoSer basically floods the stream with his own “logs” hence preventing river access to the actual logging company for their logs. The more money / resources that the DDoSer has access to, the harder will it be for the logging company to send the “useful” logs down stream.
This directly equates to the fact that larger the river (faster the internet), harder will it be to fill the river with logs (flood an individual’s internet with trash packets). This was seen during NAO 2 – I was the victim of an apparent DDoS attack, however my internet speed (100 down / 8 up), and my firewall was resilient enough to allow me to still function in WoW. On the other hand, Snutz was not so lucky with having a good internet / firewall.
How are WoW players being DDoSed?
Nowadays, 99% of the WoW arena community has shifted towards using Skype for communication needs. Turns out, that it is quite simple to get an IP address from Skype, simply by knowing the individual’s Skype username. So, basically, the DDoS victim cannot realistically prevent himself from exposing his IP address to DDoSers, since obtaining a Skype username is easy.
What the hell should we do then?
I fully believe that most of the “DDoS’ers” who are trying to harass the WoW streaming community are actually complete amateurs who do not know a single thing about how an attack actually can be done. They are using publicly available techniques to flood a victim’s IP address with traffic.
So… what does this mean? If a user can change his IP address, and then “protect” his IP address from being leaked out again, then he or she is good to go.
How can I change my IP address then?
First of all, you should know what your current IP is. An easy way to figure that out is to go to:http://www.whatsmyip.us/
Write the IP address down, and each time you attempt a process, go back to the website to see if your IP address changed.
Depending on your ISP, and if you are connected to a router or not can immensely change the amount of effort that you have to put into changing your IP. Below is a concise summary of steps that SHOULD work:
- Before trying any other methods to change your IP address, try turning off (or unplugging the power of) your Cable/DSL modem for five minutes.
- If 1. does not work, repeat the process for 8 hours (overnight works well) instead of 5 minutes. Hopefully this will result in an IP change.
If the above two steps do not work, try these:
Computer directly connected to a modem:
- Get to a command prompt (Start -> run -> cmd)
- Type “ipconfig /release” (without the quotes, on the command line by itself).
- Type “ipconfig /renew” (without the quotes, on the command line by itself).
- Check your IP address.
If the above does not work, try:
- Get to a command prompt. (Start -> run -> cmd)
- Type “ipconfig /release” (without the quotes).
- Shut down computer.
- Turn off cable/DSL modem.
- Leave off overnight.
- Turn everything back on.
Computer connected to a network via a router:
- Log into the router’s admin console. (Often http://192.168.1.1/)
- Release the IP address. (Method varies by router manufacturer)
- Turn off router, ethernet hubs/switches, and the cable/DSL modem.
- Leave off overnight.
- Turn everything back on.
Hopefully the above steps helped! If not, then:
- If you are using a cable/DSL modem and a router, you may wish to connect your computer directly to the cable/DSL modem. This allows your ISP’s DHCP to issue you a new (hopefully changed) IP address based of the (hardware) MAC address of your computer’s ethernet card.
- If all the above has not worked to change your IP address and you have a router, check and see if there is a “Clone MAC Address” option. Using it should change your IP address; however, you’ll only be able to do it once.
Still dont have a new IP? Maybe changing the MAC address of your NIC card will help:
- Click Start->Run-> type “regedit”
- Navigate to
- Under this key, you should see numbers in sequence as “0000″, “0001″ and so on. Click on one at a time to check the description of the device to match it with that of your Network Card. In this example (0001):
- Once found, in the right-pane, look for “NetworkAddress” key value. If you find it, right-click and select modify. Enter the desired MAC-Address as a 12 digit number (all in one, no “space” “.” or “-”). Note that you can enter any arbitrary MAC-address as long as it is hexadecimal (a 12 digit string containing numbers 0-9 and letters A-F).
- If you don’t find the key, right-click in the rightpane, select “New” – “String Value”. Enter the name as “NetworkAddress”. Now modify and set the desired value.
- Now, disable and enable the Network card from the ControlPanel – Network Connections.
- This should reflect the new MAC-Address on your NIC. Should you choose to go back to the original manufacturer set MAC-Address simply delete the key you just created/modified in the Windows Registry.
- Power-cycle/attempt to reset your IP again using the various methods that I previously listed in this post.
If all of these fail, and you are not able to change your IP address, contact your internet service provider and ask them if they are able to change your IP address or how long your connection needs to be off for your IP address to change.
I changed my IP address, now what!
Now that you have changed your IP address, the next step will be to protect your IP address from leaking out. The first obvious question is – do you have to create a new skype ID? The answer is no – leave your Skype turned off and install Dolby Axon. Skype has too many security issues to be really sure that you won’t get ddosed during a tournament.
If your IP address is changed, you did not ever log into Skype after that with the new IP address and you have Dolby Axon running – you are as safe as you get without spending money against DDOS attacks. Hope this DDOS protection guide helped and you won’t ever get ddosed again.