In the past few days our server has been disrupted with connectivity issues on and off where it takes way too long to log on and when you do finally connect the connection drops and freezes etc. I was about to move the server to a new IP because GS couldn't figure out the problem even after a complete clean wipe & reinstall.
Now I spotted the behavior happening again as i write this and witnessed this IP:
68.47.32.72
...connecting to the server many times under different names sometimes 10+ times at once and a different name every 5 seconds... so a program I'm guessing. I am sure this is some kind of attack and must be the cause of the problems we are having. I did not notice this IP b4 because I was just checking the server status from my remote viewer most of the time so didn't see the connect attempts.
I have blocked it with my Auto Kick and with the 1.12 ban option but the requests
are still coming through. So i have asked GS to block the range 68.47.*.*
Any ideas as to why if I have this IP on the ipfilter.cfg list that the requests are still coming through??