Server Upgrades and/or Security Please!

[Hieral]

The expansion has been out for two weeks now. Heavensward was stabilized within hours of launch.

If the problem is in fact, an attack (which in all actuality it's probably not; it's probably just a large number of people actually wanting to play), can we have our subscription fees go to pay for some security nerds?

If it's actually just really that many people wanting to play, what gives? The NA data center move was supposed to be an upgrade and improve stability. Obviously that didn't work out. Can we see our subscription fees invested in some quality hardware?

Thanks again for the awesome expansion and here's hoping it becomes playable soon!

[Laerune]

The way SE works is that the profit from the games are being funneled to fund for upcomming SE games. I wish that everything that SE made from FFXIV would be used for FFXIV, but sadly this is not how it works. I have read somewhere that whatever SE earns from the Mog Station is kept for FFXIV, but expansion and subscription fees is for all of SE.

[Hieral]

Guess we better spend some paychecks on Mog station then because this is getting ridiculous

[Mmartins]

Sorry if I sound rude or something Hieral, not my intention, but you don't know what a DDoS attack is. There's hardly anything SE (or anyone, really) can do to defend against a DDoS atack. That's why it's such a popular tool to disrupt online services, because it's almost impossible to defend against it. The only real way to fight it is getting more resources so they don't get saturated by the DDoS... but if you do that, the attackers can just get more resources (usually more people) and that's it, you're back to the start and your service is still disrupted.

It's unfortunate that some people can't seem to get a life and do this kind of thing, but no amount of extra "security nerds" will do anything to help here. We have to be patient for the time being. I'm sure SE is trying to figure out something to fight this but in the mean time, patience. It's not like it's SE DDoSing their own game.

[HyoMinPark]

Honestly, the issues are more than just these DDoS attacks every other day. The problems with Early Access had zero to do with DDoS attacks. The issues with instanced housing being inaccessible on Balmung during times had zero to do with DDoS. The issues with Duty Finder instability have zero to do with DDoS. There have been more issues since the NA server upgrade than there ever was before, and not all of these can be blamed on DDoS attacks.

Server instability caused by the everyday traffic of the playerbase has nothing to do with DDoS, but everything to do with hardware and server maintenance, neither of which fall on the shoulders of the client, but of the provider of the services.

[Hieral]

Sorry if I sound rude or something Hieral, not my intention, but you don\\'t know what a DDoS attack is. There\\'s hardly anything SE (or anyone, really) can do to defend against a DDoS atack. That\\'s why it\\'s such a popular tool to disrupt online services, because it\\'s almost impossible to defend against it. The only real way to fight it is getting more resources so they don\\'t get saturated by the DDoS... but if you do that, the attackers can just get more resources (usually more people) and that\\'s it, you\\'re back to the start and your service is still disrupted.

I don't claim to be a computer nerd by any means. In fact, the last time I used a computer for anything other than making a resume, Windows XP was a thing. That being said, from what research one can do online, it appears there's several methods of defense against this issue. The example you cited being one on a very long list.

Again, I'm no expert, hence the request to hire experts, but can't they just shut down all computer requests for access, single out the IPs spamming the network, firewall them, then restore computer access until the culprit is 100% blocked? Doesn't really seem possible to do on a console.

Unless it's being suggested that people can access the servers outside of the game client itself, which wouldn't make sense unless it was someone in SE doing it. If that's how it's happening, easily fixed I would think: shut down all requests coming from outside the client, add authorized IP addresses to permitted users, and firewall the rest.

Like I said, no expert but I understand the basics. I'm sure there's experts out there for hire who can isolate and fix it. Just a matter of SE being willing to hire them

[Riusvell]

Honestly, the issues are more than just these DDoS attacks every other day. The problems with Early Access had zero to do with DDoS attacks. The issues with instanced housing being inaccessible on Balmung during times had zero to do with DDoS. The issues with Duty Finder instability have zero to do with DDoS. There have been more issues since the NA server upgrade than there ever was before, and not all of these can be blamed on DDoS attacks.

Server instability caused by the everyday traffic of the playerbase has nothing to do with DDoS, but everything to do with hardware and server maintenance, neither of which fall on the shoulders of the client, but of the provider of the services.

Bolding this here right now, this was the player's faults as the AFKers were hiding in their houses to avoid being reported.

[Kaedan]

I don't claim to be a computer nerd by any means. In fact, the last time I used a computer for anything other than making a resume, Windows XP was a thing. That being said, from what research one can do online, it appears there's several methods of defense against this issue. The example you cited being one on a very long list.

Again, I'm no expert, hence the request to hire experts, but can't they just shut down all computer requests for access, single out the IPs spamming the network, firewall them, then restore computer access until the culprit is 100% blocked? Doesn't really seem possible to do on a console.

Unless it's being suggested that people can access the servers outside of the game client itself, which wouldn't make sense unless it was someone in SE doing it. If that's how it's happening, easily fixed I would think: shut down all requests coming from outside the client, add authorized IP addresses to permitted users, and firewall the rest.

Like I said, no expert but I understand the basics. I'm sure there's experts out there for hire who can isolate and fix it. Just a matter of SE being willing to hire them

No, they cannot. As you admit, you're not an expert, and it's really easy for people who only understand something partially to think they have a solution.

IPs change constantly and DDoS attacks rely on literally hundreds and thousands of computers to attack the target... many of which might even be legit players who have contracted malware and are being used in the DDoS network.

To suggest they don't already have "experts" working on the problem is pretty insulting and defies common sense. They are doing what they can... throwing money at a problem doesn't magically fix it.

[Paladinleeds]

Aye. The problem is the source of the DDoS attacks come from a rolling rotation of IP addresses. They are forever changing (sometimes changing as frequently as every 5 seconds, that is possible). Also, a lot of legitimate players (myself included) have dynamic IP addresses, meaning they change too. IP blocking will mean legit players get blocked. That and malware is constantly getting more and more sophisticated. Even legit websites get attacked and malware thrown on them so when a user visits a legit site, they get the malware, and then their PC becomes part of a botnet too. It's a very difficult problem to solve due to the ease of accessing and executing such an attack.

[Morzy]

Ok let's look at this more in depth for a moment. you compared SB launch to HW.. Come on dude. Did you ever consider that FFXIV is getting more popular and thus the servers have more players and also peak numbers to manage?

http://steamcharts.com/app/39210
I couldn't find more info on specificly active players. The Cencus SE rolled out during the 2015 anniversary didnt include active player nmbers (I checked).
however, just looking from here we can see this:

The average players from May to June shows...
A increase of about 1600 avg players from 4,069.6 to 5,650.4
A increase of nearly double in the peak players from 6,705 to 11,905
And THAT's just freaking Steam and let me tell you, you're making a mistake going through Steam because that's just a unnecessary wall to go through with updates and who knows what else but that's a story for another day.


So before you say "Well we didn't have these problems during HW launch!" use your freaking brain first because stupidity and ignorance spreads faster than intelligence and truth.


edit: I didn't even include 2017. both the average and peak players via steam nearly doubled AGAIN. Please just have patience, this all may not be as simple as you think it is.