#Requesting help with minecraft proxy server.

I have read the wiki info, and i have set the subservers IPs to 127.0.0.1 and in my proxy settings i am refeering to them as 172.18.0.1:PORT but it wont let me connect to my servers. please help

i have fallowed this - https://pterodactyl.io/community/games/minecraft.html#network-configuration - to every single letter, and it everything has been done exactly as it says but it still wont let me connect to my servers.

Try using the actual ip of the node/servers instead of 127.0.0.1

It should fix it

@mighty mulch

Well I followed the guide and set the servers to 127.0.0.1. I was using the actual ip of the node before and was still getting the same exact errors 'failed to connect to server: connection refused'

Do you have the correct ports open?

On the vps/machine?

yes

im using 25565-25569 and they was opened following the firewall section in that guide

@mighty mulch
127.0.0.1 would point to the container, ie. your proxy.
0.0.0.0 would point to localhost, letting your containers communicate with each other.

Ok so my backend servers should all be 0.0.0.0:PORT, and my velocity config should point to 0.0.0.0:PORT. And my proxy should be it's regular IP:PORT, correct?

Either 0.0.0.0 or your container's internal ip.

Ok. But they do get referred to from velocity as 0.0.0.0 also right? Or do I point to them as 172.18.0.1:Port like the wiki above states

I'm just trying to make sure I do this right because so far everything I've done has resulted in it not working

I would follow the documentation. I am not an expert at this.
It's just the Pterodactyl Allocations I would avoid using 127.0.0.1 with, as I'm pretty sure that makes them only able to see themselves and no other containers.

ok. ill try again lol. all the servers are on the same node i should mention. so at default they all had the same ip and i assigned them ports from 25565-25570. but that didnt work, so i tried to follow the guide from pterodactyl it said make them 127.0.0.1 but that didnt work either

im just lost at thiis point

For my Bungee config (Not sure if Velocity is the same) I have 0.0.0.0 for all my Pterodactyl Allocations and the node's public ipv4 for the config.yml that points to all the servers.

i tried bungee at first and was having the same issues i guess im not doing something right. ill try again with bungee. your bungee config point to the servers are you using just 0.0.0.0:PORT? to point towards them?

I'm using public ip:port to point to them

External IP

Yet the only port I have open is the proxy's

the ip of your node correct

Yes

im referring to the 0.0.0.0 for all prerodactyl allocations here

Yes

so your proxy points to nodes ip and your backend paper servers or whatever are setup with 0.0.0.0? and bungees config points to server: address: 0.0.0.0:PORT?

thats the part thats confusing me i think

or the config is point to the same address as the proxy just with each different port/s

right so the config points to same address that the proxy is on

In the config.yml the censored IPs are the node's public ip

ok i get it that actually helped so much thank you

No problem

I'm probably not doing this the right way; I should be using internal ips. Somehow this works for me though even with only the proxy's port open.

me and the machines owner im trying to set this up for have been trying to do this for like 2 days and all documentation i read told us to use different ips and such

each documentation we found was different lol

Same, I just started using trial and error until it worked.

like that can anyone connect to your backend servers directly?

I disabled that, they can only connect through the proxy.

oh is that a setting in bungee or something? i dont think velocity offers that setting

@mighty mulch found the fix ?

Yeah, it's force default server I believe

yeah ive been using the wrong ips apparently lol

Also a plugin called PreventPortBypass

is that a bungee proxy plugin or spigot plugin?

Well from our last attempt I was locked out of my terminal 😭😭

And out my machine into recovery cuz of it

Spigot Plugin for each individual server

alright. oh one last question make sure we dont mess this up too

the firewall section of the guide. i think we ran the following command incorrectly - ufw allow in on pterodactyl0 to 172.18.0.1 port <LOCALHOST_PORT> proto tcp

localhost_port would be 0.0.0.0:PORT correct?

or the nodes external ip:port

I'm not sure, I didn't do that part; I don't use ufw anymore.

what do you suggest for protection?

I didn't have to open anything, but that's probably why I have to use the external ip to connect

I use TCPShield on the Proxy.

If you meant firewall I use firewalld

ah i see. we're running ubuntu i believe, same concept as firewalld i believe.

The proxy did work for us before I switched our Ubuntu firewall to firewalld, and I never did that step.

should we change to centos and use firewalld?

No, I would just use iptables directly

Or UFW; anything that can do what your goal is to do

Here would probably just be the port, not 0.0.0.0:port

ok. im just not familiar with linux too much

Just the port number

ok we'll try that

Stick with UFW for now, all the firewalls have some issues with docker but they all seem to work; they just give off warnings.

ok

That’s what we use

Firewalld is what I installed

And mid install my whole machine shut down and didn’t respond

@mighty mulch the firewall was unnecessary then

the wiki says firewalld would use this command to open the firewall to the server firewall-cmd --permanent --zone=public --add-source=172.18.0.1

Fuck the wiki

im assuming source would = the nodes external ip

172.18.0.1 is the wing's docker network. Internal,

So it wants you to allow traffic from the outside into your container networks.

I never had to do that; I'm not entirely sure what that step is for.

yeah it says
`If you are using a firewall, additional rules might be required to allow servers to reach each other on the node. In this case the proxy server needs to reach all of the game servers behind it. Therefore we need to allow traffic from the pterodactyl network to the server ports on localhost.

You can use the following commands as an example. 172.18.0.1 is the default address referring to the node within the pterodactyl network. Replace <LOCALHOST_PORT> with the allocated localhost ports of the game servers.`

Ah

but i dont think the firewall was an issue. i was able to get connection to my proxy the proxy just wouldnt send me to the other servers

I have my wings subnet able to access the entire host internal network. It's not secure if you're a hosting company, but mine is just one network and I don't have to worry about people escaping their containers.

You most likely don't have a firewall between containers by default.

yeah we only hosting a minecraft network with a few servers, and a discord bot atm

@worldly rune simple question saving hassle u able to show us via call ?

When you’re free

i got the main part just i dont understand the firewall part.

There is no firewall part. Just open the port of the server you want people to access. If you want them to go through the proxy, only open the proxy.

I’ll figure it out

Technically you don’t have to

But do

I’ve opened ports before

Dw about the firewalld I can do that

👍

It’s mainly the other part @mighty mulch was on about

@mighty mulch I have a mate that can do this relax my sexy mf

He owned a whole company with 5k+

Members and 100+ clients