Panel Features

Detailing information of features available for customers under Premium plans or above

1. Mitigation settings

Our Mitigation Settings panel allows you to configure advanced Layer 7 settings. Below, we guide you through each option to help you optimize your defensive measure.

Connections Per Second Threshold

Control the maximum number of connections per second your server should receive before TCPShield's L7 mitigation kicks in.

  • Slide the selector to set the threshold.

  • Typical settings range from 5 connections per second for small servers to higher numbers for servers with significant traffic.

Ban Seconds

In the event the threshold was breached, we issue a challenge to all incoming connection. This specifies the duration for which the an IP address will be banned across all our proxies, should it failed the challenge.

  • Input the total ban time in seconds.

  • Consider the nature of your traffic and the likelihood of false positives when setting the ban duration.

Allow Seconds

During layer 7 attacks we issue a challenge, the allow seconds is how long we should whitelist validated connections during the reconnect phase.

  • Set the duration in seconds that valid connections should be accepted after being validated.

Mitigation message

Customize the response message displayed after a user's connection is denied.

  • Enter your custom message in the text field.

  • Use clear, user-friendly language to inform users of their connection status.

  • Example:

Connection verified

VPN Blocking

Prevent logins through VPNs, our system utilizes an extensive internal database sourced from multiple trusted databases. This feature is particularly valuable in countering individuals who attempt to circumvent IP bans or exploit VPN systems for malicious activities such as bot attacks:

Example of a successful block

2. Advanced Firewall

TCPShield panel is equipped with 3 types of Advanced Firewall: IP Firewall, ASN Firewall and Country Firewall.

User can choose to whitelist / blacklist certain entry depends on your defensive strategy

  1. IP Firewall: Takes an CIDR block as an entry. Example:,

  2. ASN Firewall: The user can utilize this firewall to deny / give access to certain network(s). Example usage: 90 (Oracle) or 20473 (Vultr)

  3. Country Firewall: Should be self-explanatory.

3. Attack History and Attack Notification

The TCPShield notification system informs server admins of ongoing L7 attacks and their statuses.

Example of an attack

TCPShield allow the configuration to facilitate real-time notifications during DDoS attacks either through email or communication software such as Slack, Discord using webhooks. To take advantage of this feature, simply paste your webhook URL (can be generated on Discord within your channel) into the Callback URL box:

Once integrated, the result will look like this:

Example of attack notification working with Discord

4. Custom Cache Settings

Help you enhance your server's visibility with various settings: Offline MOTD, Display Unique Icons, and Personalize Offline Messages.

  1. Forward true server list ping: Ensures the full subdomain is forwarded to your backend during MOTD queries. Useful for cases when wildcard domains are present and you do not wish to explicitly add each sub-domain. Benefits include allowing tracking of influencer domains, server lists, and trackers to assess per subdomain performance.

  2. Offline MOTD Enable: Provide a custom MOTD to be returned when your backend server is unreachable/offline.

  3. Offline Kick Message: Define a clear and informative message that players when logging to a offline server, informing your players of the offline status.

  4. Offline Favicon: User can upload a 64x64 image that players see in place of your server icon.

5. Network Analytic

Our Network Analytics Dashboard provides comprehensive insights into the network performance and player engagement fo your servers. It displays metrics such as the bounce rate, unique visits, total bandwidth usage, player's client versions, player retention, and more. This document guides you through each section of the analytics dashboard.

Currently our analytic can only retain 1 week of data. We are looking to extend the retention period in the future.

Key Metrics:

  1. Bounce Rate: Percentage of user that visit your server and don't come back. The lower = better

  2. Unique: Total number of unique players

  3. Total Bandwidth: The cumulative amount of bandwidth transferred to and from your server

  4. Attack Mitigated: number of DDoS attacks (L7) that have been successfully mitigated

  5. Top Domains: Lists the domains associated with your network and their traffic percentages

  6. Player Retention: Shows the retention rate of new versus returning players over a week

Last updated


Need help?