log bad rcon requests at info level

include client ip in log
move validator methods into Validator struct
2026-04-07 15:53:29 +00:00 · 2024-04-03 20:54:10 +01:00 · 2024-03-26 10:47:53 +00:00 · 2024-03-24 12:31:04 +00:00 · 2024-03-24 12:29:48 +00:00 · 2024-03-21 08:42:58 +00:00
6 changed files with 102 additions and 36 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -11,8 +11,41 @@ Before any major/minor/patch bump all unit tests will be run to verify they pass
 -   [x]
 ## [0.6.0] - 2024-03-21
 ### Added
 -   new environment variable `Q3RCON_DEBUG` for enabling debug logging. Defaults to 0.
 -   rcon responses are now logged at debug level
 -   invalid responses (rcon and query) now logged
 ### Changed
 -   All packet header checking methods moved into Session struct.
 ### Fixed
 -   a bug causing the proxy not to send back query responses
 ## [0.3.0] - 2024-03-08
 ### Added
 -   outgoing rcon requests now logged at info level
 -   new environment variable `Q3RCON_HOST` for specifying which ip to bind the proxy to. Defaults to `0.0.0.0`.
 ### Changed
 -   now using [logrus][logrus] package for logging.
 ### Fixed
 -   a `slice bounds out of range` error due to query packets being logged.
 ## [0.1.0] - 2024-01-27
 ### Added
 -   only forward packets if the header matches q3 rcon/query.
 ## [0.0.1] - 2024-01-27
@@ -20,3 +53,5 @@ Before any major/minor/patch bump all unit tests will be run to verify they pass
 ### Added
 -   All source files for lilproxy including full commit history.
 [logrus]: https://github.com/sirupsen/logrus
--- a/README.md
+++ b/README.md
@@ -22,7 +22,7 @@ Avoid sending plaintext rcon commands to the public game server port. In general
 ### Special Thanks
-[Dylan][user_link] For writing this proxy.
+[Dylan][user_link] For writing [lilproxy][lilproxy_url].
 [lilproxy_url]: https://github.com/dgparker/lilproxy
 [user_link]: https://github.com/dgparker
--- a/debian/q3rcon-proxy.service
+++ b/debian/q3rcon-proxy.service
@@ -0,0 +1,18 @@
 [Unit]
 Description=Q3Rcon Proxy Service
 Wants=network.target
 After=network.target
 [Service]
 Type=simple
 User=gameservers
 Environment="Q3RCON_PROXY=20000:28960;20001:28961;20002:28962"
 Environment="Q3RCON_HOST=0.0.0.0"
 Environment="Q3RCON_DEBUG=0"
 ExecStart=/usr/local/bin/q3rcon-proxy
 Restart=always
 RestartSec=3
 [Install]
 WantedBy=multi-user.target
--- a/pkg/udpproxy/session.go
+++ b/pkg/udpproxy/session.go
@@ -9,20 +9,22 @@ import (
 	log "github.com/sirupsen/logrus"
 )
-type Session struct {
+type session struct {
 	serverConn *net.UDPConn
 	proxyConn  *net.UDPConn
 	caddr      *net.UDPAddr
 	updateTime time.Time
 	validator
 }
-func newSession(caddr *net.UDPAddr, raddr *net.UDPAddr, proxyConn *net.UDPConn) (*Session, error) {
+func newSession(caddr *net.UDPAddr, raddr *net.UDPAddr, proxyConn *net.UDPConn) (*session, error) {
 	serverConn, err := net.DialUDP("udp", nil, raddr)
 	if err != nil {
 		return nil, err
 	}
-	session := &Session{
+	session := &session{
 		serverConn: serverConn,
 		proxyConn:  proxyConn,
 		caddr:      caddr,
@@ -34,31 +36,7 @@ func newSession(caddr *net.UDPAddr, raddr *net.UDPAddr, proxyConn *net.UDPConn)
 	return session, nil
 }
-func (s *Session) isRconRequestPacket(buf []byte) bool {
+func (s *session) listen() error {
 	return string(buf[:8]) == "\xff\xff\xff\xffrcon"
 }
 func (s *Session) isQueryRequestPacket(buf []byte) bool {
 	return string(buf[:13]) == "\xff\xff\xff\xffgetstatus" || string(buf[:11]) == "\xff\xff\xff\xffgetinfo"
 }
 func (s *Session) isValidRequestPacket(buf []byte) bool {
 	return s.isRconRequestPacket(buf) || s.isQueryRequestPacket(buf)
 }
 func (s *Session) isRconResponsePacket(buf []byte) bool {
 	return string(buf[:9]) == "\xff\xff\xff\xffprint"
 }
 func (s *Session) isQueryResponsePacket(buf []byte) bool {
 	return string(buf[:18]) == "\xff\xff\xff\xffstatusResponse" || string(buf[:16]) == "\xff\xff\xff\xffinfoResponse"
 }
 func (s *Session) isValidResponsePacket(buf []byte) bool {
 	return s.isRconResponsePacket(buf) || s.isQueryResponsePacket(buf)
 }
 func (s *Session) listen() error {
 	for {
 		buf := make([]byte, 2048)
 		n, err := s.serverConn.Read(buf)
@@ -71,7 +49,7 @@ func (s *Session) listen() error {
 	}
 }
-func (s *Session) proxyFrom(buf []byte) error {
+func (s *session) proxyFrom(buf []byte) error {
 	if !s.isValidResponsePacket(buf) {
 		err := errors.New("not a rcon or query response packet")
 		log.Error(err.Error())
@@ -86,14 +64,17 @@ func (s *Session) proxyFrom(buf []byte) error {
 	}
 	if s.isRconResponsePacket(buf) {
-		parts := strings.Split(string(buf[10:]), " ")
+		if s.isBadRconRequest(buf) {
-		log.Debugf("Response: %s", strings.Join(parts, " "))
+			log.Infof("Response: Bad rcon from %s", s.caddr.IP)
 		} else {
 			log.Debugf("Response: %s", string(buf[10:]))
 		}
 	}
 	return nil
 }
-func (s *Session) proxyTo(buf []byte) error {
+func (s *session) proxyTo(buf []byte) error {
 	if !s.isValidRequestPacket(buf) {
 		err := errors.New("not a rcon or query request packet")
 		log.Error(err.Error())
@@ -109,7 +90,7 @@ func (s *Session) proxyTo(buf []byte) error {
 	if s.isRconRequestPacket(buf) {
 		parts := strings.Split(string(buf), " ")
-		log.Infof("From [%s] To [%s] Command: %s", s.caddr.IP.String(), s.serverConn.RemoteAddr().String(), strings.Join(parts[2:], " "))
+		log.Infof("From [%s] To [%s] Command: %s", s.caddr.IP, s.serverConn.RemoteAddr(), strings.Join(parts[2:], " "))
 	}
 	return nil
--- a/pkg/udpproxy/udpproxy.go
+++ b/pkg/udpproxy/udpproxy.go
@@ -15,7 +15,7 @@ type Client struct {
 	proxyConn *net.UDPConn
 	mutex    sync.RWMutex
-	sessions map[string]*Session
+	sessions map[string]*session
 }
 func New(port, target string) (*Client, error) {
@@ -33,7 +33,7 @@ func New(port, target string) (*Client, error) {
 		laddr:    laddr,
 		raddr:    raddr,
 		mutex:    sync.RWMutex{},
-		sessions: map[string]*Session{},
+		sessions: map[string]*session{},
 	}, nil
 }
--- a/pkg/udpproxy/validator.go
+++ b/pkg/udpproxy/validator.go
@@ -0,0 +1,32 @@
 package udpproxy
 type validator struct {
 }
 func (v *validator) isRconRequestPacket(buf []byte) bool {
 	return string(buf[:8]) == "\xff\xff\xff\xffrcon"
 }
 func (v *validator) isQueryRequestPacket(buf []byte) bool {
 	return string(buf[:13]) == "\xff\xff\xff\xffgetstatus" || string(buf[:11]) == "\xff\xff\xff\xffgetinfo"
 }
 func (v *validator) isValidRequestPacket(buf []byte) bool {
 	return v.isRconRequestPacket(buf) || v.isQueryRequestPacket(buf)
 }
 func (v *validator) isRconResponsePacket(buf []byte) bool {
 	return string(buf[:9]) == "\xff\xff\xff\xffprint"
 }
 func (v *validator) isQueryResponsePacket(buf []byte) bool {
 	return string(buf[:18]) == "\xff\xff\xff\xffstatusResponse" || string(buf[:16]) == "\xff\xff\xff\xffinfoResponse"
 }
 func (v *validator) isValidResponsePacket(buf []byte) bool {
 	return v.isRconResponsePacket(buf) || v.isQueryResponsePacket(buf)
 }
 func (v *validator) isBadRconRequest(buf []byte) bool {
 	return string(buf[10:18]) == "Bad rcon"
 }
Author	SHA1	Message	Date
onyx-and-iris	3e039824de	log bad rcon requests at info level include client ip in log	2024-04-03 20:54:10 +01:00
onyx-and-iris	0c054377ba	move validator methods into Validator struct embed Validator into Session unexport Session	2024-03-26 10:47:53 +00:00
onyx-and-iris	5ac3f805e2	add example debian unit file	2024-03-24 12:31:04 +00:00
onyx-and-iris	ab548d669a	no need to call String() explicitly here	2024-03-24 12:29:48 +00:00
onyx-and-iris	107f914d3b	upd changelog	2024-03-21 08:42:58 +00:00
onyx-and-iris	0fdf9d10c3	upd special thanks with link to lilproxy	2024-03-21 08:23:35 +00:00
onyx-and-iris	690fabddaf	no need to split and rejoin here.	2024-03-21 07:35:07 +00:00
onyx-and-iris	f6f0044a84	Only stringify rcon responses if debug enabled.	2024-03-20 21:49:05 +00:00