Game server stuff

config/game-servers/csgo.md

@@ -8,11 +8,22 @@ breadcrumbs:
 
 ## Installation
 
-- It's huge. Like 30GB huge.
-- Using a server manager like [Pterodactyl](/config/linux-servers/applications/#pterodactyl) makes hosting easier.
+Use Pterodactyl.
 
 ## Configuration
 
+- App ID: 730 (not 740)
+- Resource usage:
+    - vCPUs: 1
+    - RAM: 1GB
+    - Storage: 25GB
+
+### Command Line
+
+In addition to the default Pterodactyl command arguments.
+
+- `-tickrate 128`: Use tick rate 128. Must be set in the config as well.
+
 ### Configuration Files
 
 **`csgo/cfg/autoexec.cfg`** (example)

config/game-servers/tf2.md

@@ -0,0 +1,58 @@
+---
+title: Team Fortress 2 (TF2)
+breadcrumbs:
+- title: Configuration
+- title: Game Servers
+---
+{% include header.md %}
+
+## Installation
+
+Use Pterodactyl.
+
+## Configuration
+
+- App ID: 440 (Steam Game Server Account Management) or 232250 (Pterodactyl)
+- Game name: `tf`
+- Resource usage:
+    - vCPUs: **???**
+    - RAM: **???**
+    - Storage: **8GB**
+
+### Command Line
+
+In addition to the default Pterodactyl command arguments.
+
+- `+sv_setsteamaccount <token>`
+
+### Configuration Files
+
+(Examples)
+
+**`tf/cfg/autoexec.cfg`:**
+```
+hostname ""
+// Optional, set to an email address
+sv_contact ""
+// Leave empty to disable rcon
+rcon_password ""
+sv_password ""
+```
+
+**`tf/cfg/server.cfg`:**
+```
+// Time in minutes per map, use 0 to disable time limit
+mp_timelimit 30
+// Maximum number of rounds to play per map before forcing a mapchange
+mp_maxrounds 10
+```
+
+**`tf/cfg/motd.txt`:**
+
+Use `tf/cfg/motd_default.txt` as a reference.
+
+**`tf/cfg/mapcycle.txt`:**
+
+Use `tf/cfg/mapcycle_default.txt` as a reference.
+
+{% include footer.md %}

config/linux-servers/applications.md

@@ -406,17 +406,20 @@ This is not considered secure at all and should only be used on trusted networks
   The user must be able to communicate with both the panel and daemons.
 - Both the panel and daemons need valid TLS certificates.
 
-### Panel
+### Panel (Docker)
 
 #### Setup
 
-1. Follow the official guide.
+**TODO**
+
+Logs are located in `/app/storage/logs/laravel/`.
 
 ### Daemon
 
 1. Follow the official guide.
 1. Install `unzip`.
 1. Setup a valid TLS certificate.
+1. Setup Docker DNS servers: Add `{ "dns": ["1.1.1.1", "1.0.0.1", "2606:4700:4700::1111", "2606:4700:4700::1001"] }` to `/etc/docker/daemon.json`.
 
 ### Game Servers
 
@@ -424,10 +427,13 @@ This is not considered secure at all and should only be used on trusted networks
 
 - You can typically watch the installation progress by watching the docker logs.
 
-#### CSGO
+#### Counter-Strike: Global Offensive
+
+See [Counter-Strike: Global Offensive (CS:GO)](/config/game-servers/csgo/).
+
+#### Team Fortress 2
 
-- Use source ID 740 in Pterodactyl (the default) and app ID 730 in Steam Game Server Account Manager, regardless of which app ID the Pterodactyl uses.
-- It uses a ton of storage, between 20 and 30 GB last I checked. If you run out of space, the installer will fail with some useless error message.
+See [Team Fortress 2 (TF2)](/config/game-servers/tf2/).
 
 ## Router Advertisement Daemon (radvd)
 

config/linux-servers/debian.md

@@ -166,7 +166,7 @@ breadcrumbs:
 1. Setup firewall:
     - Install: `apt install iptables iptables-persistent netfilter-persistent`
         - Don't save the current rules when it asks.
-    - Add [a simple iptables script](https://github.com/HON95/configs/blob/master/server/linux/iptables/iptables-simple.sh) or something more complex.
+    - Add [a simple iptables script](https://github.com/HON95/scripts/blob/master/server/linux/iptables/iptables-simple.sh) or something more complex.
 1. Make sure IPv6 and NDP is configured securely:
     - If IPv6 and NDP is enabled and accepting RAs on insecure (i.e. public-facing) interfaces, the server may autoconfigure itself for those interfaces.
     - By configuration: Disable "Accept-RA" on interfaces that should not autoconfigure themselves. It's typically enabled by default.
@@ -182,17 +182,18 @@ Everything here is optional.
     - Install `needrestart` and run it after upgrading.
     - Install `debsums` and run it after upgrading to check deb checksums.
     - Install `debsecan` to get automatically alerted when new vulnerabilities are discovered and security updates are available.
-1. Install `fail2ban`.
+1. Install Fail2Ban.
     - Recommended for public-facing servers.
     - Fix the firewall first so it configures itself correctly wrt. which firewall is used.
-    - Check the status with `fail2ban-client status [sshd]`.
+    - Install: `apt install fail2ban`
+    - Check status: `fail2ban-client status [sshd]`
     - See [Applications](applications.md#fail-2-ban) for more info.
 1. Google Authenticator 2FA:
     - Recommended for public-facing servers.
     - **TODO**
 1. Install and run Lynis security auditor:
-    - Install `lynis`.
-    - Run `lynis audit system`.
+    - Install: `apt install lynis`
+    - Run: `lynis audit system`
 1. MOTD:
     - Clear `/etc/motd` and `/etc/issue`.
     - Download [dmotd.sh](https://github.com/HON95/scripts/blob/master/server/linux/general/dmotd.sh) to `/etc/profile.d/`.

index.md

@@ -29,6 +29,7 @@ Random collection of config notes and miscellaneous theory. Technically not a wi
 ### Game Servers
 
 - [Counter-Strike: Global Offensive (CS:GO)](config/game-servers/csgo/)
+- [Team Fortress 2 (TF2)](config/game-servers/tf2/)
 
 ### PC