Anti-VPN (Bungee) 6.4.13

Get the best; save money on overpriced plugins and block VPN users!

  1. Laarryy
    Native Minecraft Version:
    1.13
    Tested Minecraft Versions:
    • 1.8
    • 1.9
    • 1.10
    • 1.11
    • 1.12
    • 1.13
    • 1.14
    • 1.15
    • 1.16
    Source Code:
    https://github.com/egg82/AntiVPN
    Languages Supported:
    English, Español, Français, Deutsche, Polskie, Čech, Pусский
    antivpn.png
    Support Discord: https://discord.gg/BWshAvM

    Looking for the Bukkit version? Find it here!
    Looking for the Velocity version? Find it here!

    playeripapi-installation-tab.png
    The first time Anti-VPN is run it will take some time to start up. this is normal, and will very rarely (if ever) take that long again.

    Wiki
    Installation instructions can be found on the wiki here. It it highly recommended to read the wiki.

    playeripapi-config-tab.png
    Confused? Check the wiki!
    Code (Text):
    # How the plugin stores long-term data
    # Note that you must configure at least one storage engine
    storage:
      engines:
        # Engine name. Can be anything
        engine1:
          # Engine type. Can be "mysql", "old_mysql", "mariadb", "postgresql", "h2", or "sqlite"
          # "mysql" is for MySQL versions > 5.5, "old_mysql" is for MySQL versions <= 5.5
          # https://mariadb.org/
          # https://www.postgresql.org/
          # https://www.h2database.com/html/main.html
          # https://www.sqlite.org/index.html
          type: 'mysql'
          # Whether or not to use this engine
          enabled: false
          connection:
            # Address and port (MySQL, MariaDB, PostgreSQL only)
            address: '127.0.0.1:3306'
            # The name of the database the plugin will store data in (MySQL only)
            # This must be created beforehand
            database: 'anti_vpn'
            # Credentials
            username: ''
            password: ''
            # Extra options to use with this storage engine
            # These values will override any others
            options: 'useSSL=false&useUnicode=true&characterEncoding=utf8'
        # Engine name. Can be anything
        engine2:
          # Engine type. Can be "mysql", "old_mysql", "mariadb", "postgresql", "h2", or "sqlite"
          # "mysql" is for MySQL versions > 5.5, "old_mysql" is for MySQL versions <= 5.5
          # https://mariadb.org/
          # https://www.postgresql.org/
          # https://www.h2database.com/html/main.html
          # https://www.sqlite.org/index.html
          type: 'h2'
          # Whether or not to use this engine
          enabled: true
          connection:
            # File name (SQLite, H2 only)
            file: 'anti_vpn'
            # Extra options to use with this storage engine
            # These values will override any others
            options: 'useUnicode=true&characterEncoding=utf8'
      settings:
        # The maximum size of the storage engine connection pool
        # Determines the max number of connections to storage engines
        max-pool-size: 4
        # The minimum size of the storage engine connection pool
        # Determines the min number of connections kept alive to storage engines
        min-idle: 4
        # The maximum lifetime of a connection in the pool
        # Should be at least 30 seconds less than any storage engine or infrastructure-imposed connection time limit
        max-lifetime: '30minutes'
        # The maximum amount of time that the plugin will wait for a new connection from the pool before timing out
        timeout: '5seconds'
      # The order in which the storage engines will be used
      # The first available engine will be considered the "master" and will be the authoritative data source
      # Keep in mind that, for redundancy, ALL defined and enabled storage engines will be used
      order:
        - 'engine1'
        - 'engine2'

    # How the plugin rapidly shares information with other servers along the network
    messaging:
      engines:
        # Engine name. Can be anything
        engine1:
          # Engine type. Can be "rabbitmq" or "redis"
          # https://www.rabbitmq.com/
          # https://redis.io/
          type: 'rabbitmq'
          # Whether or not to use this engine
          enabled: false
          connection:
            # Address and port
            address: '127.0.0.1:5672'
            # Virtual host (RabbitMQ only)
            v-host: '/'
            # Credentials
            username: 'guest'
            password: 'guest'
        # Engine name. Can be anything
        engine2:
          # Engine type. Can be "rabbitmq" or "redis"
          # https://www.rabbitmq.com/
          # https://redis.io/
          type: 'redis'
          # Whether or not to use this engine
          enabled: false
          connection:
            # Address and port
            address: '127.0.0.1:6379'
            # Credentials
            password: ''
      settings:
        # The maximum size of the messaging engine connection pool
        # Determines the max number of connections to messaging engines
        max-pool-size: 5 # + 1 for the receiver
        # The minimum size of the messaging engine connection pool
        # Determines the min number of connections kept alive to messaging engines
        min-idle: 5 # + 1 for the receiver
        # The maximum lifetime of a connection in the pool
        # Should be at least 30 seconds less than any messaging engine or infrastructure-imposed connection time limit
        max-lifetime: '30minutes'
        # The maximum amount of time that the plugin will wait for a new connection from the pool before timing out
        timeout: '5seconds'

    # Where VPN-checking sources are defined
    # Beware the more sources that are included (and fail) the worse the performance and the more the lag
    sources:
      # The amount of time to globally cache results across all sources
      # This should be as high as possible to avoid rate-limits but as low as possible to ensure results are always up-to-date and accurate
      cache-time: '6hours'

      # The order to try results in
      order:
      - 'proxycheck'
      - 'iptrooper'
      - 'getipintel'
      - 'ipqualityscore'
      - 'iphub'
      - 'iphunter'
      - 'vpnblocker'
      - 'ip2proxy'
      - 'shodan'
      - 'ipinfo'
      - 'teoh'

      # https://proxycheck.io
      # Results updated Jan 19, 2020
      # Error rate:                     0.00%
      # NordVPN detection rate:       100.00%
      # Cryptostorm detection rate:   100.00%
      # False-flagged homes:            0.00%
      proxycheck:
        enabled: true
        # Optional API key to use
        key: ''

      # https://iptrooper.net/
      # Results updated Jan 19, 2020
      # Error rate:                     0.00%
      # NordVPN detection rate:        96.00%
      # Cryptostorm detection rate:   100.00%
      # False-flagged homes:            0.00%
      iptrooper:
        enabled: true

      # https://www.getipintel.net/
      # Results updated Jan 19, 2020
      # Error rate:                     0.00%
      # NordVPN detection rate:        86.00%
      # Cryptostorm detection rate:   100.00%
      # False-flagged homes:            0.00%
      getipintel:
        enabled: true
        # Contact e-mail in case things go wrong. Required
        contact: '[email protected]'
        # Threshold above which an IP is considered "bad"
        threshold: 0.98
        # Subdomains for business customers. Contact [email protected] if you'd like one
        subdomain: 'check'

      # https://www.ipqualityscore.com/
      # Results updated Feb 9, 2020
      # Error rate:                    0.00%
      # NordVPN detection rate:       86.00%
      # Cryptostorm detection rate:   96.43%
      # False-flagged homes:           0.00%
      ipqualityscore:
        enabled: false
        # API key to use (Required for this service, free one available at https://www.ipqualityscore.com/create-account )
        # This plugin would benefit from a premium account/API key, but does not require it
        key: ''
        # Whether or not to detect proxies as VPNs
        proxy: false
        # Whether or not to score IPs as a mobile device (less strict)
        mobile: true
        # Strictness setting to use (0-3)
        strictness: 0
        # Whether or not to flag IPs with recent abuse (such as malware, compromised devices, etc) as "bad"
        recent-abuse: false
        # Threshold above which an IP is considered "bad"
        threshold: 0.98

      # https://iphub.info/
      # Results updated Jan 19, 2020
      # Error rate:                    0.00%
      # NordVPN detection rate:       84.00%
      # Cryptostorm detection rate:   96.43%
      # False-flagged homes:           0.00%
      iphub:
        enabled: false
        # API key to use (Required for this service, free one available at https://iphub.info/apiKey/newFree )
        key: ''
        # The block type at which an IP is considered "bad"
        block: 1

      # https://www.iphunter.info/
      # Results updated Jan 19, 2020
      # Error rate:                    0.00%
      # NordVPN detection rate:       60.00%
      # Cryptostorm detection rate:   92.86%
      # False-flagged homes:           0.00%
      iphunter:
        enabled: false
        # API key to use (Required for this service, free one available at https://www.iphunter.info/user/register )
        key: ''
        # The block type at which an IP is considered "bad"
        block: 1

      # https://vpnblocker.net/usage
      # Results updated Jan 19, 2020
      # Error rate:                    0.00%
      # NordVPN detection rate:       64.00%
      # Cryptostorm detection rate:   82.14%
      # False-flagged homes:           0.00%
      vpnblocker:
        enabled: true
        # Optional API key to use
        key: ''

      # https://www.ip2location.com/web-service/ip2proxy
      # NOTE: This info is old
      # Results updated Jul 18, 2019
      # Error rate: 0%
      # NordVPN detection rate: 100%
      # Cryptostorm detection rate: 60%
      # False-flagged homes: 0%
      ip2proxy:
        enabled: true
        # API key to use (Required for this service, free one available using 'demo' or at https://www.ip2location.com/register?id=1006 )
        key: 'demo'

      # https://www.shodan.io/
      # Results updated Jan 19, 2020
      # Error rate:                  55.15%
      # NordVPN detection rate:      90.00%
      # Cryptostorm detection rate:   0.00%
      # False-flagged homes:          0.00%
      shodan:
        enabled: false
        # API key to use (Required for this service)
        key: ''

      # https://ipinfo.io/
      # Results updated Jul 20, 2020
      # Error rate:                    0.00%
      # NordVPN detection rate:       84.00%
      # Cryptostorm detection rate:    0.00%
      # False-flagged homes:           0.00%
      ipinfo:
        enabled: false
        # API key to use (Required for this service, free one available at https://ipinfo.io/signup using the "free trial" option under "Privacy Detection API")
        key: ''
        # Whether or not to detect proxies as VPNs
        proxy: true

      # https://ip.teoh.io/vpn-detection
      # NOTE: This info is old
      # Results updated Jul 7, 2019
      # Error rate: 10%
      # NordVPN detection rate: 61.90%
      # Cryptostorm detection rate: 100%
      # False-flagged homes: 0%
      teoh:
        enabled: true

    mcleaks:
      # The amount of time to globally cache results
      # This should be as high as possible to avoid rate-limits but as low as possible to ensure results are always up-to-date and accurate
      cache-time: '1day'
      # Optional API key to use (e-mail API author, following instructions from "I'm frequently hitting your rate limit/my server has large influxes of players" at https://github.com/TheMrGong/MCLeaksApiClient#faq )
      key: ''

    action:
      vpn:
        # The kick message to display to players who are using VPNs
        # If left blank, will not kick the player
        kick-message: '&cPlease disconnect from your proxy or VPN before re-joining!'
        # The commands that CONSOLE will run for players who are using VPNs
        # Use %player% as a placeholder for the player's (real) name
        # Use %uuid% as a placeholder for the player's uuid
        # Use %ip% as a placeholder for the player's IP
        # If left blank, will not run anything
        commands:
          - ''

        algorithm:
          # The algorithm method
          #
          # Options:
          # - Cascade
          #   The plugin will go down the "sources" list, sequentially, until a valid source is found
          #   It will then query that source and return the result
          #   This will result in essentially "the first valid result" being returned
          # - Consensus
          #   The plugin will try every source in the "sources" list at once
          #   It will then strip invalid results, and calculate the ratio of results from the remaining sources
          #   This will result in essentially "the ratio of valid results" being returned
          method: 'cascade'

          # Only used for "consensus" mode
          # The minimum ratio of APIs that must agree before a player is kicked
          # For example, if set to "0.6" then at least 60% of sources must agree that the IP is a VPN
          # The value can range from 0 to 1, and will be clipped at those values
          min-consensus: 0.6
      mcleaks:
        # The kick message to display to players who are using MCLeaks accounts
        # If left blank, will not kick the player
        kick-message: '&cPlease discontinue your use of an MCLeaks account!'
        # The commands that CONSOLE will run for players who are using MCLeaks accounts
        # Use %player% as a placeholder for the player's (real) name
        # Use %uuid% as a placeholder for the player's uuid
        # Use %ip% as a placeholder for the player's IP
        # If left blank, will not run anything
        commands:
          - ''

      # IP addresses and ranges to ignore when checking for VPNs and/or MCLeaks accounts
      ignore:
      - '127.0.0.0/8'
      - '10.0.0.0/8'
      - '172.16.0.0/12'
      - '192.168.0.0/16'
      - '::1/128'
      - 'fd00::/8'

    connection:
      # The amount of time to cache lookups in-memory
      # Higher values require slightly more memory
      # Lower values will hit Storage/APIs more frequently
      # Generally the default is good enough to prevent many sequential lookups from choking resources, but still keep memory usage low
      cache-time: '1minute'
      # The number of threads to use for web operations
      threads: 4
      # The maximum amount of time that the plugin will wait for an API to respond before timing out
      timeout: '5seconds'

    # When true, logs some extra output to the console so you can see if/why things might be failing
    debug: false
    # Default language (affects console output)
    lang: 'en'

    stats:
      # Whether or not to send anonymous usage statistics to bStats
      # True: Send anonymous stats; let the author know how well the plugin is doing and how it's used!
      # False: Do not send stats and make the author sad :(
      usage: true
      # Whether or not to send anonymous errors to the author
      # True: Send errors anonymously to Rollbar and/or GameAnalytics so the author can fix them!
      # False: Do not send errors and wonder why any bugs you encounter haven't been fixed
      errors: true

    update:
      # Whether or not to automatically check for updates and notify the console if found
      check: true
      # Whether or not to notify players with the avpn.admin permission node
      notify: true

    # Config version, no touchy plz
    version: 5.1
    playeripapi-commands-tab.png
    /avpn reload - Reloads the plugin configuration. This will disconnect and reconnect (if appropriate) any services configured in the config.yml file.
    /avpn test <ip> - Test an IP through the various (enabled) services. Note that this forces a check so will use credits every time it's run.
    /avpn check <ip> - Check an IP using the default system. This will return exactly the same value as any other API call.
    /avpn score <source> - Scores a particular source based on a pre-made list of known good and bad IPs. Note that this forces a check so will use credits every time it's run.

    playeripapi-permissions-tab.png
    avpn.admin - allows access to the /avpn reload, /avpn test, /avpn check, and /avpn score commands
    avpn.bypass - players with this node bypass the filter entirely

    playeripapi-donations-tab.png
    Please consider donating to support this free plugin!
    PP_logo_h_150x38.png

    playeripapi-legal-tab.png
    According to the GDPR, you must specify that you are storing IP information to your players in a privacy policy when using this plugin (actually you need that if you're running a vanilla server without this plugin because of server logs). Depending on how data provided from this API is used, you may be required to manually remove some data from the databases.
    Disclaimer: I am a plugin developer, not a lawyer. This information is provided as a "best guess" and is not legal advice.

    playeripapi-api-tab.png
    API documentation can be found on the wiki here.

    stopforumspam
    Error rate: 0%
    NordVPN detection rate: 38.1%
    Cryptostorm detection rate: 10%
    False-flagged homes: 0%
    Osqai, MyKayros, Fighter-HUN and 6 others like this.

Recent Reviews

  1. RazerStorm
    RazerStorm
    1/5,
    Version: 6.4.13
    Please fix the issue using tcpshield, it wont work if you're using it. ----------------
  2. Gargant0373
    Gargant0373
    5/5,
    Version: 6.4.13
    Amazing plugin, so glad to see one that actually works!
    So far no VPNs were able to bypass it <3
  3. __Vekster007__
    __Vekster007__
    5/5,
    Version: 6.4.13
    Great updates! The wonderful plugin! The wonderful author!
    I recommend this plugin for use. Personally setting up the configuration helped me.
  4. extremall
    extremall
    5/5,
    Version: 6.1.7
    Wow! This plugin really blocks the McLeaks accounts. I just tested it and I'm very happy now! But this does not block NordVPN.
    1. Laarryy
      Author's Response
  5. DefinitlyEvil
    DefinitlyEvil
    5/5,
    Version: 6.1.4
    It is absolutely the best solution for alts and bots out there, thanks for all the updates!
    1. Laarryy
      Author's Response
      Thank you very much for the review!
  6. __Vekster007__
    __Vekster007__
    5/5,
    Version: 6.1.4
    Beautiful plugin! And I probably shouldnt have said this but some other plugins have fewer false positives.
    1. Laarryy
      Author's Response
  7. Marcelektro
    Marcelektro
    5/5,
    Version: 5.11.37
    The plugin is awesome! Thanks to AntiVPN, our network is safe from bot attacks as well as ban evasion is not possible. I highly recommend this plugin!
    Regards
    Marcelektro @ marcloud.net
    1. Laarryy
      Author's Response
      Thank you very much for the review!
  8. fervineyt
    fervineyt
    5/5,
    Version: 5.11.37
    Its work perfect in my case, wf-bungee.... but...can i add a specfic IP to a whitelist or similar?
    1. Laarryy
      Author's Response
  9. Prism3
    Prism3
    4/5,
    Version: 5.11.37
    It's a good Anti-VPN plugin, I've also tested it with some other VPN and works fine. I would recommend adding a Notification in game to admins if any anyone tries to join using VPN
    1. Laarryy
      Author's Response
  10. leopatik
    leopatik
    1/5,
    Version: 5.11.37
    [WARNING] Error enabling plugin AntiVPN
    java.lang.reflect.InvocationTargetException
    at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
    at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
    at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
    at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
    at net.md_5.bungee.api.plugin.PluginManager.enablePlugin(PluginManager.java:328)
    at net.md_5.bungee.api.plugin.PluginManager.loadPlugins(PluginManager.java:235)
    at net.md_5.bungee.BungeeCord.start(BungeeCord.java:272)
    at net.md_5.bungee.BungeeCordLauncher.main(BungeeCordLauncher.java:62)
    at net.md_5.bungee.Bootstrap.main(Bootstrap.java:15)
    Caused by: java.lang.LinkageError: loader constraint violation: when resolving method "org.slf4j.impl.StaticLoggerBinder.getLoggerFactory()Lorg/slf4j/ILoggerFactory;" the class loader (instance of net/md_5/bungee/api/plugin/PluginClassloader) of the current class, org/slf4j/LoggerFactory, and the class loader (instance of net/md_5/bungee/api/plugin/PluginClassloader) for the method's defining class, org/slf4j/impl/StaticLoggerBinder, have different Class objects for the type org/slf4j/ILoggerFactory used in the signature
    at org.slf4j.LoggerFactory.getILoggerFactory(LoggerFactory.java:418)
    at org.slf4j.LoggerFactory.getLogger(LoggerFactory.java:357)
    at org.slf4j.LoggerFactory.getLogger(LoggerFactory.java:383)
    at me.egg82.antivpn.BungeeBootstrap.<init>(BungeeBootstrap.java:29)
    ... 9 more
    1. Laarryy
      Author's Response